From 594dee4dc4b3b72309b512d5a774619d06f63687 Mon Sep 17 00:00:00 2001
From: Wilson Sung <wilsonsung@google.com>
Date: Fri, 10 Feb 2023 16:24:06 +0800
Subject: [PATCH] Allow vendor_init create link for bootdevice_sysdev

Bug: 263185566
Change-Id: I3a041c8dbd33c538d3971b793c64e4ea7c310190
---
 tracking_denials/vendor_init.te | 2 --
 vendor/vendor_init.te           | 1 +
 2 files changed, 1 insertion(+), 2 deletions(-)

diff --git a/tracking_denials/vendor_init.te b/tracking_denials/vendor_init.te
index 1abb861c..b1538f92 100644
--- a/tracking_denials/vendor_init.te
+++ b/tracking_denials/vendor_init.te
@@ -4,8 +4,6 @@ dontaudit vendor_init vendor_init:capability2 { block_suspend };
 dontaudit vendor_init vendor_init:lockdown { integrity };
 # b/260522244
 dontaudit vendor_init sg_device:chr_file { getattr };
-# b/263185566
-dontaudit vendor_init bootdevice_sysdev:file { create };
 # b/264490095
 userdebug_or_eng(`
   permissive vendor_init;
diff --git a/vendor/vendor_init.te b/vendor/vendor_init.te
index 6aab2bdf..12c5198e 100644
--- a/vendor/vendor_init.te
+++ b/vendor/vendor_init.te
@@ -7,6 +7,7 @@ set_prop(vendor_init, logpersistd_logging_prop)
 
 allow vendor_init proc_dirty:file w_file_perms;
 allow vendor_init proc_sched:file w_file_perms;
+allow vendor_init bootdevice_sysdev:file create_file_perms;
 allow vendor_init modem_img_file:filesystem { getattr };
 
 # Audio property