commit: 57263bbfc0524a8307e829eb2ff3cacb49b8fd81 Author: Jason Zaman <jason <AT> perfinion <DOT> com> AuthorDate: Mon Apr 13 15:36:11 2015 +0000 Commit: Jason Zaman <perfinion <AT> gentoo <DOT> org> CommitDate: Mon Apr 13 20:01:45 2015 +0000 URL: https://gitweb.gentoo.org/proj/hardened-refpolicy.git/commit/?id=57263bbf
pulseaudio: filetrans for autospawn.lock Pulseaudio tries to acquire /tmp/pulse-*/autospawn.lock, this adds the filetrans rule. $ start-pulseaudio-x11 W: [autospawn] core-util.c: Failed to create lock file '/tmp/pulse-PKdhtXMmr18n/autospawn.lock': Permission denied E: [pulseaudio] main.c: Failed to acquire autospawn lock policy/modules/contrib/pulseaudio.te | 1 + 1 file changed, 1 insertion(+) diff --git a/policy/modules/contrib/pulseaudio.te b/policy/modules/contrib/pulseaudio.te index dfb06a9..06d17ea 100644 --- a/policy/modules/contrib/pulseaudio.te +++ b/policy/modules/contrib/pulseaudio.te @@ -56,6 +56,7 @@ manage_dirs_pattern(pulseaudio_t, pulseaudio_tmp_t, pulseaudio_tmp_t) manage_files_pattern(pulseaudio_t, pulseaudio_tmp_t, pulseaudio_tmp_t) manage_sock_files_pattern(pulseaudio_t, pulseaudio_tmp_t, pulseaudio_tmp_t) files_tmp_filetrans(pulseaudio_t, pulseaudio_tmp_t, dir) +userdom_user_tmp_filetrans(pulseaudio_t, pulseaudio_tmp_t, file, "autospawn.lock") userdom_user_tmp_filetrans(pulseaudio_t, pulseaudio_tmp_t, file, "pid") userdom_user_tmp_filetrans(pulseaudio_t, pulseaudio_tmp_t, sock_file, "dbus-socket") userdom_user_tmp_filetrans(pulseaudio_t, pulseaudio_tmp_t, sock_file, "native")
