From 1014cb1eeea5fa003bf36eccdba1a7e88841b618 Mon Sep 17 00:00:00 2001
From: Lukas Vrabec <lvrabec@redhat.com>
Date: Sun, 22 Oct 2017 15:56:04 +0200
Subject: [PATCH] * Sun Oct 22 2017 Lukas Vrabec <lvrabec@redhat.com> -
 3.13.1-298 - Drop *.lst files from file list - Ship file_contexts.homedirs in
 store - Allow proper transition when systems starting pdns to pdns_t domain.
 BZ(1305522) - Allow haproxy daemon to reexec itself. BZ(1447800) - Allow
 conmand to use usb ttys. - Allow systemd_machined to read mock lib files.
 BZ(1504493) - Allow systemd_resolved_t to dbusd chat with NetworkManager_t
 BZ(1505081)

---
 container-selinux.tgz        | Bin 7147 -> 7150 bytes
 policy-rawhide-base.patch    |  12 ++++++++++--
 policy-rawhide-contrib.patch |  21 +++++++++++++--------
 selinux-policy.spec          |  11 ++++++++++-
 4 files changed, 33 insertions(+), 11 deletions(-)

diff --git a/container-selinux.tgz b/container-selinux.tgz
index 5d202570ea2c8da871b62361de046cbdb7930670..ecd2a47dffcd5431967e9ab4282c88489caacf4c 100644
GIT binary patch
delta 6949
zcmb7`RacY^qd;ktMwISGI*0B?q`Rb>L8&1hnwJ)k2I+1XTDqheknS3~yU+I*&RY9w
z-|w~d5$F^IP({B(7|cI5KtMh*If`EqNSvHM=#s8QhA`Id?K&Yr>V5U;(O3KhsTWK(
z#Enmd9h6q9VoVeMT?zI*HJj;N&_vO)C|7;=lO#}FqSJX%Bs3easQZ{KM^-GSX;!>k
zW6EqI^LW}0zPN)wNtjf0{agb8|ECi@&>6TB0NeoItJlZ&nriUcx@p(j=azsnq_Tr4
zs5u3SnKiCQixMsC>cZ1oiT%x^$GME#->cey*HMXEC3Rh;i)t2Jk6$R}I@b0do9qox
z684#;G><p#E+bfbnvn3i{*7Y43O>!3&<jH&gMSlBwd+y!TjRX7(9f}kf$sA#j<|56
zxYU5x=O~Si$5HBtoP9Yw8-s_mekmg~X9_~qsAQfXQ~b}*zR85nn&3WWp*Nir8xyK1
zf$=2%9R)$~+H0HeGQ&XI*8qt^{;BGTiKRW|vY;LNby7-3>L3r_y^WCyXPJ*+4&91|
z(#j;}_<7Y2bFhF8rRb}g|4G|?$)nFsdBDp3zu(yhs=jr-ScFc>ag}@rUw!)w$Ghw&
z8Tn7rtLz)G4tZ3t&Vi7j527*oh4zE$_$(L|6|hs}t|XtY^N(A}cHp_kG;XMGwoC2%
z&Q5+y>VB0N9lU8G5%s!0HT*{M_z4(c7^;S_!eRpQAy|nx$*-cVe}br68Fh=Z8R(;F
zntFG+ze8v)qcN}j$DpGv*dTiLyVb3*ZXr-&qrH<_lt~?KA@6KZqQskb)fq$WEfHez
z@a~ePG670Jzf0xkZ<+sqaDyc%{_JML;IW3VEij%aZ#7m{mc;po)XzS@nEO!()j6G)
ze*MFYoY~4hDA1B?|D&5!^Se#tGO(mD`7WzNK#k(V5%1qWixD1|3`*G;JDgtfr!+Tg
z&W6X!0(oxKeRMgDWP1})PmAwfvBm99yQWKr7+T8`nOBRaBr9n&Oq9^HD0fL3aDtu{
z4ple>aVh6D*m#$*639Ydsm$?Dufujmi7kaboeaPQaDcI6My^4$vFM4!5P<MG-*B>h
zH|^P~-5ZLt$0d3RCLtQEuexMlu{9QK=^q1=4k6t<6h0P}b&O=~vaTLzrN~@z3eP;h
zTS9b60CffZA%m)gDr-q{big6<DMQdzbQ(NL!=J91@`$sY4PxEXaqfBba6OO5zz6DG
zTPJnw^i+%3BCd@B?$mNkz(wiko3xZ111*c{aMVS00h<%4ite>b+C1at;(*p=-&+^P
z2*xgz4G=Iphi>#KL3`9Qsc>L|)#wTj|ERS&XkJj#cuwCM&(9z8ts~;C)5MeW@~Z3Y
zI;^sxuujijR8^rIH_W;hvDBs)9v>KkO9cAPr}R?$7k^ON(<M3<IB2y`5_M=OYZ880
z%~Le`0L-gniNG^467U_XJ`NwzvwpY4NL0>~fMo_U^^9eD81bBAFs2L<tMs~JH4zoj
zQ=K#Y6q7MDlW&0pA$0~`NTA-?@@Y(S;Y15UDz#>8c+`IAx4zy>y}aWYu{H3;W~Z^w
zrML_<$6QqVS<Ep8P)`*uQl;oTiF&-p<@2i$42c~26oDpe^z>zhE-tK7ec&BTmW&Bk
zN5zM;Q&wuTMyfOTTn1_z#W6yxTo?0`n|nsl7R$V%hSup>PZO#o8*87IB(u}crF6V1
