From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <gentoo-commits+bounces-929488-garchives=archives.gentoo.org@lists.gentoo.org>
Received: from lists.gentoo.org (pigeon.gentoo.org [208.92.234.80])
	(using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
	(No client certificate requested)
	by finch.gentoo.org (Postfix) with ESMTPS id 08DCB139085
	for <garchives@archives.gentoo.org>; Sun,  5 Feb 2017 06:29:43 +0000 (UTC)
Received: from pigeon.gentoo.org (localhost [127.0.0.1])
	by pigeon.gentoo.org (Postfix) with SMTP id 1C28321C03C;
	Sun,  5 Feb 2017 06:29:42 +0000 (UTC)
Received: from smtp.gentoo.org (dev.gentoo.org [IPv6:2001:470:ea4a:1:5054:ff:fec7:86e4])
	(using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
	(No client certificate requested)
	by pigeon.gentoo.org (Postfix) with ESMTPS id DC99121C03C
	for <gentoo-commits@lists.gentoo.org>; Sun,  5 Feb 2017 06:29:41 +0000 (UTC)
Received: from oystercatcher.gentoo.org (unknown [IPv6:2a01:4f8:202:4333:225:90ff:fed9:fc84])
	(using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
	(No client certificate requested)
	by smtp.gentoo.org (Postfix) with ESMTPS id 8945334163C
	for <gentoo-commits@lists.gentoo.org>; Sun,  5 Feb 2017 06:29:40 +0000 (UTC)
Received: from localhost.localdomain (localhost [127.0.0.1])
	by oystercatcher.gentoo.org (Postfix) with ESMTP id 266D73DC8
	for <gentoo-commits@lists.gentoo.org>; Sun,  5 Feb 2017 06:29:39 +0000 (UTC)
From: "Jason Zaman" <perfinion@gentoo.org>
To: gentoo-commits@lists.gentoo.org
Content-Transfer-Encoding: 8bit
Content-type: text/plain; charset=UTF-8
Reply-To: gentoo-dev@lists.gentoo.org, "Jason Zaman" <perfinion@gentoo.org>
Message-ID: <1486276014.5954c31f0b864c0f09d9917bdb2652da04b043c4.perfinion@gentoo>
Subject: [gentoo-commits] proj/hardened-refpolicy:master commit in: /
X-VCS-Repository: proj/hardened-refpolicy
X-VCS-Files: Changelog VERSION
X-VCS-Directories: /
X-VCS-Committer: perfinion
X-VCS-Committer-Name: Jason Zaman
X-VCS-Revision: 5954c31f0b864c0f09d9917bdb2652da04b043c4
X-VCS-Branch: master
Date: Sun,  5 Feb 2017 06:29:39 +0000 (UTC)
Precedence: bulk
List-Post: <mailto:gentoo-commits@lists.gentoo.org>
List-Help: <mailto:gentoo-commits+help@lists.gentoo.org>
List-Unsubscribe: <mailto:gentoo-commits+unsubscribe@lists.gentoo.org>
List-Subscribe: <mailto:gentoo-commits+subscribe@lists.gentoo.org>
List-Id: Gentoo Linux mail <gentoo-commits.gentoo.org>
X-BeenThere: gentoo-commits@lists.gentoo.org
X-Archives-Salt: 3317cbb0-6f9a-482e-9493-892d15928ddf
X-Archives-Hash: 152702d90400e61ebf71e5366aae88a2

commit:     5954c31f0b864c0f09d9917bdb2652da04b043c4
Author:     Chris PeBenito <pebenito <AT> ieee <DOT> org>
AuthorDate: Sat Feb  4 18:30:54 2017 +0000
Commit:     Jason Zaman <perfinion <AT> gentoo <DOT> org>
CommitDate: Sun Feb  5 06:26:54 2017 +0000
URL:        https://gitweb.gentoo.org/proj/hardened-refpolicy.git/commit/?id=5954c31f

Update Changelog and VERSION for release.

 Changelog | 137 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
 VERSION   |   2 +-
 2 files changed, 138 insertions(+), 1 deletion(-)

