From 376b96446eb0df261a6557e975d540b1c6f795fe Mon Sep 17 00:00:00 2001
From: Caio Schnepper <caioschnepper@gmail.com>
Date: Fri, 10 Jul 2015 19:32:55 -0300
Subject: [PATCH] selinux: allow kernel to write on block_device

The kernel writes to dev/block/vold, fix UMS mode

Change-Id: I4b8fd54f86ae45f37bae68f31dbdc56f5bfd2ef0
---
 BoardCommonConfig.mk | 1 +
 selinux/kernel.te    | 1 +
 2 files changed, 2 insertions(+)
 create mode 100644 selinux/kernel.te

diff --git a/BoardCommonConfig.mk b/BoardCommonConfig.mk
index abef610..fcd79df 100644
--- a/BoardCommonConfig.mk
+++ b/BoardCommonConfig.mk
@@ -163,6 +163,7 @@ BOARD_SEPOLICY_UNION += \
     file.te \
     file_contexts \
     init.te \
+    kernel.te \
     mediaserver.te \
     rild.te \
     system_app.te \
diff --git a/selinux/kernel.te b/selinux/kernel.te
new file mode 100644
index 0000000..3a08988
--- /dev/null
+++ b/selinux/kernel.te
@@ -0,0 +1 @@
+allow kernel block_device:blk_file write;