From 83b0aed52a441221bf202589f5a87354367c4bd0 Mon Sep 17 00:00:00 2001
From: weishu <twsxtd@gmail.com>
Date: Mon, 20 Feb 2023 18:13:53 +0700
Subject: [PATCH] kernel: apply rules should return success when selinux is
 disabled or permissive

---
 kernel/selinux/rules.c | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/kernel/selinux/rules.c b/kernel/selinux/rules.c
index 81dbd204..11200b0a 100644
--- a/kernel/selinux/rules.c
+++ b/kernel/selinux/rules.c
@@ -191,7 +191,7 @@ int handle_sepolicy(unsigned long arg3, void __user *arg4)
 
 	if (!getenforce()) {
 		pr_info("SELinux permissive or disabled, don't apply policies.");
-		return -1;
+		return 0;
 	}
 
 	struct sepol_data data;