From 78603ddb7e084ad984948711b0f6bff6f19507da Mon Sep 17 00:00:00 2001
From: Robert Lee <lerobert@google.com>
Date: Fri, 17 Mar 2023 10:26:29 +0800
Subject: [PATCH] Allow regmap debugfs permission

auditd  : type=1400 audit(0.0:7): avc: denied { search } for comm="kworker/u18:1" name="regmap" dev="debugfs" ino=1049 scontext=u:r:kernel:s0 tcontext=u:object_r:vendor_regmap_debugfs:s0 tclass=dir permissive=0

Bug: 273891639
Test: builds
Change-Id: I9700d34e4d8a9d96d904fe5119a8bf4601bf8ea6
Signed-off-by: Robert Lee <lerobert@google.com>
---
 tracking_denials/kernel.te | 2 --
 vendor/kernel.te           | 2 ++
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/tracking_denials/kernel.te b/tracking_denials/kernel.te
index ad6039fd..23d091be 100644
--- a/tracking_denials/kernel.te
+++ b/tracking_denials/kernel.te
@@ -1,5 +1,3 @@
-# b/260522245
-dontaudit kernel vendor_regmap_debugfs:dir { search };
 # b/262794429
 dontaudit kernel sepolicy_file:file { getattr };
 dontaudit kernel system_bootstrap_lib_file:dir { getattr };
diff --git a/vendor/kernel.te b/vendor/kernel.te
index 9489a742..0f2e18e0 100644
--- a/vendor/kernel.te
+++ b/vendor/kernel.te
@@ -11,3 +11,5 @@ allow kernel self:perf_event cpu;
 no_debugfs_restriction(`
   allow kernel vendor_battery_debugfs:dir search;
 ')
+
+allow kernel vendor_regmap_debugfs:dir search;