From 94cabcd4f509a375638edb213f382c631bf85f58 Mon Sep 17 00:00:00 2001
From: Guoyi Qu <guoyi.qu@mediatek.com>
Date: Sat, 18 Jan 2020 10:07:39 +0800
Subject: [PATCH] [ALPS04133950] add permission

 avc: denied { open } for path="/system/etc/mddb"
 dev="mmcblk0p21" ino=1029 scontext=u:r:mdlogger:s0
 tcontext=u:object_r:system_file:s0 tclass=dir
 permissive=0

 add permission to read mddb

MTK-Commit-Id: 3e9607846f1253d1b5954a87125a425c324ae9c9

Change-Id: I08af47987d5fe34c55e9a8898d1e28d258f42619
CR-Id: ALPS04133950
Feature: Modem Log Tool
(cherry picked from commit 3e530fdd82f6ef96dee44e56e58fa12a3117353a)
---
 non_plat/mdlogger.te | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/non_plat/mdlogger.te b/non_plat/mdlogger.te
index 9c34bf2..af2a834 100644
--- a/non_plat/mdlogger.te
+++ b/non_plat/mdlogger.te
@@ -57,7 +57,11 @@ allow emdlogger file_contexts_file:file { read getattr open};
 #avc: denied { open }  path="/sys/devices/virtual/BOOT/BOOT/boot/boot_mode" dev="sysfs"
 allow mdlogger sysfs_boot_mode:file { read open };
 
+# avc: denied { open } for path="system/etc/mddb" dev="mmcblk0p21" scontext=u:r:emdlogger:s0 tcontext=u:object_r:system_file:s0 tclass=dir permissive=0
+allow mdlogger system_file:dir { read open };
+
 # Android P migration
 set_prop(mdlogger, vendor_mdl_prop)
 set_prop(mdlogger, debug_mdlogger_prop)
 set_prop(mdlogger, persist_mdlog_prop)
+set_prop(mdlogger, persist_mtklog_prop)