Bump github.com/opencontainers/selinux from 1.13.1 to 1.14.0

[dependabot]

Bumps github.com/opencontainers/selinux from 1.13.1 to 1.14.0.

Release notes

Sourced from github.com/opencontainers/selinux's releases.

v1.14.0

This release fixes a regression in ExecLabel, bumps the minimal Go version to 1.22, and deprecates several functions in favor of improved API.

Fixed

• ExecLabel was using an incorrect path (regression in v1.13.0). (opencontainers/selinux#253)

Deprecated

• CategoryRange is deprecated; use SetCategoryRange instead. (opencontainers/selinux#262)
• KVMContainerLabels is deprecated; use KVMContainerLabel instead. (opencontainers/selinux#262)
• InitContainerLabels is deprecated; use InitContainerLabel instead. (opencontainers/selinux#262)
• ReserveLabel is deprecated; use ReserveLabelV2 instead. (opencontainers/selinux#262)
• ROFileLabel is deprecated; if you use it, open a new issue. (opencontainers/selinux#262)
• ContainerLabels is deprecated, if you use it, open a new issue. (opencontainers/selinux#262)

Added

• SEUserByName. (opencontainers/selinux#232, opencontainers/selinux#251)
• CheckLabel. (opencontainers/selinux#250)
• SetCategoryRange, KVMContainerLabel, InitContainerLabel, ReserveLabelV2. (opencontainers/selinux#262)

Changed

• Switch to Go 1.22 as the minimally supported version (opencontainers/selinux#256)
• Update GetDefaultContextWithLevel to fall back to failsafe context (opencontainers/selinux#232)
• Use math/rand/v2 rather than crypto/rand for MCS label generation (opencontainers/selinux#257)

Miscellaneous

• MAINTAINERS: add Aleksa as a maintainer. (opencontainers/selinux#243)
• Assorted CI bumps and related fixes. (opencontainers/selinux#255)
• Remove intToMcs. (opencontainers/selinux#259)
• Use Cut more. (opencontainers/selinux#254)
• Simplify getSelinuxMountPoint. (opencontainers/selinux#258)
• Simplify/remove some code. (opencontainers/selinux#261)
• selinux: release map key when call mcsDelete. (opencontainers/selinux#263)

New Contributors

• @​capnspacehook made their first contribution in opencontainers/selinux#232
• @​mschiff made their first contribution in opencontainers/selinux#253
• @​espadolini made their first contribution in opencontainers/selinux#257

Full Changelog: opencontainers/selinux@v1.13.1...v1.14.0

Commits

• 60872cb Merge pull request #262 from kolyshkin/no-var
• 97d2a7c Add ReserveLabelV2, deprecate ReserveLabel
• bdfae09 Deprecate {KVM,Init}ContainerLabels, add {KVM,Init}ContainerLabel
• 6e9a759 Deprecate ContainerLabels
• 93c00a1 Deprecate ROFileLabel
• 2ecf331 Deprecate CategoryRange, add SetCategoryRange
• 58e5850 Remove old style build tags
• e4db9ac Merge pull request #263 from ningmingxiao/release_data
• 473372b selinux: release map key when call mcsDelete
• e3a70c0 Merge pull request #261 from kolyshkin/simp
• Additional commits viewable in compare view

[copy-pr-bot]

This pull request requires additional validation before any workflows can run on NVIDIA's runners.

Pull request vetters can view their responsibilities here.

Contributors can view more details about this message here.

[rajatchopra]

@dependabot recreate