diff --git a/elements/selinux-policy-updates/README.md b/elements/selinux-policy-updates/README.md
new file mode 100644
index 000000000..a7191ecae
--- /dev/null
+++ b/elements/selinux-policy-updates/README.md
@@ -0,0 +1 @@
+General catch all element to apply custom policy.
diff --git a/elements/selinux-policy-updates/install.d/01-policycoreutils-python b/elements/selinux-policy-updates/install.d/01-policycoreutils-python
new file mode 100755
index 000000000..dd2c004bf
--- /dev/null
+++ b/elements/selinux-policy-updates/install.d/01-policycoreutils-python
@@ -0,0 +1,5 @@
+#!/bin/bash
+
+set -eux
+
+install-packages policycoreutils-python
diff --git a/elements/selinux-policy-updates/install.d/10-mysql-socket-selinux b/elements/selinux-policy-updates/install.d/10-mysql-socket-selinux
new file mode 100755
index 000000000..49834e19d
--- /dev/null
+++ b/elements/selinux-policy-updates/install.d/10-mysql-socket-selinux
@@ -0,0 +1,10 @@
+#!/bin/bash
+
+set -eux
+
+mkdir -p /opt/stack/selinux-policy
+
+# This policy fixes
+# https://bugs.launchpad.net/tripleo/+bug/1339395
+cp $(dirname $0)/../mysql_socket.pp /opt/stack/selinux-policy
+cp $(dirname $0)/../mysql_socket.te /opt/stack/selinux-policy
diff --git a/elements/selinux-policy-updates/mysql_socket.pp b/elements/selinux-policy-updates/mysql_socket.pp
new file mode 100644
index 000000000..13cf28abe
Binary files /dev/null and b/elements/selinux-policy-updates/mysql_socket.pp differ
diff --git a/elements/selinux-policy-updates/mysql_socket.te b/elements/selinux-policy-updates/mysql_socket.te
new file mode 100644
index 000000000..24262c535
--- /dev/null
+++ b/elements/selinux-policy-updates/mysql_socket.te
@@ -0,0 +1,11 @@
+
+module mypol 1.0;
+
+require {
+	type tram_port_t;
+	type mysqld_t;
+	class tcp_socket name_bind;
+}
+
+#============= mysqld_t ==============
+allow mysqld_t tram_port_t:tcp_socket name_bind;
diff --git a/elements/selinux-policy-updates/os-refresh-config/pre-configure.d/98-mysql-socket-selinux b/elements/selinux-policy-updates/os-refresh-config/pre-configure.d/98-mysql-socket-selinux
new file mode 100755
index 000000000..3226c6a64
--- /dev/null
+++ b/elements/selinux-policy-updates/os-refresh-config/pre-configure.d/98-mysql-socket-selinux
@@ -0,0 +1,5 @@
+#!/bin/bash
+
+set -eux
+
+semodule -i /opt/stack/selinux-policy/mysql_socket.pp