z9s4lkXsYal`evh^0$_$gQ#VBX1Fd!^dde%q2&4SdnS7{#jc8gk_W`LqYkS$m<{s9E
z(+~HiCS!w<qx%8kipVQRQjzBe<b3KkI$2&CDbiOH3Kkwlx%3TIeOx1UzpWZS@R1|8
zt>au<ABGEjJj_R;@s09Xj6Oa4jHKtuE|(U`i`Q?3BI7pE4@vEDpDz^~)p`RFSGBKo
zsd}X<UDVP8hn-GKHujQBHSGTxFsY`C8Rw%A23fPu2GZ8D<Rn^`PjYFLnc!82zQ_=Y
zbH+p3sjU`Lyg$Pc)QuhV8|TflN>GiW&!=Vt{1z-2esb($N{UQhYY~Rkf)$I9S*b!1
znIF}pW`dOyXC4#(7vAfba>yfEicb?!`u7mW3-SiQDgTKfy)mKbIOI9Ear&#j^%|Z-
z7FB4n*ggf-#8f~w#o3v}+d^{QL!z(QC+|DSLb(pC0KXHSV{YfxIdxr4b^UQNXH2yX
zDs}06(HM@60f$jKBlKH_USWNzTy4Y}s&oyz31u2f{r2I(WiK~>#iRPaOwNX;#jT}T
zLxzq(Ww;kC-{oq;bsov5?O|ZzKC6uPw++JP<t@Iz0ly-h-Lwh5jZ-&T&S^1;6*aG6
z_E>2Cx6>qSqTnBX<`e{$&nvWL7X`n>5cDmno2TFmZxhkkdh6fl$@g?0hg&?pE-bnl
z5)&_m_5dcy2BczIxJ2?&E~r@MDA3-;4QX#c!h+AQ0b1upLAfO6bxp4Ccd$zY$5YwO
z-fH@a)v+jDcA0Rxk1@S*@m*XP9xgnm^AHC2pg}!@3yz2wND1C%&E`7s3IVOcxU&Im
zOJd}xI-Y?nb4DbWn!z4l*1cxXWAgZKLO%0wxs1r*gZRFk^LeDV#!$Rdxu;usY^Mb#
zghSLF1q*|Bk06Z%x;?cJf$l5*kYOb4uliGmd*z{rJgWT8DIG)&=d;PxEp9bBE!q<D
zLpT?0S^AF50~Yelow#1;jFc*%TbdG>m@Z4)?NX4{b<V$$tq3c3rsJR2^B;z>89Mx8
z6z}IW3iDV)^Z9Wq3)?tD<c|H#5LAKv%c2797XqiuX$QCt?$Sryi-qJP*OS^sH)Cda
zRkI^F;Mp1LNr(2YD!0Ki%#m+yb&mr-9b4W77k`}g)e5^xA3K|lm#()-mcf=l!2X|^
zWSHMe%4qr5rh_D@-x4#JBWOldG7X~y!U18nc;$j5>xO@LMjG1rORvft8NL8>{sS_J
z|A_|flSgvw&_S`buTy8LT~@<yIP6hXfAc%0fjn1;t2$yxkDu()g2pT^h*OzQ>FcY#
zGdC*e<{icrsIA1%we^KR;FMoC2tNp+4Q`W;ZmC0j`lK7`hO4+KUrGkVdq!?O$EFD%
z71os`iY8O7h}xZ!Qb+nI-Zp{uvvsp|tSyNZKd-2_bD<9n(5fq*@URo(+wkU|lijDI
z(WB^O0T>s^%*F)su-<9(sch!#(BoVSNsu2k1tHr~j`v#@AHG*zd5fD)Fo&{w*2edo
zZejh3Q&}44_<kWogR2I%`=NLVbRC1{Y4nP%8CIF05oiSMN~uS(ksGj3-GSX?K1WYv
zm;i}fsE(tet6&oQ={rI3=H=mC8tmqh@@FHdU4f-Va{{65$AV|Q`YNBSTnJP-?IxS7
zM!az$CPBf5oKc8v(&@bjXlJKwV<PntUi;vT9pwuhV(2isR&`B$pX#QDV?V|7Y0^|U
z)ulmG?~6|4rcZ&=;s)@qtu!6KnA76cY3g%145D~8%kj10I82jsKyvnuK=`bK;+ESx
z3&xqh1s^;c$!!@cp_V6V6wh)sBEUf@<d~M(3F&xiosj7NqyX~YIW3G#PI^<-0Z~2?
z$2UEuZM8(x*z_u$81M1qVPpJ_|LZ<k;TAj0{dncTg}gzx$OD{5gfCcn&~67kAY=-C
zP;|eaiR*H9>WC6vsntvOEqn0$A~PFX;D4T1HkT3cRd`HUXz*}vT7>!2p2p>7E57+V
zPCxgjh3sffw|VEB$p|(XuG6}ip+wWtFYmnHtIES0uMi8QrfSP^`c)=Rbs;z!^z1MG
z)eRel87|vazOR6zwBs6SlUGZG_c$130|}3+0jtOKO&CJ7QJtU!<ec8tUM3<I=eP}e
zszqDJEbH@64ri#Bz`CFDZ4hUMHa;zPrW3w04mVNd*J6O|Q<^4whNzcP<K<j)f{~zM
zz$W%Gqy3EF-?L~QoLc*Rgw)qYB~0(PV9I|q`+Q36sDPsJ`P{yr!e*EFYHTtRlz6lD
zBB9;ys_Q|?Kievo-!_*jHst;CutXjgEH9j6Hty>B6Ab^*Ip)-1+p0yS7^ab*&!t@D
zREfT954PDAu44kP9q$uU1c(Wp{|K`yIt?Bmp6Rq)dg75v4<ItW2dfDr(cw)R`tL{1
z$<HD&0}+rwp0EzG(&nCU_fYthwi153;Ej-W6^3D!9iH!vrGOAB*Ow9IuwLI7=JFMM
ze(~T>#rf`$0wMP7D$!5;&%t<x#`AC@<-pY|quPiaM1OTc$xz+c8P^i2$mRxWlcK~U
zzFS5^v~Nrq|LmdRI=!W%CW?gQs00SN+$Htu04SnPg9(OwMc&`>3>k)>tHVSOin<x6
zR4Rfqt&2{!p#@aDxMpku>69WCvi|06d*{PplE0e4gn`%TYb|=j@?(#GJ;Iz#;8AOV
z8M>x}x#E>E_#pWxrswepUnQ;5V9TEH9#I>*xW`#vS~BtzR6b6q<F@m@yA}%L?Sc*9
zH7ay+AaA9fEB-iIhWw9%sUt(r+6IkF$abQvnnIOV7BZ`o>)+ott@Cpu>CY5@O}$88
zNUM&Ag({_?fasM!NP<hw^-{ivsVhAWPy9ccF=_kmwlFfLtNy#llbI*eUvvX}kC3bS
