From ff1eccfabcec262981e0b9152f2a48665ab75d3e Mon Sep 17 00:00:00 2001 From: Drew DeVault Date: Tue, 11 Jul 2017 10:19:28 -0400 Subject: [PATCH] Merge pull request #1271 from johalun/master-securityconf-freebsd Add secucity config for FreeBSD. --- security.d/10-freebsd.in | 12 ++++++++++++ sway/CMakeLists.txt | 4 ++++ 2 files changed, 16 insertions(+) create mode 100644 security.d/10-freebsd.in diff --git a/security.d/10-freebsd.in b/security.d/10-freebsd.in new file mode 100644 index 000000000..de405f709 --- /dev/null +++ b/security.d/10-freebsd.in @@ -0,0 +1,12 @@ +# sway security rules +# +# FreeBSD does not support getting client PID from server side +# so we can not know the path to the client's binary. +# +# The solution for now is to be permissive and allow all +# features by default for any client. + +# Configures enabled compositor features for specific programs +permit * fullscreen keyboard mouse background screenshot panel lock + + diff --git a/sway/CMakeLists.txt b/sway/CMakeLists.txt index bf0b2e7fe..61c22b847 100644 --- a/sway/CMakeLists.txt +++ b/sway/CMakeLists.txt @@ -93,6 +93,10 @@ endfunction() add_config(config config sway) add_config(00-defaults security.d/00-defaults sway/security.d) +if (CMAKE_SYSTEM_NAME STREQUAL FreeBSD) + add_config(10-freebsd security.d/10-freebsd sway/security.d) +endif (CMAKE_SYSTEM_NAME STREQUAL FreeBSD) + if (A2X_FOUND) add_manpage(sway 1) add_manpage(sway 5)