| Patch | Description | Author | Forwarded | Bugs | Origin | Last update |
|---|---|---|---|---|---|---|
| Don-t-automatically-start-pipewire-for-root-logins.patch | Don't automatically start pipewire for root logins | Simon McVittie <smcv@debian.org> | not-needed | 2021-01-17 | ||
| Fix_services.patch | Update Wants and After fields with real services (NOT alias) Due to a systemd bug in the way it manages alias, they have been removed in wireplumber and pipewire-media-session services. Reflecting this change in the pipewire-pulse service to be sure it is started AFTER a session manager. https://bugs.debian.org/1019944 |
Dylan Aïssi <daissi@debian.org> | not-needed | debian upstream | ||
| snap/pipewire-pulse-add-snap-permissions-support.patch | pipewire-pulse: add snap permissions support SNAP containers have two main "audio" security rules: * audio-playback: the applications inside the container can send audio samples into a sink * audio-record: the applications inside the container can get audio samples from a source Also, old SNAP containers had the "pulseaudio" rule, which just exposed the pulseaudio socket directly, without limits. This is similar to the current Flatpak audio permissions. In the pulseaudio days, a specific pulseaudio module was used that checked the permissions given to the application and allowed or forbade access to the pulseaudio operations. With the change to pipewire, this functionality must be implemented in pipewire-pulse to guarantee the sandbox security. This patch adds support for sandboxing permissions in the pulseaudio module, and implements support for the SNAP audio security model, thus forbiding a SNAP application to record audio unless it has permissions to do so. The current code for pipewire-pulseaudio checks the permissions of the snap and adds three properties to each new client: * pipewire.snap.id: contains the Snap ID of the client. * pipewire.snap.audio.playback: its value is 'true' if the client has permission to play audio, or 'false' if not. * pipewire.snap.audio.record: its value is 'true' if the client has permission to record audio, or 'false' if not. These properties must be processed by wireplumber to add or remove access permissions to the corresponding nodes. That code is available in a separate patch: https://gitlab.freedesktop.org/pipewire/wireplumber/-/merge_requests/567 (cherry picked from commit d568dcd64f64454289e1f35ed07a11749f95b04e) |
Sergio Costas Rodriguez <sergio.costas@canonical.com> | yes | upstream, >= 1.1.0 (unreleased) | 2023-11-22 | |
| snap/Add-missing-files.patch | Add missing files Accidentally, I forgot to add snap-policy.* files. (cherry picked from commit 5e20a2d5704586f89f48d7575e63f9dac621b89f) |
Sergio Costas Rodriguez <sergio.costas@canonical.com> | yes | upstream, >= 1.1.0 (unreleased) | 2023-11-22 | |
| snap/Apply-1-suggestion-s-to-1-file-s.patch | Apply 1 suggestion(s) to 1 file(s) (cherry picked from commit 69b093ebf14b04c9af4fbd899fdfbffff5fc4d8c) |
=?utf-8?q?Barnab=C3=A1s_P=C5=91cze?= <pobrn@protonmail.com> | yes | upstream, >= 1.1.0 (unreleased) | 2023-11-22 | |
| snap/Apply-1-suggestion-s-to-1-file-s-1.patch | Apply 1 suggestion(s) to 1 file(s) (cherry picked from commit c34bd9575f46275b304298c221356bc827f7a1a9) |
=?utf-8?q?Barnab=C3=A1s_P=C5=91cze?= <pobrn@protonmail.com> | yes | upstream, >= 1.1.0 (unreleased) | 2023-11-22 | |
| snap/Use-assert-to-check-client-is-not-NULL.patch | Use assert to check client is not NULL (cherry picked from commit b054bc25910713df63a1321bc86fe15432821800) |
Sergio Costas Rodriguez <sergio.costas@canonical.com> | yes | upstream, >= 1.1.0 (unreleased) | 2023-11-22 | |
| snap/Apply-1-suggestion-s-to-1-file-s-2.patch | Apply 1 suggestion(s) to 1 file(s) (cherry picked from commit abc4bd111be6273298aaeb290d8fb613ac7316d9) |