zBd^cvFLS>J82<R}mUk-@n7G>6-SfE<FM3lv^T(xcJ5a7MiPhBme^^D2xAq6#C;4IX
zBeEyeV><&XHnbK@f2=5z_#auk@7c6S3GCq`kM4WoQEt1PI=DE+I0U*N9dNoH1<6}J
z@7Xx9b@h3^n@BV|d}m@asFiPR2X@+fZEyZnRHNbYWT2jTwA2DVy3HB9x=Ify-7oK6
zsKRhf88I1t^o&{u_Mqw3h-7e-nD(dd{%Wg3hz8uyI+@@*N|OX$m;HN@A|?mdD8EH9
z<2E11LOT$y3B1yaTbN$uOx1%Zq8C8TcRuD{b!f$c_B?oTHw;$C!j|vi&QH<Er~hGF
zt(M8$yKkFU@>HFPk9dbu@yNW%t8u<uFrD)DOiDji6AZSwzkclh&r90%Y;~&x@9NnP
zR~k^`39t<kiiXXi^0q3Q(6cW|_zfR)Ub_)ArWY{>-{U8AC`vi0Le(s~#xC3g*!E!3
z)om4sj+bt@1p@woc|=CUg8ngQINSsAJG<s!($wcrH;cCDTZ8yfC5c8?-YDp{m?u=R
z?a6r$#{5jYE*SBtAmgNfdZBe));3Gp5||%6=5T|RINU0wcuzf$w8jbc9A~p*G`Wj}
z*xQ(9c>M}<KIPu-bY`7oLs8L&dnYrfIUXi$|LI85HG5B*{ydRsn{zlJI7cZ`WX(#4
z?IFI-o$8I*Ax-JAR`PYrCGKb(2O{CdGjC_}tUVi_W@eA;ysck$oY!NNCe%iI4@lOZ
zGn&qde6*^EIqf&Wr5y>9#9L=Xj{dTwN7@yhQ})_DvTy#q`EEkUM#>W(YgMf>lfv)d
zyZ^uOyCd*nFCOm*`@Qnc6`wT&&h1>#ksddM3~R?dHs8L4A&tujMq_5!e5UQaLsy9v
zlrm_2aGt^MAQJf+;G+_xF~vFr1EwlC1aNR5<sNItZ2!b8)E&-0VwXBUT|*;(nM-zN
z9lV9#l3`QG%%dE8Ze-vL&1qOvbVcfvb{j#E-qCy$EXJvV_V38G0x^98?lE+lGXuE|
zL>nGlg`UtX%jIr}^*``{dWXeT*z?z7YgdK{fn5ieET=x1Ii94kBvty)0QymY!2TXu
zYFb*R&m3E6k@b|Tg=W}v6~R0nLz(^UDz+!xJQ=U0$*!)*KC17yY{Pf;1w^)17xVK}
z1Kw!?LO9fdbW7Cb`OgJ%CSiwh)!#g_N5|Wbb?xgAlks)XQx4T|QN{rVrTA2NGxIsz
z94fEkm_7LZrDvt3!}V_sP+|xFxT(9@NYpc*^JIzOh$)mhN_EVAZ*(#(i1#!l6$3KM
zQAk57tg-AC=$1iO2IG#DI9G{KQSBxSGwp994hspd&1Qq4i+hxMY@89kA<Z`m5%bP?
zk!dk>v6kFQp0+MC`VqFCoh6{dSib7UyOgo-S3_}&nv~NR#k&@OQQU%ZfCRm2J7f0O
zE)B=ry&Ho)E@jE|??#R&b*b#~47c2<usiaXN>NU$7$nU(3NgD`0eWj=V(5SKNsT2=
zvAVvc_B7Edw%>V|bP5ouFbkpxc-+gZa;&(BO%CrIJ~81QQubR!YW^qb3gH0rx*;;~
zi?B7Nz-X0lDESrv<f>L@6XB@vb%Y*GA(s03%0Ic!_5Hm;${Hf72+}t8NrO8i0&Q}8
zM#*%<@?QJMI5}eXfl8F?s#}Q>ZkD%bgS@{HbJ~9{MN|jA{Vn0-C%ac|d3jt~%Djp>
z+142ib!^Xp{CrT(J&3?`^<c?%@BfIT<=L0*ZtRgjR&_%FEJGgglM<})MX=Zno{+JI
zoVEk6p#yk^hQFNK{5><B+NOlEK{JZ6RxGI?nb^NqFwQd_uQi6)*}3dO`l_YpVJTXA
zTt(esg1lPfm=96kzcZ@`#Yj7#JS~zte5=(u6NsAf#1@5u=MT078jLj}67CwEiv#0|
zT;?x1FPwP+Cbd68xwrWFZ7nL!(Zzo%HXHPkp_O3B+7X_yW<wwPgiK{z2)}V^f{d;_
z<0ijI@{sr{3yl6(-Uu;E+7~;q%pDqo!nzHbFnI=%!<1Fhvtmui7ITRFerc}!uxN1B
z+_%_1F}18=hRRy(N?vP3w+}E3aoy~%=_U0-+7BRrBM4;P`JO*Pp{$uX@?VAbe?Kz*
zMOqsl(^uE=7=?AqU?p%hop)6|a~SL4-L7b;(X|%v$@_SzqGEbb4Q|qZ6dMoug(7Hb
z*N~3O{qcubn&S)skH}8vR2tfMqmwUVS>`_Ab1mz6tA&f@>=fJew-J<56p?&_XWfTy
z8K%hg0N!m`HO*mZw)66}D35+7k52zYs8MB{O69Iok}bSG&9yHo4pbVH6;T_k3E69z
zmr`+QFW0i(Sl2}k3Cm9LJ|&T5755LE&@?5yQ({Krpe_FHK4e;2rk}#Ur}ya@ibvp&
zldp=I`4AJ9%eVVS^=JoQ{)?y~45XX4<r$Cy+`LiWJv1R>lUd?#CVUBEs+p7ICaReK
zZ0=>^q^ZmIQC=;TIDLCRJeC=^3MR`EzNNqR<8K?GO+I1u&(3S<-6L*wCa7yiv0dw;
zRzG4J*t*iUA$rk<4XMLKzeS<-&m6+=XR-1Y*M6%~?YX(0{}62o@NjDd#lkn0Sgb0o
z0ZM2NGBHM_{LMjj>F=BW+A*U}13VTg^K>S%2PCJ7hsUTw9u;#?D8&-E%Ct;eG>CRJ
zn6-F&`AePr-wLPlBo5Obd<0Z+n8G&y#0C}Wf7zyUxoX>@!4bc;AZHJ8vWht^dyYC1
zQgFR?jS5)FmNQf%!#3|94_V_>SX0BM1n#GdbO4*<)}`Lb2Cm=N%S09v)@IAe|LqH?
