From 699f4dcf2a9b39a02427bd859c91c625e11998a6 Mon Sep 17 00:00:00 2001
From: Zdenek Pytela <zpytela@redhat.com>
Date: Fri, 8 Apr 2022 15:50:13 +0200
Subject: [PATCH] Allow pppd create a file in the locks directory

Reference: https://gitbub.com/fedora-selinux/selinux-policy/commit/699f4dcf2a9b39a02427bd859c91c625e11998a6
Conflict: NA

So far, a rule for creating a private lock dir was defined in the
policy. Since this commit there is also a rule for a plain file.

Resolves: rhbz#2022902
Signed-off-by: lujie54 <lujie54@huawei.com>
---
 policy/modules/contrib/ppp.te | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/policy/modules/contrib/ppp.te b/policy/modules/contrib/ppp.te
index c2da84b..9b08134 100644
--- a/policy/modules/contrib/ppp.te
+++ b/policy/modules/contrib/ppp.te
@@ -106,7 +106,7 @@ manage_files_pattern(pppd_t, pppd_etc_rw_t, pppd_etc_rw_t)
 filetrans_pattern(pppd_t, pppd_etc_t, pppd_etc_rw_t, file)
 
 manage_files_pattern(pppd_t, pppd_lock_t, pppd_lock_t)
-files_lock_filetrans(pppd_t, pppd_lock_t, dir)
+files_lock_filetrans(pppd_t, pppd_lock_t, { dir file })
 files_search_locks(pppd_t)
 
 manage_files_pattern(pppd_t, pppd_log_t, pppd_log_t)
-- 
1.8.3.1