From 95c43ef3a431122c45cc93b4511ec8bc7a0261d6 Mon Sep 17 00:00:00 2001
From: McSim85 <maxim@kramarenko.pro>
Date: Tue, 2 Jun 2020 11:55:45 +0300
Subject: [PATCH] add rule for the management socket file fixed comments from 
 @bauen1

Signed-off-by: McSim85 <maxim@kramarenko.pro>
---
 policy/modules/services/openvpn.te | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/policy/modules/services/openvpn.te b/policy/modules/services/openvpn.te
index ba153f463..5ea21309a 100644
--- a/policy/modules/services/openvpn.te
+++ b/policy/modules/services/openvpn.te
@@ -84,7 +84,8 @@ logging_log_filetrans(openvpn_t, openvpn_var_log_t, file)
 
 manage_dirs_pattern(openvpn_t, openvpn_runtime_t, openvpn_runtime_t)
 manage_files_pattern(openvpn_t, openvpn_runtime_t, openvpn_runtime_t)
-files_pid_filetrans(openvpn_t, openvpn_runtime_t, { file dir })
+manage_sock_files_pattern(openvpn_t, openvpn_runtime_t, openvpn_runtime_t)
+files_pid_filetrans(openvpn_t, openvpn_runtime_t, { sock_file file dir })
 
 can_exec(openvpn_t, openvpn_etc_t)