* Wed Apr 27 2016 Lukas Vrabec <lvrabec@redhat.com> 3.13.1-183
    - Allow runnig php7 in fpm mode. From selinux-policy side, we need to allow httpd to read/write hugetlbfs.
    - Allow openvswitch daemons to run under openvswitch Linux user instead of root. This change needs allow set capabilities: chwon, setgid, setuid, setpcap. BZ(1330895)
    - Remove ftpd_home_dir() boolean from distro policy. Reason is that we cannot make this working due to m4 macro language limits.
    - /bin/mailx is labeled sendmail_exec_t, and enters the sendmail_t domain on execution.  If /usr/sbin/sendmail does not have its own domain to transition to, and is not one of several products whose behavior is allowed by the sendmail_t policy, execution will fail. In this case we need to label /bin/mailx as bin_t. BZ(1323224)
    - Create new apache content template for files stored in user homedir. This change is needed to make working booleans: - httpd_enable_homedirs - httpd_read_user_content Resolves: rhbz#1330448
    - Make virt_use_pcscd boolean off by default.
    - Create boolean to allow virtual machine use smartcards. rhbz#1029297
    - Allow mongod log to syslog.
    - Allow nsd daemon to create log file in /var/log as nsd_log_t
    - Allow modemmanager to talk to logind
    - Dontaudit tor daemon needs net_admin capability. rhbz#1311788
    - Allow GDM write to event devices. This rule is needed for GDM, because other display managers runs the X server as root, GDM instead runs the X server as the unprivileged user, within the user session. rhbz#1232042
    - Allow KDM to get status about power services. This change allow kdm to be able do shutdown BZ(1330970)
    - Modify interface den_read_nvme() to allow also read nvme_device_t block files. rhbz#1327909
    - Add new permissions stop/start to class system. rhbz#1324453