Summary: | sec-policy/selinux-mpd: media-sound/mpd fails to create Unix sockets | ||
---|---|---|---|
Product: | Gentoo Linux | Reporter: | Niklas Haas <gentoo> |
Component: | SELinux | Assignee: | SE Linux Bugs <selinux> |
Status: | UNCONFIRMED --- | ||
Severity: | normal | CC: | arthur, nex+b-g-o, proxy-maint |
Priority: | Normal | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | |||
Package list: | Runtime testing required: | --- |
Description
Niklas Haas
2015-08-02 19:04:56 UTC
Is the create permission sufficient? Usually a few more are needed (open, read/write, ...). It needs at least create and setattr, though I suspect if I pair it with a program that uses the socket it will also need read and write. I havent used mpd in a while, but I assume this socket is for clients to access the server instead of over tcp. In that case I would prefer to not just add the sock create rules since it'd be useless. At the very least, we'd need to make a new associated interface and probably grant it to the main domains that would need access (i guess user_t and maybe others?) |