F23 System Wide Change: SELinux policy store migration
Miroslav Grepl
mgrepl at redhat.com
Thu Jun 11 16:03:13 UTC 2015
On 06/11/2015 03:26 PM, Matthew Miller wrote:
> On Thu, Jun 11, 2015 at 06:51:52AM -0400, Jan Kurik wrote:
>> In the SELinux userspace project release 2015-02-02, the SELinux
>> policy store was moved from /etc/selinux/<store>/modules/ to
>> /var/lib/selinux/<store>/.
>
> The change page notes performance improvements. Can these be
> quantified? At the very least, that kind of stuff is very useful for
> marketing.
>
Yes, I agree it is very useful. It relates with CIL directly and it is a
part of policy store migration change. There are data coming from
SELinux Userspace upstream obtained on F20 and F21 policy.
For example, we should do a better job for bugs like
https://bugzilla.redhat.com/show_bug.cgi?id=1098446
I will attach an upstream discussion related to this topic.
And of course we want to get real results/numbers once it is a part of
rawhide by default.
--
Miroslav Grepl
Senior Software Engineer, SELinux Solutions
Red Hat, Inc.
More information about the devel
mailing list