From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from smtp.sws.net.au (smtp.sws.net.au [144.76.186.9]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by smtp.subspace.kernel.org (Postfix) with ESMTPS id 8D39832B9A9 for ; Tue, 30 Jun 2026 07:23:52 +0000 (UTC) Authentication-Results: smtp.subspace.kernel.org; arc=none smtp.client-ip=144.76.186.9 ARC-Seal:i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116; t=1782804234; cv=none; b=qn2yJOD0zUlN9McDWpdV/5sCyKgiWJOeno2VzzE8JLuBlohR2vELoUGC59pSIfvCSkt8+xNPZpxS2POwNeFZEo6ck8E5MMTzYuQ7eX4br0plWLtdFZ6g5syiLXNzdlFjEpfsnU9fIL/iL2g5tfO5D+HIMunFnCNk8mJGXX48FVA= ARC-Message-Signature:i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116; t=1782804234; c=relaxed/simple; bh=SE0NhVVzi4cohdn2YVZJLtTLQru6iZhNzwE2nhHirlI=; h=From:To:Cc:Subject:Date:Message-ID:In-Reply-To:References: MIME-Version:Content-Type; b=R+/nV3Rm53G2kvOExc/0D3h2ghNC2n0GUsSCHpAF0dtX71DhwZ95eec6Jz25jdOEJ2sZEJKMEL/+1ECgYt+xppDtkC0HaztTloV2sa16ph0y/lv406DJUCCeKWpEXQXsutY/Lz3AV+hWCpgQ27HZeucg9hbGmKwFQH7XLa1ROSk= ARC-Authentication-Results:i=1; smtp.subspace.kernel.org; dmarc=pass (p=reject dis=none) header.from=coker.com.au; spf=pass smtp.mailfrom=coker.com.au; dkim=pass (1024-bit key) header.d=coker.com.au header.i=@coker.com.au header.b=yDvdRLX3; arc=none smtp.client-ip=144.76.186.9 Authentication-Results: smtp.subspace.kernel.org; dmarc=pass (p=reject dis=none) header.from=coker.com.au Authentication-Results: smtp.subspace.kernel.org; spf=pass smtp.mailfrom=coker.com.au Authentication-Results: smtp.subspace.kernel.org; dkim=pass (1024-bit key) header.d=coker.com.au header.i=@coker.com.au header.b="yDvdRLX3" DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=coker.com.au; s=2008; t=1782804225; bh=6cMaGykovcEzPvPVq4w7wPMQ/FWjjQlZ4fQf9Gzrr+k=; l=683; h=From:To:Reply-To:Cc:Subject:Date:In-Reply-To:References:From; b=yDvdRLX3xl1tkI/0T33J8QO6VVIBm+xFXyYRYb4mPclEYIwUsEFj/J0dQdtQJ0PHV pHJVrWS0Mp/KzCQcSCHD3Q8u8g/e1kC0ycCTgWtBGAg+9ds5/wSMrSJhX6EPVo474h K3BRdqmfm97xwMLRn8KXS4dIYypp3fAbpZMgIs+U= Received: from xev.localnet (unknown [61.68.253.40]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange x25519 server-signature ECDSA (prime256v1) server-digest SHA256) (No client certificate requested) (Authenticated sender: russell@coker.com.au) by smtp.sws.net.au (Postfix) with ESMTPSA id B608C11BE6; Tue, 30 Jun 2026 17:23:43 +1000 (AEST) From: Russell Coker To: Antonio Russo , Sam James Reply-To: russell@coker.com.au Cc: selinux-refpolicy@vger.kernel.org, Rahul Sandhu Subject: Re: pipewire etc Date: Tue, 30 Jun 2026 17:23:40 +1000 Message-ID: <5463228.Lt9SDvczpP@xev> In-Reply-To: <87h5mk7bs5.fsf@gentoo.org> References: <2540904.xDKz687JKs@xev> <87h5mk7bs5.fsf@gentoo.org> Precedence: bulk X-Mailing-List: selinux-refpolicy@vger.kernel.org List-Id: List-Subscribe: List-Unsubscribe: MIME-Version: 1.0 Content-Transfer-Encoding: 7Bit Content-Type: text/plain; charset="utf-8" On Tuesday, 30 June 2026 17:00:42 AEST Sam James wrote: > FWIW, I did try to raise concerns about the quality of it, and Rahul did > in stronger terms as well. There's been a recent flurry of PRs from a > specific set of contributors but I am not sure they have always been > properly tested. https://github.com/SELinuxProject/refpolicy/pull/1172 I've sent a PR for this. I'm currently working on a bunch of issues related to SDDM graphical logins without an unconfined module loaded. With this patch Pipewire may work in some situations less confined than what I'm working on. -- My Main Blog http://etbe.coker.com.au/ My Documents Blog http://doc.coker.com.au/