From fc904e056ec19aea97e5022e3cbed262a93d41ff Mon Sep 17 00:00:00 2001
From: Huaiming Li <huaiming.li@mediatek.com>
Date: Sat, 18 Jan 2020 10:17:36 +0800
Subject: [PATCH] [ALPS04642542] update sepolicy rules for dumping kmemleak
 file

add new sepolicy rules for dumping kmemleak file into manual DB

MTK-Commit-Id: bbc72864526fe28df5f9278c4250a152fbe94515

Change-Id: Ie59c50451d3e7b00500a11eab43b99004d0b543c
CR-Id: ALPS04642542
Feature: Android Exception Engine(AEE)
---
 non_plat/dumpstate.te  | 4 ++++
 non_plat/file.te       | 5 ++++-
 non_plat/file_contexts | 1 +
 3 files changed, 9 insertions(+), 1 deletion(-)

diff --git a/non_plat/dumpstate.te b/non_plat/dumpstate.te
index 5f0871c..7ecfca6 100644
--- a/non_plat/dumpstate.te
+++ b/non_plat/dumpstate.te
@@ -164,3 +164,7 @@ allow dumpstate mnt_media_rw_file:dir getattr;
 # Purpose: fix google dumpstate avc error in xTs
 allow dumpstate sysfs_mmcblk1:file r_file_perms;
 allow dumpstate proc_last_kmsg:file r_file_perms;
+
+# Date: 19/07/15
+# Purpose: Allow dumpstate to read /sys/kernel/debug/kmemleak
+allow dumpstate debugfs_kmemleak:file r_file_perms;
diff --git a/non_plat/file.te b/non_plat/file.te
index 4dbbc3c..71cbd87 100644
--- a/non_plat/file.te
+++ b/non_plat/file.te
@@ -251,6 +251,9 @@ type debugfs_emi_mbw_buf, fs_type, debugfs_type;
 # /sys/kernel/debug/vpu/device_dbg
 type debugfs_vpu_device_dbg, fs_type, debugfs_type;
 
+# /sys/kernel/debug/kmemleak
+type debugfs_kmemleak, fs_type, debugfs_type;
+
 ######################################
 # core domain file data
 
@@ -368,4 +371,4 @@ type netd_socket, file_type, coredomain_socket;
 
 # Date : WK19.27
 # Purpose: Android Migration for SVP
-type proc_m4u, fs_type, proc_type;
\ No newline at end of file
+type proc_m4u, fs_type, proc_type;
diff --git a/non_plat/file_contexts b/non_plat/file_contexts
index 139247c..f51bb83 100644
--- a/non_plat/file_contexts
+++ b/non_plat/file_contexts
@@ -524,6 +524,7 @@
 /sys/kernel/debug/fpsgo(/.*)? u:object_r:debugfs_fpsgo:s0
 /sys/kernel/debug/emi_mbw/dump_buf(/.*)? u:object_r:debugfs_emi_mbw_buf:s0
 /sys/kernel/debug/vpu/device_dbg(/.*)? u:object_r:debugfs_vpu_device_dbg:s0
+/sys/kernel/debug/kmemleak u:object_r:debugfs_kmemleak:s0
 
 #############################
 # System files