From bdd4b3309fef4c58066f9a5f88b4db448be19dfe Mon Sep 17 00:00:00 2001 From: Piotr Karbowski Date: Thu, 21 Mar 2019 20:39:09 +0100 Subject: x11-base/xorg-server: elogind integration, -suid by default. This enables users that does not run systemd to have suid-less Xorg. A privileged entity is required for SETMASTER and DROPMASTER calls to get control over framebuffer. Additionally elogind with udev grant user access to input device nodes and elogind alone interfaces the SETMASTER/DROPMASTER calls. Xorg-server will do keeptty automatically, meaning one does not need to pass any extra parameters to `startx` to get things working, It does take adventage of $XDG_SEAT and $XDG_VTNR set by pam_elogind upon login. Although it's possible to run rootless without udev (with any /dev manager, like mdev of busybox), the configure flag that USE=elogind enables (--enable-systemd-logind) checks if udev toggle is also enabled. This leads to a situation where udev needs to be present on user system while building, however, udev does not needs to be running, as long as user is in video and input system groups, elogind is running and user logged in when pam_elogind.so was enabled Xorg will start as regular user. Closes: https://bugs.gentoo.org/670930 Ack-by: Matt Turner Package-Manager: Portage-2.3.62, Repoman-2.3.12 Signed-off-by: Piotr Karbowski --- x11-base/xorg-server/metadata.xml | 1 + 1 file changed, 1 insertion(+) (limited to 'x11-base/xorg-server/metadata.xml') diff --git a/x11-base/xorg-server/metadata.xml b/x11-base/xorg-server/metadata.xml index 74e52195b253..5c14eec54c86 100644 --- a/x11-base/xorg-server/metadata.xml +++ b/x11-base/xorg-server/metadata.xml @@ -7,6 +7,7 @@ Build the Distributed Multiheaded X server + Use elogind to get control over framebuffer when running as regular user Enable Glamor OpenGL 2D acceleration Build the kdrive X servers Enable libunwind usage for backtraces -- cgit v1.2.3