diff --git a/init.te b/init.te
index 425aebc810625aedb5357fce2914e0a529b7c32a..2b649531e057fa51e347b6f6a4c9675ab7bcb96d 100644
--- a/init.te
+++ b/init.te
@@ -20,6 +20,11 @@ allow init properties_serial:file { write relabelto };
 allow init property_type:file { create_file_perms relabelto };
 # /dev/socket
 allow init { device socket_device }:dir relabelto;
+# /dev/device-mapper, /dev/block(/.*)?
+allow init tmpfs:{ chr_file blk_file } relabelfrom;
+allow init tmpfs:blk_file getattr;
+allow init block_device:{ dir blk_file } relabelto;
+allow init dm_device:{ chr_file blk_file } relabelto;
 
 # setrlimit
 allow init self:capability sys_resource;