diff --git a/domain.te b/domain.te
index 9ca6dc4e657188026190d779f8b9d6219cd338fe..4cf20eadbaea2f10fb042ccf9551a96ba7902d09 100644
--- a/domain.te
+++ b/domain.te
@@ -108,14 +108,8 @@ r_dir_file(domain, inotify)
 r_dir_file(domain, cgroup)
 
 # debugfs access
-bool debugfs false;
-if (debugfs) {
 allow domain debugfs:dir r_dir_perms;
-allow domain debugfs:file rw_file_perms;
-} else {
-dontaudit domain debugfs:dir r_dir_perms;
-dontaudit domain debugfs:file  rw_file_perms;
-}
+allow domain debugfs:file w_file_perms;
 
 # security files
 allow domain security_file:dir { search getattr };