=?utf-8?q?Barnab=C3=A1s_P=C5=91cze?= <pobrn@protonmail.com> | yes | upstream, >= 1.1.0 (unreleased) | 2023-11-22 | |
| snap/fix-possible-leak.patch | fix possible leak If pw_check_flatpak() sets app_id, its value will leak when calling pw_snap_get_audio_permissions(). This patch fixes this. (cherry picked from commit ae11e61105d53e4dc0860894ccc17b1a8aead7fa) |
Sergio Costas Rodriguez <sergio.costas@canonical.com> | yes | upstream, >= 1.1.0 (unreleased) | 2023-11-22 | |
| snap/Better-error-logging-if-getting-connections-fails.patch | Better error logging if getting connections fails (cherry picked from commit 1728b7de598a14b8b2819c6d269f586a4a843501) |
Sergio Costas Rodriguez <sergio.costas@canonical.com> | yes | upstream, >= 1.1.0 (unreleased) | 2023-11-22 | |
| snap/Move-variable-definition-inside-block.patch | Move variable definition inside block (cherry picked from commit 18d0e2e850d74c014c6c27d22c736ec40ac9a873) |
Sergio Costas Rodriguez <sergio.costas@canonical.com> | yes | upstream, >= 1.1.0 (unreleased) | 2023-11-22 | |
| snap/Move-context-variable-definition-inside-block.patch | Move context variable definition inside block (cherry picked from commit 67b9e9c4e8354a5f2075e41fa0d63f0b9b82d96a) |
Sergio Costas Rodriguez <sergio.costas@canonical.com> | yes | upstream, >= 1.1.0 (unreleased) | 2023-11-22 | |
| snap/Move-add_permission-definition-inside-block.patch | Move add_permission definition inside block (cherry picked from commit 1c9016280c42dc43087700789d30066e9d7a19b9) |
Sergio Costas Rodriguez <sergio.costas@canonical.com> | yes | upstream, >= 1.1.0 (unreleased) | 2023-11-22 | |
| snap/Apply-1-suggestion-s-to-1-file-s-3.patch | Apply 1 suggestion(s) to 1 file(s) (cherry picked from commit b9b5a261998c2634477a71392a0c0c512c6e5974) |
=?utf-8?q?Barnab=C3=A1s_P=C5=91cze?= <pobrn@protonmail.com> | yes | upstream, >= 1.1.0 (unreleased) | 2023-11-22 | |
| snap/Fix-spacing-when-calling-functions.patch | Fix spacing when calling functions (cherry picked from commit fda4addf1ec3d97c13ed8998a92b7ae5d12f6c68) |
Sergio Costas Rodriguez <sergio.costas@canonical.com> | yes | upstream, >= 1.1.0 (unreleased) | 2023-11-22 | |
| snap/Better-meson_options-description.patch | Better meson_options description (cherry picked from commit 5125d69a6905f3ad86c1b1424d814f5442d9b677) |
Sergio Costas Rodriguez <sergio.costas@canonical.com> | yes | upstream, >= 1.1.0 (unreleased) | 2023-11-22 | |
| snap/Replace-spaces-with-tabs.patch | Replace spaces with tabs (cherry picked from commit 6506bb2f4444be032985cc2874cc3eb94abf78fa) |
Sergio Costas Rodriguez <sergio.costas@canonical.com> | yes | upstream, >= 1.1.0 (unreleased) | 2023-11-22 | |
| snap/snap-policy-Manage-ENOPROTOOPT-error-in-aa_getpeercon.patch | snap-policy: Manage ENOPROTOOPT error in aa_getpeercon() (cherry picked from commit e8fcaa5157506e5def0f45dc135ad97da75237f1) |
Sergio Costas <sergio.costas@canonical.com> | yes | upstream, >= 1.1.0 (unreleased) | 2024-01-30 | |
| snap/snap-policy-ensure-audio-works-with-.deb-snapd.patch | snap-policy: ensure audio works with .deb snapd When snapd is installed as a .deb instead of a snap, their slots are identified as 'core:XXXX' instead of 'snapd:XXXX'. The current code doesn't take this into account, so those users that have snapd installed from a .deb package instead of have running an updated version in snap form will have problems with audio. This patch fixes this. |
Sergio Costas Rodriguez <sergio.costas@canonical.com> | yes | 2024-02-02 | ||
| snap/snap-policy-fix-memory-leak.patch | snap-policy: fix memory leak This patch fixes a memory leak when there is a snap with an invalid ID. |
Sergio Costas Rodriguez <sergio.costas@canonical.com> | yes | 2024-02-02 |