diff --git a/0001-Remove-unsupported-permission-names.patch b/0001-Remove-unsupported-permission-names.patch
new file mode 100644
index 0000000000000000000000000000000000000000..ca662d7a429018c709aa8b72f9e69e9ec4078c74
--- /dev/null
+++ b/0001-Remove-unsupported-permission-names.patch
@@ -0,0 +1,27 @@
+From eadf55a46c69bd5d6920fff03ae6c708ef7c1829 Mon Sep 17 00:00:00 2001
+From: maminjie <maminjie1@huawei.com>
+Date: Thu, 19 Nov 2020 10:27:55 +0800
+Subject: [PATCH] Remove unsupported permission names
+
+---
+ selinux/openvswitch-custom.te.in | 4 ++--
+ 1 file changed, 2 insertions(+), 2 deletions(-)
+
+diff --git a/selinux/openvswitch-custom.te.in b/selinux/openvswitch-custom.te.in
+index 2adaf23..b2c63ab 100644
+--- a/selinux/openvswitch-custom.te.in
++++ b/selinux/openvswitch-custom.te.in
+@@ -78,8 +78,8 @@ domtrans_pattern(openvswitch_t, openvswitch_load_module_exec_t, openvswitch_load
+ 
+ #============= openvswitch_t ==============
+ allow openvswitch_t self:capability { dac_override audit_write net_broadcast net_raw };
+-allow openvswitch_t self:netlink_audit_socket { create nlmsg_relay audit_write read write };
+-allow openvswitch_t self:netlink_netfilter_socket { create nlmsg_relay audit_write read write };
++allow openvswitch_t self:netlink_audit_socket { create nlmsg_relay  read write };
++allow openvswitch_t self:netlink_netfilter_socket { create read write };
+ @begin_dpdk@
+ allow openvswitch_t self:netlink_rdma_socket { setopt bind create };
+ @end_dpdk@
+-- 
+2.23.0
+
diff --git a/openvswitch.spec b/openvswitch.spec
index 2a14f5721936eb977536f58f1c06da90fb9f9bb5..555615e8852e1e258862df9f0eb2f7f33f64015b 100644
--- a/openvswitch.spec
+++ b/openvswitch.spec
@@ -3,10 +3,11 @@ Summary:        Production Quality, Multilayer Open Virtual Switch
 URL:            http://www.openvswitch.org/
 Version:        2.12.0
 License:        ASL 2.0
-Release:        7
+Release:        8
 Source:         https://www.openvswitch.org/releases/openvswitch-%{version}.tar.gz
 Buildroot:      /tmp/openvswitch-rpm
 Patch0000:      0000-openvswitch-add-stack-protector-strong.patch
+Patch0001:      0001-Remove-unsupported-permission-names.patch
 Requires:       %{name}-help
 Requires:       logrotate hostname python >= 2.7 python2-six selinux-policy-targeted
 BuildRequires:  python2-six, openssl-devel checkpolicy selinux-policy-devel autoconf automake libtool python-sphinx unbound-devel
@@ -33,7 +34,7 @@ Summary:        Helpful information for Open vSwitch
 Documents and helpful information for Open vSwitch.
 
 %prep
-%autosetup
+%autosetup -p1
 
 %build
 autoreconf
@@ -203,6 +204,9 @@ exit 0
 %doc README.rst NEWS rhel/README.RHEL.rst
 
 %changelog
+* Wed Nov 18 2020 maminjie <maminjie1@huawei.com> - 2.12.0-8
+- Remove unsupported permission names
+
 * Fri Nov 06 2020 caodongxia <caodongxia@huawei.com> - 2.12.0-7
 - Add install requires help package into main package