zhW!=skhA#ADJ3b${u%5)Kjxv4csZX}KXgoBCT6P-`T=UV-s8*wIcv2TBlM%6Kv~wg
zY9fCeCKdK^cMkFB%RM*D-S}}%b3k(F#zcBb@z)x`xXh;}7zaON6zI+f#^Zq@K%9#2
z14_JtVK%;(>TVXX^%oaIHrJ^3h#06>$>2?$gZb8x7#)%IpoG+p56H*Xh6b|7o*H)P
zY61}wz`R=}qPo6#;!FWc#j<$~1&~MKfQpTKGZ+QCd<p7n98<qx*+?rLURou~M)~Hy
zd$vTma)bTa*<SNabcct|A2zH4M;i)+w>-W!7s{HqFYM~N-^hZlju`?<__+3uFUhD(
z9ylQV9|-Go##6-1qiGLU3X|6k^i-kuHOH)ED0csqueNs&%oEm(n!25qwA|`MBgTef
zQ0PjpByzJ8i?aIneEV)V?iiE4E3hAtfOYyP^SKHDVX@SS-%Tj&Ys-oN`$?g6!n$W9
z*dJHfrVlCS<(V7;rc8ew6B}T%aJW-l5~XmnJt%oj2C^~7W~Yg~Zy42_Mk#zs6<m=t
zY$y71bRGaJW;z;3m~)MY)+s&P5XFMqzr$ds=k}=$B!r!g_WHca?8;BCx0Z$-l}bCe
z<=b51?;2s&$Aut~uJVci-ieuhBoRV`Q6+~IXWi39M%r|<s9@qH#&(kmpYmBdHmaC9
z&y};PlP4Gn`I}*vQGV5|#@K%9phEhQJXR~>y=jf(3#UorE27l$`yk2X_j&_giYW5j
z*7_Y^ko_~{Z^v4Chfw(`(T;y7mceFx5;?D)_j`HsF{sE?A+6m&m&!v5uB{0EjY;;6
z?6p@E3T_7KUA07Q4o3Fb3I4`~pHqC$Kkt7KYt4ks&1B}vYJI8>>=3~c@@jQTn3!ln
z_|~-jznd$%D|+1fVe4+SA{N4MR>kBxu9q}z_^6PoQ#0a1l`*BQJ0VqYT<+duiLW-X
z2|7O*{m9}1sS`8l9SJ?s_;L~li3k7=4`R0~V63^VtIEjFxa-1Nfn|&9dRry(bgpzR
zG-I!>1AkgyZq-80B-Z=@-^bVOJw?6J3zL^0!=3xGL-Gp@i6tpOudDxkcgfqM42as>
z{Q*uYe>t01R#WdDQnCH1ueI$Ne!MCI=BvAco9Rev6EHs+ppm+7;DA}WQI1)BB9e|s
zNP$N6E6<-77C-G?N|uo2plQq`3z~L`hh49Ghh1If5fY<uU0x6;7~9M_#^<--h3Q(k
z2X&hWQE!mR#}Qj$k^S&c<C0y??W~*f0duqBG)|2X9_8(#bJ9<)=>~;eY3yq`zsOU_
z>L~b{mCo0_SxYZJjRmywyQVqB%bJ=nQ~^_z6Xr{u_o=+#N<}}S@Ti5&^MgZ(;PIV8
zUS&0<G^5~kjg?}jWHvfQatU%&D&pa=A3j@Po5k!KYKXLN2!@#qL1Cc--pggC*|{6@
zYgLbUB@YhU)|V%`C!!4LFPz9RU;on*Da4GAc$c&AUK9@;A9&0qBE&JHn(X<0nFmlS
z!BMgt_@qvW=Au-$1dGS73mpn`BUz-K{sdBE&{`f{c~%&QPozg#c6Ns{{2afUgUzIn
z1i%(Ye-H2^rFEM@I0$N^)$B>nFL=r9z<ue?nq4-OKz${Opo~tP<ha(L)9wcpw_*~<
z&4AX*X-MLl5K@E!ec(J>$X%QnjlFTbSoMN{`450ZFzT}#8v<+8LFi&+r$#B#34HU~
gR!BN>uizOLzN95w^#6x}{e{Z#SKJ!HIRe7}0pY5ys{jB1

delta 6933
zcmaji<vZOEz<_a`!*sLhX=a!>ex^-#cN|Q2ekTvp%@Nbx-G=GzI2_$E-SIr{pBK+{
z-7i1?z<nlgECA3(Vj$eKAL=3?pBf&=uJR{LE*^G&t3mc+s<A$CruoU-4v}*Cvj#y9
zT0=eS+pWq^nOj?#W=rs)vG#hqEoTKusxnBG&d1<^k>q>}%4mnT%5~UN^6J2S4YEha
zZcp<OGy1aYz#GSF*VATu^AT6UomfZb%Wb*mzx5ZVC*bwPQ|!Z9`(1PMzb-6zcG-Wn
zLVWf*=snuY64VX}L-GQ*uWvSboqpucOH`L46~Et}@B9gpG}St6MkJ^i#dS1wDMIb_
zNW>Y0<l~5h?>k>Fq-!b>{&L;81dDOL-h7I{wa?2bmYO=7M|V!|6RV22k>11!sOS|M
z3#J=O6azX<G`L<xhBmEz@I!R9Kupe4DdPGNsYJ6vg&ctptT&@Vsf;-ow>&41Sg5-Q
z$y2<tz<I!*C|~TZ<n)lMtx8<Sv%zU7kBq!+RkQuzy|Nev!IU*wgMV$gw1vIzFE5`z
zqGLT~7}<7D3~_HTcAVL|JoeNs$5zd8CvH-40Q_txC$5V+^-R&Q`59%jpl-#Trj>i^
z4Wx<C+unr+Jv8@pMzs6xUUN(uY1J7%^OA6)(D`xjUEsQ$XtACDg?xj6o&OlwN~e;*
z5{mIUl;`~xkvVb5bw94g$+@~D$6&r|gOsUw(uAtV&d*0Xf&qs0GS1p7)Ec$G`_WS;
zAe@6QNJOYrYDs183$deCb(P72nLAZ_XAJS-dI>r4gXJMpcy5}i{({Yn!a+wdKEpq2
z6?R&2P{@}AkD!9*;Og~sFz7!~<QTj+18uo1fj=#Z^#%CkuC_-z*wtvp&=Q-d03~t#
zy?4XSf8C}@1-_ipa)O~$HDMZ=x?4@Rz%(|Jb@jM9<nQA<UdLP0EI&E5Vx))Btax8p
z(eD`~PfdykR72-O#lr)w^;-e_K|nAb^ofh_$XU*zj6uHn6W@C~Sq<%ko+KIXfeMKa
zZ}E>anEO53Lcc7nGCsNlPrcEz_hxm)`H`Em7w2XDaM(T{9CJW2|M4f&ErqIK10bFE
zfpZM*FvG_4-31|=@xW*ccZz*7m)zIw-X2D)fLTG3l1b)yF2z&LJ$B<mrQdZ_31Wu|
zSA<~n7Ag2M^3Gb0Kb-~?$>s3N;O9D#qEiq?;Q3Tg2#gP_<TmRRF~y?*JNZj@*(~}P
z`X@2-VB4V%B0Kg_MB3<9jbxYafF3#_7Aq^hoQ=Fzlqa>N>8ws&o@ZYNKjtK7b^`6|
zo0N(c%NzI8Y-AH?sVuxeuPK9p!^3D93JKSl?8NC9K-{VuU=7|l*1!KJ`h0g<=NoVQ
z`m)buk;NF@DZgzaq~_1UPKf*87eamj#lo+pB_dz$2qG23O;YEo|3hICP|Vm-%}{Kd
