Another round of updates for agl-compositor. This update adds
a deny-all policy engine, and adds checks in the allow-all policy
as to use SMACK labels to check the clients binding to the agl_shell*
interfaces. The allow-all policy is still in effect, with the deny-all
policy being available to be used as a meson, compile option.
A few minor corner cases fixes, found while testing out waylandsink.
The update includes the following:
-
39ea644837d desktop: Fix destruction of applications that fallback to the desktop role
-
faea097edab shell: Avoid checking against surfaces that do not have an app_id
-
40da59d00a7 README: Add a few words about the deny-all policy engine
-
572d0eac44f desktop: Allow desktop_api to handle surface removal
-
03f51daf2fc policy: Add a deny-all policy as an example
-
ea317303ac4 policy-default: Use libsmack to check client label
-
bbf173123cd policy: Add a new policy hook to restrict access to private extensions
-
9827cfd2557 desktop: Avoid referencing the output's surface for pending surfaces
Signed-off-by: Marius Vlad <marius.vlad@collabora.com>
Change-Id: Ibd67e06a60b18334d3c07c2f6c710b7e77201148
Reviewed-on: https://gerrit.automotivelinux.org/gerrit/c/AGL/meta-agl/+/24927
Tested-by: Jenkins Job builder account <agl-jobbuilder@automotivelinux.org>
ci-image-build: Jenkins Job builder account <agl-jobbuilder@automotivelinux.org>
ci-image-boot-test: Jenkins Job builder account <agl-jobbuilder@automotivelinux.org>
Reviewed-by: Scott Murray <scott.murray@konsulko.com>