I was looking at PBR daemon code and looks like in current code, the whole pbr-policy (struct pbr_map) is considered to invalid if any one of the contained rules (struct pbr_map_sequence) inside the policy becomes invalid.

I cannot figure the reason for this design choice. To me it looks like policy rules are pretty much independent and policy is just a container for these rules.

What am I missing?

I will really appreciate it if anyone can reply to my query.

Thanks a lot in advance.

Rgds

Atul