From 19eeccdaf2dde3d1021b12266a12c33e332546cf Mon Sep 17 00:00:00 2001
From: dcashman <dcashman@google.com>
Date: Wed, 1 Jul 2015 09:12:43 -0700
Subject: [PATCH] Allow init to create /mnt/sdcard symlink.

Addresses the following denial:
avc:  denied  { create } for  pid=1 comm="init" name="sdcard" scontext=u:r:init:s0 tcontext=u:object_r:tmpfs:s0 tclass=lnk_file permissive=0

Bug: 22084499
Change-Id: Icffef8330d07b00f36fda11374e39e0df7181ca3
---
 target/board/generic/sepolicy/init.te     | 1 +
 target/board/generic_x86/sepolicy/init.te | 1 +
 2 files changed, 2 insertions(+)
 create mode 100644 target/board/generic/sepolicy/init.te
 create mode 100644 target/board/generic_x86/sepolicy/init.te

diff --git a/target/board/generic/sepolicy/init.te b/target/board/generic/sepolicy/init.te
new file mode 100644
index 000000000..3aa81d1b5
--- /dev/null
+++ b/target/board/generic/sepolicy/init.te
@@ -0,0 +1 @@
+allow init tmpfs:lnk_file create_file_perms;
diff --git a/target/board/generic_x86/sepolicy/init.te b/target/board/generic_x86/sepolicy/init.te
new file mode 100644
index 000000000..3aa81d1b5
--- /dev/null
+++ b/target/board/generic_x86/sepolicy/init.te
@@ -0,0 +1 @@
+allow init tmpfs:lnk_file create_file_perms;