From b687d0cf54253f1336178e0d332adbed5e6f5a90 Mon Sep 17 00:00:00 2001
From: sbwml <984419930@qq.com>
Date: Thu, 21 Nov 2019 02:34:35 +0800
Subject: [PATCH] Revert "SElinux: Adjust the selinux policy to allow access to
 the root directory"

This reverts commit c1f56aefc62b8322f6280fdb03e347f5bee17241.
---
 security/selinux/avc.c | 1 +
 1 file changed, 1 insertion(+)

diff --git a/security/selinux/avc.c b/security/selinux/avc.c
index ff7c39352952..52f3c550abcc 100644
--- a/security/selinux/avc.c
+++ b/security/selinux/avc.c
@@ -985,6 +985,7 @@ static noinline int avc_denied(u32 ssid, u32 tsid,
 		return -EACCES;
 
 	if (selinux_enforcing && !(avd->flags & AVD_FLAGS_PERMISSIVE))
+		return -EACCES;
 
 	avc_update_node(AVC_CALLBACK_GRANT, requested, driver, xperm, ssid,
 				tsid, tclass, avd->seqno, NULL, flags);
-- 
2.11.0