From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <gentoo-user+bounces-174496-garchives=archives.gentoo.org@lists.gentoo.org>
Received: from lists.gentoo.org (pigeon.gentoo.org [208.92.234.80])
	(using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
	(No client certificate requested)
	by finch.gentoo.org (Postfix) with ESMTPS id AAE8C139084
	for <garchives@archives.gentoo.org>; Fri, 16 Dec 2016 23:58:59 +0000 (UTC)
Received: from pigeon.gentoo.org (localhost [127.0.0.1])
	by pigeon.gentoo.org (Postfix) with SMTP id 1573D21C06D;
	Fri, 16 Dec 2016 23:58:50 +0000 (UTC)
Received: from acedia.primate.net (disorder-1-pt.tunnel.tserv3.fmt2.ipv6.he.net [IPv6:2001:470:1f04:51a::2])
	(using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
	(No client certificate requested)
	by pigeon.gentoo.org (Postfix) with ESMTPS id 9FA9621C039
	for <gentoo-user@lists.gentoo.org>; Fri, 16 Dec 2016 23:58:48 +0000 (UTC)
Received: from acedia.primate.net (localhost [127.0.0.1])
	by acedia.primate.net (8.15.2/8.15.2/Debian-7) with ESMTPS id uBGNwgX9016875
	(version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT)
	for <gentoo-user@lists.gentoo.org>; Fri, 16 Dec 2016 15:58:47 -0800
Received: (from itz@localhost)
	by acedia.primate.net (8.15.2/8.15.2/Submit) id uBGNwbSn016852
	for gentoo-user@lists.gentoo.org; Fri, 16 Dec 2016 15:58:37 -0800
X-Authentication-Warning: acedia.primate.net: itz set sender to itz@primate.net using -f
Received: from [10.8.78.14] (helo=matica.foolinux.mooo.com)
	by ahiker.mooo.com with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256)
	(Exim 4.84_2)
	(envelope-from <itz@primate.net>)
	id 1cI2OZ-0003rU-Fo
	for gentoo-user@lists.gentoo.org; Fri, 16 Dec 2016 15:58:35 -0800
Received: from itz by matica.foolinux.mooo.com with local (Exim 4.87)
	(envelope-from <itz@matica.foolinux.mooo.com>)
	id 1cI2OZ-0007fi-AQ
	for gentoo-user@lists.gentoo.org; Fri, 16 Dec 2016 15:58:35 -0800
Date: Fri, 16 Dec 2016 15:58:35 -0800
From: Ian Zimmerman <itz@primate.net>
To: gentoo-user@lists.gentoo.org
Subject: [gentoo-user] X w/o suid root [Was: from Firefox52: NO pure ALSA?]
Message-ID: <20161216234309.29062.24B0C902@matica.foolinux.mooo.com>
Mail-Followup-To: gentoo-user@lists.gentoo.org
References: <20161015182743.GB4541@solfire>
 <20161216101951.GA29887@g0n.xdwgrp>
 <CAGfcS_k+toE5DiWMPZrbnFqnJwVuQQ73B-rAmYeGTeyE-WKzBQ@mail.gmail.com>
 <20161216131315.GA4052@g0n.xdwgrp>
 <CAGfcS_=LvKf+pbq1Pfs_RfNUB76yFHz3Dv-FK0ZdFAMt_mAbYQ@mail.gmail.com>
 <20161216165118.GA26704@g0n.xdwgrp>
 <CAGfcS_=UDb35V==i5Ma3K6pNBBSyU0Ecp7_u97ZOYSfj-AwnqQ@mail.gmail.com>
 <20161216200653.25353.338C11D1@matica.foolinux.mooo.com>
 <CAGfcS_=-6pB6pAzNkmxrNhV=0Jd9F0+4uC5ZvnqigNi-N=CzRA@mail.gmail.com>
 <20161216225032.4514.2AA56A2C@matica.foolinux.mooo.com>
Precedence: bulk
List-Post: <mailto:gentoo-user@lists.gentoo.org>
List-Help: <mailto:gentoo-user+help@lists.gentoo.org>
List-Unsubscribe: <mailto:gentoo-user+unsubscribe@lists.gentoo.org>
List-Subscribe: <mailto:gentoo-user+subscribe@lists.gentoo.org>
List-Id: Gentoo Linux mail <gentoo-user.gentoo.org>
X-BeenThere: gentoo-user@lists.gentoo.org
Reply-to: gentoo-user@lists.gentoo.org
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <20161216225032.4514.2AA56A2C@matica.foolinux.mooo.com>
User-Agent: Mutt/1.5.24 (2015-08-30)
X-Archives-Salt: 1e44b5c1-ae0e-4834-9e66-3360548a82f1
X-Archives-Hash: 77c71ceb34c9dbc390b2002e669bcd84

On 2016-12-16 14:55, Ian Zimmerman wrote:

> My opinion above was based on debian bug #582041 [1] and the Ubuntu
> pages referenced by it.  Note that the bug is still open.  But it is
> possible that it only remains open due to non-KMS video drivers.  Now
> that I have your opinion (and I have Radeon too), I'll give it a try.
> Thanks.

Well, I tried, and it doesn't work for me.

After re-merging x11-base/xorg-server package with the new USE settings,
first I tried what I have always done when running with suid; namely,
starting X with an explicit vt argument, approximately thus:

Xorg vt${vt} -nolisten tcp -s 0 -dpms

where the vt variable it set dynamically, but it is actually the same vt
from which I run the command.  This results in:

[  2890.175] (++) using VT number 2

[  2890.175] (WW) xf86OpenConsole: VT_ACTIVATE failed: Operation not permitted
[  2890.175] (EE) 
Fatal server error:
[  2890.175] (EE) xf86OpenConsole: Switching VT failed
[  2890.175] (EE) 
[  2890.175] (EE) 

So then I removed the vt argument, thinking that the current vt should
be the default anyway - but apparently not, in this case I got:

[  3419.385] (EE) 
Fatal server error:
[  3419.385] (EE) parse_vt_settings: Cannot open /dev/tty0 (Permission denied)
[  3419.385] (EE) 
[  3419.385] (EE) 

and of course:

 [2+0]~$ ls -l /dev/tty0
crw--w---- 1 root tty 4, 0 Dec 16 14:31 /dev/tty0
 [3+0]~$ 

I wonder what I'm missing.  Provisional suspects: the *kits are setting
up perms for you in some odd non-Unixy but Xorg friendly way.

Kernel 4.4.26, xorg-server 1.18.4.

-- 
Please *no* private Cc: on mailing lists and newsgroups
Personal signed mail: please _encrypt_ and sign
Don't clear-text sign: http://cr.yp.to/smtp/8bitmime.html