zKm3O)wUTh(9%i=0v#t>yrDInpYs9P@L8%_6f%OsrM-joaf>*#20=2noMFw;T!pv(r
zSr{LFiUppK&ph(>_G1&Bqei`bY7xtiNC<P*`P*Zj1?5llPUsuC8N@r1iBkoQuGoPw
z<&aO~(BJ6~1qAWAo1z5*OyjRL6)XFt-@S4+_4~;cM5+Y&rj}Q%p)}6y*P*P^;Y=%n
z-X(f7z88#GSOCr?aR_amsJff#fXXk+kf?}sX(4kAeSc!p?e2uUEIM0-zDz1Q<}f+4
ze<ZeJVn$bLW^DHY!FA92ECrn?>xak;Y@WDUmK+T#C!-?MPYA{U(L){^E*8gk`h*T#
zqan}5KX+TU{7MGWcUR&R8%B8YA<FwXfo0WO9T9azP)`s+ISh$0oslw3Rr-pdJUM5R
zZ0f}$hf7_cAy<Wz7-Ly|Zq&#P(8h16v-{MmkQw-aiJlDV$~2JiuBcu5R5$yvy9c~>
z^J?GLuJjASsCoxj&hmdpo(ZrQ9}}_}IoYIOtifQnD@7v;RD4KcSN9K#kUtG_VmzU(
zJNNef3q$?b*EFWigZ^_%t*@*TcUy#GNiPJF-L%<9!WQVpVT`a6U-Y|<CB$EXm0IWF
z!@K{c0W2tqMndL7YQan2jkOlVoIuT7edkaVr9tF=nk6By#x-0K-C#+(gI<~Jam02N
zrn3F~q2fgR-@Q}V?eU2h@U&Z8^=>?M^{H&A9i5Kj$nt#KF4Z*FX0$P^E+MGb77o_;
zLVEj2K(K4-hRCI*PqQpk!-c=l^N3K0<@GWY_03fai@a||ksscbaV(*iDh0Bcb%E~X
zxzN~E)=~g)smQi*;XXs`gTp;i;ceHV2`?yO$S6!^sbKL#bdH>-R9Y<}rC(cyRb1d0
z*qxW~S5T`mzX8U`MX0+%)P-wg!9c9qErLmO;Oe)G)MsHX4<rBJc&AMLL+0&;ucp?0
zHl`*PglKQ>npQT~3Ze#NsIA1@A^1~R*1>GMFX6!S`TWcP+}#U&w>s@=a#5ISoF>7Z
z?D-2O#B*(hT{t4smd_>|JUIApkVbi=qrFQwe*6s!KJJ|4Sr_DV^0i!i*~;bB#hs??
z#jVj-5UcD2LA|1xcc&2LIIZhn5gwU@-4VK`g~@6Xgw6r{XT#=**OgrOeag8^%Z;a0
zraOR^yWk{?I=Xma%Uls;dhz4uz8zX3YDs2I&ite%=Da1;c7@%S%WAWn&Cq$@sNAVE
zAS#A>%l&KZg37P{C<lMqGh79c6o(TDrF`ECHLBA_<lzIc(&T=;;RB_mkB8Na36%0a
z4`lJ@mHDy~+89!HR626*#%PgCPhAMmsa@c^Oz9)@5`W?RSUF9@r;4pww#CgA)B61u
zl`(zCMfmeQjO?~tGA_fc?mmAJT+u#hNXJVVwMs(=m3khg(5s~olChEwv5%0SVEQpr
z()|<b;gKU%Gwa7JbFc`IOPYk!qzAD|Wp;bUn*5;Q%-hxIWtn8{X{WNUz9^qo@dW&W
zFyMP5OfwP~4$FYa2M)Q44cFRmjtyt9pdxk)+>R$LJbJ$5UzYBsxslWRw|F>JSLG}W
zulRekWvb?(vHuPE;Fi?5F;Hn7TDxDmzKa_ClG2}hejOHSWuB;SF7l`x=^vDQdYV?q
zaUI*07@+i<Ynanxjj4E~kNR!%i57r&`wN7>oxj3dpCOa+X@&M#sXXjIQtJdda2=}G
zyE_AX8)uj(_Vz|A?8FUI?7hX@9}PR-1t=jD7yTi~ajgKOMI|zAacU8JR>@CEVg4c%
zIV03Tx0}ymDL9Q6Wd2|mkb(-l9j4~69&0_CX!`kB9_Xass)SHBR=L>W!hpub9{w@t
zjyxLy7d~wM!rbDf0NrJ>b^EP~6Hn7=csxPd&*hE<ReOZ|KW$u?5=mJ`SP3{z3$wn<
zb$h;;B!lO2D5{SEvYXCfni`gAK)U*%wob+WrW3qHbLuSjkHnua)1r5GHBo}1L7~4s
zb)pbfF-NSfY1RS<tMLmq0-Uy1A%~G^qLdB4Z24$rd>bQY*?kM=zVoQuyo7N2Izs#v
zXsoXzOIlhl+Id+xuReuOOI6}AuP%fjBbG*9zke|K2b5mnIrmR1(zXiQnC<QW>hsZq
zpn?2KP?6x7S$MjWTKin90yr4ylAd?%>PXGpCF-?<VhrJ4w&~q7ko)mgCu_*d1oX!$
z28Dq7wPD+lQolM6SKvf*&&U=;JFDWp4W{)2mo@I?CgRqs#ne8wUgOI5dnfsM*+`Q0
zV$-gHJodLnSKVRzqaR1#NBN#y*A|en5`HuKmKg7S>hcHtp0A<|`C_KNoj6;9NbWme
ze8k?8QUnuRHhN6~rl8GXr_^VrMwgU`EeL-H*(GWg0m=?cr^TUyZe>qj9q(a;*~zcw
z?Zy4P1NIfreGA2sS+L0~M*Yu2^YdT!>k8OFq6G|3RVOrq?>lUN!~Ff}=pbE-vN+;O
zZ})kaePV+R)y|z1Ir<Wx+t2TBD+Qq)fH>aKdpBso8WID*>1F5Em49yh`)oiSQ7_7A
z>3+zt>tX%5pi7B&3i^2}cAzKZbmzB9+JTBhs_mfn<F5mZ8-8ieMrYnt#@PcFRaLS=
zE&hez(*}Whm#n2k0Y?wFDBSLBDzDaW4Qie}W>GflJg5HYISSp_oX^e78N>MD)|H@Z
zNxOVo#3Tto<iGS@IL;i*L_+ABE4Zv6+%WTzs!R)&Ly0fE^N}Yb6N!w;GU?l<s5Fu0
zSvUo450<)Wn`A~$LrP))3q^o921k|M6*l9avj>hPiOZiL7VHn-$_H#(W^?|+bmOYj
zhTSQA2|18!2o;a`^!iv$=XR?Yuw#NE*r(FebxSgUzNM1HgFtWGEu(-A3s<iaaQ3yD
z3E@GZX3u!t%&qgvbZk0=izGuKmYOH8i+j!Wen<Yp2uuL`zefefRknBZR{lF}y-l31
zQjY&AvT>QK&}t2YQ_}YnzV7vP7JSm^sWs^{p{d80c{vh|$BDT`f|9N@UhuoMeL^Di
z{ZZcz>}KA&(etvX(7x=>A=;)U8jY3nenw8q{JgKR7*j+}*Kx!;1u`={WR*RaGdh53
zFK2D`td<GYGU0JhW<PXg(5BG|dgpH>t}Do3(EfdImCI+c)*GGZz4i3>_RybeB;Jg|
zzr%a^MmX8=bvmj4ONZZP*&msFLnko!p3iNW)SLX7F(!T6mIlr&T3zQ)u!bIM=?~x}
z`r~{-{E}FYV-I}#j9*Krls;$?9UxBw8ciCIgtpd!)>>n?3|bxMgM&-^Lgp3c_4hPo
