On Tue, Jul 28, 2020 at 1:19 PM Stephen Smalley <stephen.smalley.work@xxxxxxxxx> wrote: > > Encapsulate the policy-dependent state in its own structure > (struct selinux_policy) embedded within the selinux_ss structure. > The policy-dependent state includes the SID table (particularly > the context structures), the policy database, and the mapping > between the kernel classes/permissions and the policy values. > No change in functionality or interfaces. This change is > preparatory to splitting the policy load logic into multiple > stages to enable making the entire policy reload atomic. > > Signed-off-by: Stephen Smalley <stephen.smalley.work@xxxxxxxxx> I have a v2 of this patch in progress so feel free to ignore this one.
