From 92ac23c8bc8bb9eaa878a8e67037c39e959a5f83 Mon Sep 17 00:00:00 2001
From: Patrik Koncity <pkoncity@redhat.com>
Date: Mon, 17 Jul 2023 15:28:52 +0200
Subject: [PATCH] Prepare build for new keylime-selinux policy release

---
 .gitignore   |  1 +
 keylime.spec | 14 ++++++++++++--
 sources      |  2 +-
 3 files changed, 14 insertions(+), 3 deletions(-)

diff --git a/.gitignore b/.gitignore
index 8dbf0ad..13293dc 100644
--- a/.gitignore
+++ b/.gitignore
@@ -5,3 +5,4 @@
 /v6.5.2.tar.gz
 /keylime-selinux-1.0.0.tar.gz
 /v7.3.0.tar.gz
+/keylime-selinux-1.2.0.tar.gz
diff --git a/keylime.spec b/keylime.spec
index c7f9334..b2d2887 100644
--- a/keylime.spec
+++ b/keylime.spec
@@ -1,5 +1,5 @@
 %global srcname keylime
-%global policy_version 1.0.0
+%global policy_version 1.2.0
 %global with_selinux 1
 %global selinuxtype targeted
 
@@ -9,7 +9,7 @@
 
 Name:    keylime
 Version: 7.3.0
-Release: 1%{?dist}
+Release: 2%{?dist}
 Summary: Open source TPM software for Bootstrapping and Maintaining Trust
 
 URL:            https://github.com/keylime/keylime
@@ -29,6 +29,7 @@ BuildRequires: python3-dbus
 BuildRequires: python3-jinja2
 BuildRequires: python3-setuptools
 BuildRequires: systemd-rpm-macros
+BuildRequires: tpm2-abrmd-selinux
 
 Requires: python3-%{srcname} = %{version}-%{release}
 Requires: %{srcname}-base = %{version}-%{release}
@@ -339,6 +340,15 @@ fi
 %license LICENSE
 
 %changelog
+* Tue Aug 8 2023 Patrik Koncity <pkoncity@redhat.com> - 7.3.0-2
+- Keylime SELinux policy provides more restricted ports.
+- New SELinux label for ports used by keylime.
+- Adding tabrmd interfaces allow unix stream socket communication and dbus communication.
+- Allow the keylime_server_t domain to get the attributes of all filesystems.
+  Resolves: RHEL-595
+  Resolves: RHEL-390
+  Resolves: RHEL-948
+
 * Wed Jul 19 2023 Sergio Correia <scorreia@redhat.com> - 7.3.0-1
 - Update to 7.3.0
   Resolves: RHEL-475
diff --git a/sources b/sources
index ac05c02..131e967 100644
--- a/sources
+++ b/sources
@@ -1,2 +1,2 @@
 SHA512 (v7.3.0.tar.gz) = 6a5ee3e642015b4c09058ab84db9c1c132d94b387284cb363285fb43a875921fdf0e88ef4b67ab886ceed4e6a5a49aeef0334d42d9662d27f865287d3e9e000b
-SHA512 (keylime-selinux-1.0.0.tar.gz) = d0b4fea7407ad493b08e6f087e8f32b1a65acbee59bf6e20a0e26aaa139f56c1206c7e707898fd8a2e11468cd918f76cb6985f68b8a2faa8a2a4b7a9ba4c3674
+SHA512 (keylime-selinux-1.2.0.tar.gz) = 6557738add1cebbc962f8366657a028f4092a36aea0d8a624aa0568a50ff49a516d34f16d699366ac039352d219c522c8ee2ab3a8eea69bd72c616cc4e9a9a7c