14 DAY TRIAL // After having published details about the "Frappe Web Framework" and "System Firmware Update" proposals, Jan Kurik has announced today a new system-wide change proposal for the upcoming Fedora 23 Linux operating system, SELinux policy store migration.
According to the new proposal, it would appear that the latest version of the SELinux userspace project changes the default location of the SELinux policy store to /var/lib/selinux/ from /etc/selinux//modules/.
The new SELinux policy store comes with several interesting features, such as support for prioritized modules, a new complex structure, as well as support for using the CIL (Common Intermediate Language) for cached modules.
Additionally, it can now convert original modules using an HLL (High Level Language) compiler, and the PP Pascal compiler will convert "pp" format to CIL language. In Fedora, the SELinux policy store will be moved out of the /etc directory.
As such, the new policy store implementation of SELinux promises to bring performance improvements to Fedora systems by reducing the memory peak usage and speeding up the execution of various SELinux tools, and cached SELinux policy modules can now be overwritten by a similar module that has a higher priority.
As mentioned, the target release for implementing the new SELinux policy store is Fedora 23, which should see the light of day sometime in fall 2015, most probably around Halloween season.