refpolicy (2:0.2.20100524-7+squeeze1) policy/modules/services/openvpn.te

Summary

 policy/modules/services/openvpn.te |    4 ++++
 1 file changed, 4 insertions(+)

    
download this patch

Patch contents

--- refpolicy-0.2.20100524.orig/policy/modules/services/openvpn.te
+++ refpolicy-0.2.20100524/policy/modules/services/openvpn.te
@@ -65,6 +65,10 @@
 manage_files_pattern(openvpn_t, openvpn_var_run_t, openvpn_var_run_t)
 files_pid_filetrans(openvpn_t, openvpn_var_run_t, { file dir })
 
+# for the list of vulnerable keys
+files_read_usr_files(openvpn_t)
+files_read_var_lib_files(openvpn_t)
+
 kernel_read_kernel_sysctls(openvpn_t)
 kernel_read_net_sysctls(openvpn_t)
 kernel_read_network_state(openvpn_t)