mirrors/pipewire
1
0
Fork 0
mirror of https://gitlab.freedesktop.org/pipewire/pipewire.git synced 2026-04-01 07:15:39 -04:00
Code Issues Projects Releases Packages Wiki Activity Actions

systemd: remove RestrictNamespaces from service file

Browse source 
Wireplumber loads the libcamera nodes into the pipewire server.
We need to remove the RestrictNamespaces option from the service file
to allow libcamera to load sandboxed IPA modules.
This commit is contained in:
Wim Taymans 2025-09-17 10:21:10 +02:00
parent e6bcd7b611
commit 707bd256b9
2 changed files with 0 additions and 2 deletions
Download patch file Download diff file Expand all files Collapse all files

1
src/daemon/systemd/system/pipewire.service.in
View file

@ -18,7 +18,6 @@ Requires=pipewire.socket
LockPersonality=yes LockPersonality=yes
MemoryDenyWriteExecute=yes MemoryDenyWriteExecute=yes
NoNewPrivileges=yes NoNewPrivileges=yes
RestrictNamespaces=yes
SystemCallArchitectures=native SystemCallArchitectures=native
SystemCallFilter=@system-service SystemCallFilter=@system-service
Type=simple Type=simple

1
src/daemon/systemd/user/pipewire.service.in
View file

@ -20,7 +20,6 @@ ConditionUser=!root
LockPersonality=yes LockPersonality=yes
MemoryDenyWriteExecute=yes MemoryDenyWriteExecute=yes
NoNewPrivileges=yes NoNewPrivileges=yes
RestrictNamespaces=yes
SystemCallArchitectures=native SystemCallArchitectures=native
SystemCallFilter=@system-service mincore SystemCallFilter=@system-service mincore
Type=simple Type=simple