|
Hello everyone, We are implementing one of PoC using AGL v10.0.0. It requires to use mqueue in agl-compositor. This idea is not good, it will be considered later on, but we don’t have time to do so. agl-compositor calls mq_open, but it returns errno:13 Permission denied, then the following log is observed in dmesg.
Jun 29 03:06:51 h3ulcb
audit[3634]: AVC lsm=SMACK fn=smack_inode_permission action="" subject="System::Weston" object="_" requested=wx
pid=3634 comm="agl-compositor" name="/" dev="mqueue" ino=7460
Jun 29 03:06:51 h3ulcb
audit[3634]: SYSCALL arch=c00000b7 syscall=180 success=no exit=-13 a0=ffff88000db1
a1=80040 a2=1b6 a3=ffff974e9418 items=0 ppid=1 pid=3634 auid=4294967295 uid=200 gid=200 euid=200 suid=200 fsuid=200 egid=200 sgid=200 fsgid=200 tty=tty7
ses=4294967295 comm="agl-compositor" exe="/usr/bin/agl-compositor" subj=System::Weston
key=(null)
Jun 29 03:06:51 h3ulcb
kernel: audit: type=1400 audit(1593400011.767:4): lsm=SMACK fn=smack_inode_permission
action="" subject="System::Weston" object="_" requested=wx
pid=3634 comm="agl-compositor" name="/" dev="mqueue" ino=7460
Jun 29 03:06:51 h3ulcb
kernel: audit: type=1300 audit(1593400011.767:4): arch=c00000b7 syscall=180 success=no
exit=-13 a0=ffff88000db1 a1=80040 a2=1b6
a3=ffff974e9418 items=0 ppid=1 pid=3634 auid=4294967295 uid=200 gid=200 euid=200 suid=200 fsuid=200 egid=200 sgid=200 fsgid=200 tty=tty7
ses=4294967295 comm="agl-compositor" exe="/usr/bin/agl-compositor" subj=System::Weston
key=(null) It seems like hitting security issue. Could you tell us how to resolve it? This is just a PoC, so a dirty hack is fine. Thank you. Best regards Kenji Hosokawa ------------------------------------------------ Hosokawa Kenji (細川 健児) Advanced Driver Information Technology Corp. Software Group (ADITJ/SWG) 1-1 Showa-cho, Kariya-shi Aichi-ken 448-8661, Japan Tel. +81-566-61-4555 Fax +81-566-25-4774 ------------------------------------------------ _._,_._,_ Links: You receive all messages sent to this group. View/Reply Online (#9035) | Reply To Group | Reply To Sender | Mute This Topic | New Topic _._,_._,_
|
mq_open in agl-compositor gets Permission denied
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
- Subject: mq_open in agl-compositor gets Permission denied
- From: "Hosokawa, Kenji (ADITJ/SWG)" <khosokawa@xxxxxxxxxxxxxx>
- Date: Fri, 26 Feb 2021 06:57:45 +0000
- Accept-language: ja-JP, en-US
- Cc: "Natsume, Wataru (ADITJ/SWG)" <wnatsume@xxxxxxxxxxxxxx>
- Mailing-list: list agl-dev-community@xxxxxxxxxxxxxxxxxxxxxxxxx; contact agl-dev-community+owner@xxxxxxxxxxxxxxxxxxxxxxxxx
- Reply-to: agl-dev-community@xxxxxxxxxxxxxxxxxxxxxxxxx
- Follow-Ups:
- Re: mq_open in agl-compositor gets Permission denied
- From: Jose Bollo
- Re: mq_open in agl-compositor gets Permission denied
- Prev by Date: Jumping Jellyfish 10.0.2 patch release
- Next by Date: Upcoming Events #cal-summary
- Previous by thread: Jumping Jellyfish 10.0.2 patch release
- Next by thread: Re: mq_open in agl-compositor gets Permission denied
- Index(es):
 |