+- Add realmd and stapserver policies
    +- Allow useradd to manage stap-server lib files
    +- Tighten up capabilities for confined users
    +- Label /etc/security/opasswd as shadow_t
    +- Add label for /dev/ecryptfs
    +- Allow condor_startd_t to start sshd with the ranged
    +- Allow lpstat.cups to read fips_enabled file
    +- Allow pyzor running as spamc_t to create /root/.pyzor directory
    +- Add labelinf for amavisd-snmp init script
    +- Add support for amavisd-snmp
    +- Allow fprintd sigkill self
    +- Allow xend (w/o libvirt) to start virtual machines
    +- Allow aiccu to read /etc/passwd
    +- Allow condor_startd to Make specified domain MCS trusted for setting any category set fo
    +- Add condor_startd_ranged_domtrans_to() interface
    +- Add ssd_conf_t for /etc/sssd
    +- accountsd needs to fchown some files/directories
    +- Add ICACLient and zibrauserdata as mozilla_filetrans_home_content
    +- SELinux reports afs_t needs dac_override to read /etc/mtab, even though everything works
    +- Allow xend_t to read the /etc/passwd file
     Please enter the commit message for your changes. Lines starting
     with '#' will be ignored, and an empty message aborts the commit.
     On branch master
     Changes to be committed:
       (use "git reset HEAD <file>..." to unstage)
    
    	modified:   policy-rawhide.patch
    	modified:   policy_contrib-rawhide.patch
    	modified:   selinux-policy.spec