add rule for the management socket file

fixed comments from @bauen1 Signed-off-by: McSim85 <maxim@kramarenko.pro>
2020-06-02 11:55:45 +03:00 · 2020-06-02 11:55:45 +03:00 · 95c43ef3a4
parent b38804e328
commit 95c43ef3a4
1 changed files with 2 additions and 1 deletions
--- a/policy/modules/services/openvpn.te
+++ b/policy/modules/services/openvpn.te
@ -84,7 +84,8 @@ logging_log_filetrans(openvpn_t, openvpn_var_log_t, file)
 manage_dirs_pattern(openvpn_t, openvpn_runtime_t, openvpn_runtime_t)
 manage_files_pattern(openvpn_t, openvpn_runtime_t, openvpn_runtime_t)
-files_pid_filetrans(openvpn_t, openvpn_runtime_t, { file dir })
+manage_sock_files_pattern(openvpn_t, openvpn_runtime_t, openvpn_runtime_t)
 files_pid_filetrans(openvpn_t, openvpn_runtime_t, { sock_file file dir })
 can_exec(openvpn_t, openvpn_etc_t)