I have attempted to fix this myself and I believe that I have. I'm not sure if it's done the absolute best considering I'm not extremely familiar with SELinux policy.

I have forked the Debian repo on salsa. The patch for dbus is 0000-upstream and firewalld is 0202-firewalld. I also went ahead and updated everything to the latest upstream release the best I could. I'm not sure if you want to take any or all of my changes, or if you know a better way.

https://salsa.debian.org/volian-team/refpolicy

A lot of the firewalld changes I took from Fedora's repo since they are tightly integrated with it. I did have to add the unconfined line and I'm not exactly sure what the issue with that is, or if there is a better way to handle it.

I ventured on this project because I'm going to make a Debian Derivative just as a project to learn and SELinux is going to be a big part of it. Also if anyone from the SELinux team is willing to chat I have a few questions concerning the patches Debian uses.

Thanks,
Blake

Reply via email to