z2D%T%d_PO4vvnM-PHY8!ZFTiB;fxmWZfNKB*GnT*o~!Wltz{qKElYd2yqBwK&)6vr
z={BTUCwkf7(`AXrR!T)gqtxj<0k>uP;9IAt9}OU}PXOfi*=dQ)qROkoguj{3+zMw2
zy)M}W!;U`_-XcvYuUbO4vhPW~#Zf)j&DK}p$Dv;}Bd$@h7so|@TDyNHbyyefZKrgS
zRTqeJFUH-RjfT{YG;}?&?2`u!y?db)?YtiR-7<+HhJDzsM0Py$p#Gj7j@i@c8F}|@
z?CMGsLlhXk&qCc}m)0g7+hKK&ZvelYGZsJ1Oe)S<rQ~63$w=PPq1Jwx21UH^4$eN*
zX3Ai<9#x@L3{Q$itz0998T~NbxaR2+{!1j5kP7LvF}Nh0h&be2u@>cIewphXXPJq)
zTbiajJZsL9$v-#u+ojTqvTceDGT9Fx%yPzxHUuc^+s8D2mn}2v?uqYP?+9(7)O$9u
zEX|z0D@ymafvb`<wGKu-HC2k#zh_rX-`7kLsVr5Fxw=)-^JfHGTnam8`<DrC>-e4|
zrBp`o%{}-H8tidgV|mYc{}zg9|5_y=yzw$NY>=ORp{^-r7EmbK5N%#q2SIZ*-8=ZT
zfeZ}yW_W4-Q;8dvuFr)*u`3l79(R=fRnQk(Fy+Pf`eNiCHiytJ4!Y~sfQLl*6IwYH
z^%qJ`bHz{<*Od<%)A;X5d|c@NNL7HLgALKQRzfs*lK((8kmykvY(BhA_W!-H(r}D*
zTJ|qnD3-f>&5APDMkj&~ha9NV;?-0#5<qp^lAz#5>4JBCy~<s<cxjJ1Ury8M>@1U7
z7~+FV(HrH8BcIzlL&6$Zpq&tvzDz{rE0b0(lH(@khmfC}X+jM%1c{`(uROT0DV`Wv
zMbh92qo1igaVyg<G4{yY$*SGN5;wobNiT)dQ+krAR+7qFo$GM$bVn6<mHFdKsDO&6
z<(%J?24-dsN4oVnDJkN85pu-x%}NFmNd-mAo&rnJ2GwIx?#cS6Ioc;*2*(G+P0?$1
z+CqDbt;S_xI%%`NY{IWvF0Kafe&}7hG}1vF4yu>c|DFYGyMF=JPk;c1RNEppulxVX
z;dy^DAk!2amF^VG*XXX>x4j>`vw^&H^$`8gMI#hr;4Bugf@8;k6Q~*7aBTd({ojcM
zIuG2>pT-m`t}6x+hJZ)S(kaUFyQ%Ta&o4=a>32>nI>Y{fm$qluwAF84gW3+NGaUE=
zEwxdzID;8)3|~w?!*W)uqB(W;@<TSfL|~?60j|$GI8G~U_1#;REiEO|9{6g;_V5zN
zcM5eAdXcUS%wDw4>SIB)9I&s%|7+Almb^4bB)RT-U4NN5M21>WA?!0%W-mL^!VSi+
zX0}sarl`DCnf*qRI<aNdP%e!OB9SI$wm4851`V5Vx6S>VXH}w^6AkYtD10Bdac%&&
z+C!4J_0ajjkuQ}%B?7KP2lQNFZEi$3-H1VjE@~E*y58asmJy-I$$1`7gpjcrrs(0%
zKincGnptJIqt2$#sX)Hxh>0Ry8Gjk^_6JUIqO3)bL7pEQ@eC2);+2hU`Oh<)o^Bc&
z1@_5dgXJlhiymSZAFh)Bo5dsDI8qZj4F7~ubP^_f*m6WCpm)sN1YBIxGtrOId64PV
z-J+AlEDs<a+C+YAXkdZ4J)Q6`yXCqHITpoJ46AWEhEc@t=NrSz&pN(SlvfJN$>}vd
zBnC^$(!^CHFn=>eCu1bq-crdyA`hLzxUK&>_s66dZcmhZO5p`wubS<*w`$G9rT=FK
zQ$VEtzE-tsyalsT0<yha|2w6Zbazf&AyM?!?z66Dwb5Na?^yiUQeXwa%Y^7qquaG`
z(nBhu6ngDESY!R$)br$6B$9d5xYMV6_=hFxWX*ddu%hKX<~Z8Fz!eM6|Ei)zPpOJW
zCwQZLt?Z$I_-41neb+Ii)FB-~+GEHg_Nx%e;#IbEExD{V0FWGe{RnO8V$~c~2}-rE
z-tY325{|Yk$r+eiHem%q$mmReYy$cZhAmYePFnM`rCnrfqOQ-NSR_ZFs6IIsA1L}K
zOs9@1tIxD%EIU5ji$%;99z*_xJUClTE9q%p`>x>|#UoY2HQUX?9Ftvd$(Smb9+J%W
zm6ttyooF*3fD?5?i8)naSks}mMGe1YS$Gy^vkrBt&ge4J<d`MTW*9NGqYCm@JX6%d
z^9kqb;FMJl&Ek<i-IZu)*uorFtDnQQ{2mdq3Om@(5>?(ANGfa}#B{2t*RtD9RI}dO
zd}Mm0lFT6CzaqyLw;A!ySQw^{O7m*StFHLgfBMXR47`b-UD=~k@DI@S(x)RS8&w9H
zRcUc)_MWvZ6;yy(qOv)8cn7C(C{=0n@*~vV_1AXn#<_EhNpcu`^gj$8Sv1d40&n`r
zO}o?=ha<bKkLcW4k=Bpvp!l@cImNnoS0W~8`e-<Bh7YThR#XP#Bacacq%m>!dDoYy
zHl#Bu0)WNPxrub5k7k8cI}h+ZNr~28j%suz$_<1f0}FT((#6nj;z5`qK6IvP#civ3
zoFn-vMOGnpD$9?ra=8+~+~=#CA5bbKtUhl_WVzb30h!f3_kIZ~zmtAJJ+$Q^vNiPw
z;zie(je||1mlom3hHQR{-tY|cPUD!4-xMO}KyGu{>)4WOW9V;dQ<1}FuD_Y1T}^EG
z)AmrTc+aC>e>IGPemd!Cz#ps9kMkIIt0gRBmzleKCTbjZ9IOr}jrkl`ikw;z!tqvY
z)VoZL2zTe0<sjyMv6eNz?yW12AB+kN&p|S2o<XYg9d_$9Dy!{8Gat!grQys_+P4^g
z00d^hpowh|qCbO<eB~KQTW!$UAo9c`xA~_OeQZA8`*+b-nsX!y2pYO^xSkmMc0Qrc
ziM_kocJA_n<gA?wbg+GA%)TB(p?endB1lB-pwJrfMbRnXj>*D!k+X+vEF@uWcbGMT
z=uQ&<eh_1CKkw7<VCNmf;TUH1ymfmj(4)+LVtG5Zm0WQ0q@PpqhaYKw+3s1%#$;-F
zR{+#@X?PLN$Zl2+<?!t#k(z6jW9yu)hJr7Qm$msZrrv9|dj>{Ua~P#|?yV|2pO%v#
zQ{WH_RfM!Kn(J|UX*~w@Y&Ad^$v%(TPvOy%uiij3^xhoE)Xe<PvSO!7!#$<|W=t8k
z3ixLVmNwmjdC{t9rMc&vPL^e!IubR51JDi^ySdI~;z>55t_p=Pk0*guYGDDU>>ZbL
