From e52cb818b3d97f80f992864d1d09cc319b4a514e Mon Sep 17 00:00:00 2001
From: Sayali Lokhande <sayalil@codeaurora.org>
Date: Tue, 24 Mar 2020 17:01:25 +0530
Subject: [PATCH] non_plat: Allow kernel to search debugfs_mmc dir

Debugfs is failed to be initialized because of the denial below.
Add selinux policy to fix it.
avc: denied { search } for comm="kworker/0:1" name="mmc0"
dev="debugfs" ino=6562 scontext=u:r:kernel:s0
tcontext=u:object_r:debugfs_mmc:s0 tclass=dir permissive=0

CRs-Fixed: 2636489
Change-Id: I831a363d448b3efe11960c3937b04dbca80d37f3
---
 non_plat/kernel.te | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/non_plat/kernel.te b/non_plat/kernel.te
index 23316b3..e1bb966 100644
--- a/non_plat/kernel.te
+++ b/non_plat/kernel.te
@@ -90,3 +90,6 @@ allow kernel mtk_audiohal_data_file:file write;
 
 # TEE
 allow kernel teei_client_device:chr_file rw_file_perms;
+
+# debugfs
+allow kernel debugfs_mmc:dir search;