> In any case, per process AS is a prerequisite to all this. Oh, I hadn't realized that was still a todo. In the meantime, what's the implication of shipping without it? (I.e. in which threat model are users vulnerable without it?) Malicious userspace process snooping on other framebuffers (on X11, they could do that anyway...)? Malicious userspace actually interfering with operation of other processes (is this really exploitable or just a theoretical concern)? Malicious 3D apps breaking out of the sandbox (i.e. WebGL) via a driver bug and snooping on other processes? --- *wishing we could just delete webgl intensifies*
Attachment:
signature.asc
Description: PGP signature
_______________________________________________ dri-devel mailing list dri-devel@xxxxxxxxxxxxxxxxxxxxx https://lists.freedesktop.org/mailman/listinfo/dri-devel