diff --git a/Changelog b/Changelog
index d00f2cf..ba14a4a 100644
--- a/Changelog
+++ b/Changelog
@@ -1,3 +1,140 @@
+* Sat Feb 04 2017 Chris PeBenito <pebenito@ieee.org> - 2.20170204
+Chris PeBenito (55):
+      Module version bumps for patches from Guido Trentalancia.
+      Update contrib.
+      Remove unneeded system_u seusers mapping.
+      Update contrib.
+      Merge pull request #45 from cgzones/travis2
+      Merge pull request #46 from cgzones/update_readme
+      Merge pull request #47 from cgzones/spelling
+      Module version bump for xserver patch from Guido Trentalancia
+      Update contrib.
+      Merge pull request #50 from cgzones/macros
+      Merge pull request #48 from cgzones/makefile
+      xserver: Rearrange lines
+      Module version bump for xserver changes from Guido Trentalancia.
+      Merge branch 'dhcp_avahi' of https://github.com/cgzones/refpolicy
+      Module version bumps for patches from cgzones.
+      Update contrib.
+      Merge branch 'syslogd' of git://github.com/cgzones/refpolicy
+      Module version bump for journald fixes from cgzones.
+      Merge pull request #57 from cgzones/trailing_whitespaces
+      modutils: Move lines.
+      Module version bumps for openoffice patches from Guido Trentalancia.
+      Module version bump for kernel sysctl patch from Luis Ressel
+      Update contrib.
+      Module version bump for netutils patch from Luis Ressel.
+      Module version bump for xserver patch from Guido Trentalancia.
+      Module version bumps for patches from Guido Trentalancia.
+      rtkit: enable dbus chat with xdm
+      xserver: Move interface definition.
+      Module version bump for patches from Guido Trentalancia.
+      Module version bump for xscreensaver patch from Guido Trentalancia.
+      Merge branch 'run_transition' of git://github.com/cgzones/refpolicy
+      Module version bumps for /run fc changes from cgzones.
+      Module version bump for patches from Guido Trentalancia.
+      Merge branch '2016-12-27_systemd' of
+         git://github.com/fishilico/selinux-refpolicy-patched
+      Module version bump for systemd patch from Nicolas Iooss.
+      Merge branch 'usr-fc' of
+         git://github.com/fishilico/selinux-refpolicy-patched
+      Module version bump for fc updates from Nicolas Iooss.
+      Module version bump for patches from Guido Trentalancia.
+      xserver: Update from Russell Coker for boinc.
+      Module version bump for patches from Guido Trentalancia.
+      Merge pull request #62 from cgzones/fix_permission_segenxml
+      Merge pull request #94 from cgzones/travis
+      Merge branch 'corenetork_module' of git://github.com/cgzones/refpolicy
+      Merge branch 'mount_module' of git://github.com/cgzones/refpolicy
+      Merge branch 'terminal_module' of git://github.com/cgzones/refpolicy
+      Merge branch 'files_search_src' of git://github.com/cgzones/refpolicy
+      Merge branch 'unconfined_module' of git://github.com/cgzones/refpolicy
+      Merge branch 'auditd_fixes' of git://github.com/cgzones/refpolicy
+      Module version bumps for patches from cgzones.
+      Module version bump for cpu_online genfscon from Laurent Bigonville.
+      Update contrib.
+      Fix contrib.
+      Module version bump for cups patch from Guido Trentalancia.
+      Module version bump for xkb fix from Jason Zaman.
+      Bump module versions for release.
+
+Guido Trentalancia (19):
+      xserver: remove unneeded user content permissions
+      xserver: remove unneeded user content permissions
+      Apache OpenOffice module (base policy part)
+      xserver: enable dbus messaging with devicekit power
+      authlogin: indentation/whitespace fix
+      wm: update the window manager (wm) module and enable its role template
+         (v7)
+      userdomain: separate optional conditionals for gnome and wm role templates
+      udev: manage tmpfs files and directories
+      udev: always enable kernel module loading
+      base: enable the xscreensaver role
+      bootloader: stricter permissions and more tailored file contexts
+      modutils: update to run in confined mode
+      base: use new genhomedircon template for username
+      kernel: missing permissions for confined execution
+      xserver: introduce new fc and interface to manage X session logs
+      kernel: add missing plymouth interface
+      xserver: restrict executable memory permissions
+      init: support sysvinit
+      udev: execute HPLIP applications in their own domain
+
+Guido Trentalancia via refpolicy (4):
+      Let users read/manage symlinks on fs that do not support xattr
+      Let unprivileged users list mounted filesystems
+      Let the user list noxattr fs directories
+      sysadm: add the shutdown role
+
+Jason Zaman (1):
+      xserver: allow X roles to read xkb libs to set keymaps
+
+Laurent Bigonville (1):
+      Use genfscon to label /sys/devices/system/cpu/online as cpu_online_t
+
+Luis Ressel (3):
+      system/modutils: Add kernel_search_key(kmod_t)
+      kernel.if: Allow listing /proc/sys/net/unix
+      netutils: Label iptstate as netutils_t
+
+Nicolas Iooss (4):
+      systemd: add systemd-backlight policy
+      systemd: add systemd-binfmt policy
+      Allow searching /proc/sys/fs when using /proc/sys/fs/binfmt_misc
+      Add file contexts in /usr for /bin, /usr/sbin and /usr/lib
+
+Russell Coker (1):
+      single binary modutils
+
+Stephen Smalley (2):
+      refpolicy: Define extended_socket_class policy capability and socket
+         classes
+      refpolicy: drop unused socket security classes
+
+cgzones (21):
+      update .travis.yml
+      update README
+      fix spelling
+      update Makefile
+      update policy/support macros
+      review
+      keep 2 empty lines in front of a new section
+      using intermediate target instead of splitting up conf files generation
+      define filecontext for /run/agetty.reload
+      allow dhcp_t to domtrans into avahi
+      fix syslogd audits
+      remove trailing whitespaces
+      transition file contexts to /run
+      fix permission of installed segenxml.py by install-headers
+      auditd / auditctl: fix audits
+      add files_search_src()
+      update unconfined module * grant capability2:wake_alarm * remove
+         deprecated interfaces
+      update terminal module
+      update corenetwork module
+      use travis cache
+      update mount module
+
 * Sun Oct 23 2016 Chris PeBenito <pebenito@ieee.org> - 2.20161023
 Chris PeBenito (94):
       Module version bump for systemd-user-sessions fc entry from Dominick Grift

diff --git a/VERSION b/VERSION
index f011019..395af8d 100644
--- a/VERSION
+++ b/VERSION
@@ -1 +1 @@
-2.20161023
+2.20170204