zOJIWsSK7knOP-?gLL`0VCN62Y%6gAC+1TuRB0X8NYZF9{ytUNOn`g*KbV0YPD)ypk
z=!%=v_zwL@Gl>N?Ix1hAwZ|pEAn?G8>l#I@JTD9nEd1VFB3*_J=WbB+XxF;YD4*5=
zk(r;itn0(>@;?i{HU>0H>X+xIO>;%Z@-9Y`xgei+8ZAB=x7ofR2Q?8Q1vU{@{YsY?
z{<hx{vG|Do$QON*?i?D6Z7cF_Nt97Nzxam1c<*64)LN1l#1B1p2?T)DOAguz54xjv
zq2q{ye?*uxeAs7(fQcBf&^nC%&-TL-4RYyK$;C(kU0)xYs*YhT$cGZmS?Q}mu1KD*
z7adN2;cUtAzRaE+&3WSJ&)@Ru?C-SWSj|lzc}mApU7<@3$Tj+{A`=JfAQWox$s6Un
z67Du!TR84Q{}xIYc2^=cIX%++aUwUlFi;&9$N|o0s=lqQgyuo-y5Fr%XNhTfTO{yy
z!Lv_bVQ2ruy4qiE+c)oM*E>alw+q(-%DH=ofKDr8w>)$D6M|v&Q8CjNkl)5E@RCaz
zC(`D3MIwDUo?Gfz=N4SPjnmiK`ntC@PU*;3d$nh*`Avh6<w+Nf!fgZB@zb9Z<WD}q
ziD%>#U+Yz_JmN0Q;=nJ(E67p}X)NSRYT$&U?$`aj?ru|v*l0|*fY*;{_SthR*0-Rg
znHs4F6)T8{_vb`$3PM0xeM~*6E^5Z>Q-?IFffdOimsR8)Gb3bI`Um>BJ;Adl9IMO^
zwcgkPhpK3WK3-cuj;#UmJ*}zwb+?z2jbJ@Am(D}buT6*s_vuBIr91-?hl%^bMxMZ>
zvM(;Pd-!w9@~024F$#8$gU$`mpECu|>0O*c`BX|F+5Nhw{R~k30_<w=%A=4Y1!rG}
zUPFuC&yFJG6K>7n9`<g3>}B>q!ut!O{~$c36f^3kUTE0cG&Wl*F{9&*ngj{dSF7;2
zHkV}Iblx<OZVGqn8&@BmyX6&lQ>|}xE!s+BPOCww^M(ugtnl`63HdJ9>sS#G-eXT%
zB6(bVQbYy?SOLhV_JZ|_M~h?I$|=bR)+MYYCEg=xl?Fj36MW_ztJRB|6v{KgG8^aN
zDCbbibND%1$oHl}92k?r85gpQs$~qSi4;#3xA3$8mS)bHNaicM49kUIlGuuhuhPET
W{~PuH5e0>B$lhmFYY68E2>%0%sK5LG

diff --git a/policy-rawhide-base.patch b/policy-rawhide-base.patch
index 7560b462..c4bf466d 100644
--- a/policy-rawhide-base.patch
+++ b/policy-rawhide-base.patch
@@ -50166,10 +50166,10 @@ index 000000000..5871e072d
 +')
 diff --git a/policy/modules/system/systemd.te b/policy/modules/system/systemd.te
 new file mode 100644
-index 000000000..e944cee17
+index 000000000..9b84c582d
 --- /dev/null
 +++ b/policy/modules/system/systemd.te
-@@ -0,0 +1,1029 @@
+@@ -0,0 +1,1037 @@
 +policy_module(systemd, 1.0.0)
 +
 +#######################################
@@ -50537,6 +50537,10 @@ index 000000000..e944cee17
 +')
 +
 +optional_policy(`
++    mock_read_lib_files(systemd_machined_t)
++')
++
++optional_policy(`
 +	virt_dbus_chat(systemd_machined_t)
 +	virt_sandbox_read_state(systemd_machined_t)
 +	virt_signal_sandbox(systemd_machined_t)
@@ -51115,6 +51119,10 @@ index 000000000..e944cee17
 +	dbus_connect_system_bus(systemd_resolved_t)
 +')
 +
++optional_policy(`
++    networkmanager_dbus_chat(systemd_resolved_t)
++')
++
 +########################################
 +#
 +# Common rules for systemd domains
diff --git a/policy-rawhide-contrib.patch b/policy-rawhide-contrib.patch
index d16ef44e..c022c348 100644
--- a/policy-rawhide-contrib.patch
+++ b/policy-rawhide-contrib.patch
@@ -17134,10 +17134,10 @@ index 000000000..1cc5fa464
 +')
 diff --git a/conman.te b/conman.te
 new file mode 100644
-index 000000000..2357f3ba8
+index 000000000..25cbb9aff
 --- /dev/null
 +++ b/conman.te
-@@ -0,0 +1,97 @@
+@@ -0,0 +1,99 @@
 +policy_module(conman, 1.0.0)
 +
 +########################################
@@ -17215,6 +17215,8 @@ index 000000000..2357f3ba8
 +
 +userdom_use_user_ptys(conman_t)
 +
++term_use_usb_ttys(conman_t)
++
 +tunable_policy(`conman_can_network',`
 +	corenet_sendrecv_all_client_packets(conman_t)
 +	corenet_tcp_connect_all_ports(conman_t)
@@ -71621,10 +71623,10 @@ index 000000000..02df03ad6
 +')
 diff --git a/pdns.te b/pdns.te
 new file mode 100644
-index 000000000..509d89837
