From Debian package 0.0.20080702-13

Allow initrc_t to create fixed_disk_device_t nodes under var_run_t,
for the case where /etc/fstab has an error regarding the root fs

Index: policy/modules/kernel/storage.if
===================================================================
--- policy/modules/kernel/storage.if.orig
+++ policy/modules/kernel/storage.if
@@ -290,6 +290,24 @@
 
 ########################################
 ## <summary>
+##	Create block devices in a directory labelled as var_run_t
+## </summary>
+## <param name="domain">
+##	<summary>
+##	The type of the process performing this action.
+##	</summary>
+## </param>
+#
+interface(`storage_var_run_filetrans_fixed_disk',`
+	gen_require(`
+		type fixed_disk_device_t;
+	')
+
+	files_pid_filetrans($1,fixed_disk_device_t,blk_file)
+')
+
+########################################
+## <summary>
 ##	Relabel fixed disk device nodes.
 ## </summary>
 ## <param name="domain">
Index: policy/modules/system/init.te
===================================================================
--- policy/modules/system/init.te.orig
+++ policy/modules/system/init.te
@@ -248,6 +248,7 @@
 
 allow initrc_t initrc_var_run_t:file manage_file_perms;
 files_pid_filetrans(initrc_t, initrc_var_run_t, file)
+storage_var_run_filetrans_fixed_disk(initrc_t)
 
 can_exec(initrc_t, initrc_tmp_t)
 manage_files_pattern(initrc_t, initrc_tmp_t, initrc_tmp_t)