So the limit for nested conditionals CEXPR_MAXDEPTH is 5. Is there any specific reason for this number, e.g. limitation of the binary policy format or performance ? The RBACSEP constraints in my policy, specifically the ones for fifo_file are quite complex and as a result of rewriting them readability I hit the original bug. [1] While I should try to simplify the constraint I also wouldn't be surprised if I hit this limit in some form again. [1]: https://gitlab.com/bauen1/bauen1-policy/-/blob/dev2/policy/system/constraints/constraints_rbacsep.cil#L189-233 -- bauen1 https://dn42.bauen1.xyz/