+index 000000000..63ddc577c
 --- /dev/null
 +++ b/pdns.te
-@@ -0,0 +1,82 @@
+@@ -0,0 +1,83 @@
 +policy_module(pdns, 1.0.2)
 +
 +########################################
@@ -71642,6 +71644,7 @@ index 000000000..509d89837
 +type pdns_t;
 +type pdns_exec_t;
 +init_daemon_domain(pdns_t, pdns_exec_t)
++init_nnp_daemon_domain(pdns_t)
 +
 +type pdns_unit_file_t;
 +systemd_unit_file(pdns_unit_file_t)
@@ -90156,7 +90159,7 @@ index c8bdea28d..beb2872e3 100644
 +	allow $1 haproxy_unit_file_t:service {status start};
  ')
 diff --git a/rhcs.te b/rhcs.te
-index 6cf79c449..14be26dce 100644
+index 6cf79c449..7b0fd415b 100644
 --- a/rhcs.te
 +++ b/rhcs.te
 @@ -20,6 +20,35 @@ gen_tunable(fenced_can_network_connect, false)
@@ -90682,7 +90685,7 @@ index 6cf79c449..14be26dce 100644
  optional_policy(`
  	lvm_exec(gfs_controld_t)
  	dev_rw_lvm_control(gfs_controld_t)
-@@ -275,10 +607,57 @@ domtrans_pattern(groupd_t, fenced_exec_t, fenced_t)
+@@ -275,10 +607,59 @@ domtrans_pattern(groupd_t, fenced_exec_t, fenced_t)
  
  dev_list_sysfs(groupd_t)
  
@@ -90714,6 +90717,8 @@ index 6cf79c449..14be26dce 100644
 +manage_sock_files_pattern(haproxy_t, haproxy_var_lib_t, haproxy_var_lib_t)
 +files_var_lib_filetrans(haproxy_t, haproxy_var_lib_t, { dir file lnk_file })
 +
++can_exec(haproxy_t, haproxy_exec_t)
++
 +corenet_sendrecv_unlabeled_packets(haproxy_t)
 +
 +corenet_tcp_connect_commplex_link_port(haproxy_t)
@@ -90742,7 +90747,7 @@ index 6cf79c449..14be26dce 100644
  ######################################
  #
  # qdiskd local policy
-@@ -292,7 +671,6 @@ manage_dirs_pattern(qdiskd_t, qdiskd_var_lib_t, qdiskd_var_lib_t)
+@@ -292,7 +673,6 @@ manage_dirs_pattern(qdiskd_t, qdiskd_var_lib_t, qdiskd_var_lib_t)
  manage_sock_files_pattern(qdiskd_t, qdiskd_var_lib_t, qdiskd_var_lib_t)
  files_var_lib_filetrans(qdiskd_t, qdiskd_var_lib_t, { file dir sock_file })
  
@@ -90750,7 +90755,7 @@ index 6cf79c449..14be26dce 100644
  kernel_read_software_raid_state(qdiskd_t)
  kernel_getattr_core_if(qdiskd_t)
  
-@@ -321,6 +699,8 @@ storage_raw_write_fixed_disk(qdiskd_t)
+@@ -321,6 +701,8 @@ storage_raw_write_fixed_disk(qdiskd_t)
  
  auth_use_nsswitch(qdiskd_t)
  
diff --git a/selinux-policy.spec b/selinux-policy.spec
index 5e28ec9f..51582520 100644
--- a/selinux-policy.spec
+++ b/selinux-policy.spec
@@ -19,7 +19,7 @@
 Summary: SELinux policy configuration
 Name: selinux-policy
 Version: 3.13.1
-Release: 297%{?dist}
+Release: 298%{?dist}
 License: GPLv2+
 Group: System Environment/Base
 Source: serefpolicy-%{version}.tgz
@@ -718,6 +718,15 @@ exit 0
 %endif
 
 %changelog
+* Sun Oct 22 2017 Lukas Vrabec <lvrabec@redhat.com> - 3.13.1-298
+- Drop *.lst files from file list
+- Ship file_contexts.homedirs in store
+- Allow proper transition when systems starting pdns to pdns_t domain. BZ(1305522)
+- Allow haproxy daemon to reexec itself. BZ(1447800)
+- Allow conmand to use usb ttys.
+- Allow systemd_machined to read mock lib files. BZ(1504493)
+- Allow systemd_resolved_t to dbusd chat with NetworkManager_t BZ(1505081)
+
 * Fri Oct 20 2017 Lukas Vrabec <lvrabec@redhat.com> - 3.13.1-297
 - Fix typo in virt file contexts file
 - allow ipa_dnskey_t to read /proc/net/unix file