From: Miroslav Grepl <mgrepl@redhat.com>
Date: Tue, 20 Dec 2011 15:46:03 +0000 (+0000)
Subject: Allow to setup users homedir with quota.group
X-Git-Tag: 000~7^2~1
X-Git-Url: http://git.ipfire.org/?a=commitdiff_plain;h=9b03cd8df004558b210e480cbc52633bd473cfbe;p=people%2Fstevee%2Fselinux-policy.git

Allow to setup users homedir with quota.group
---

diff --git a/policy/modules/admin/quota.fc b/policy/modules/admin/quota.fc
index 98adfd24..e63f9c6d 100644
--- a/policy/modules/admin/quota.fc
+++ b/policy/modules/admin/quota.fc
@@ -1,4 +1,5 @@
 HOME_ROOT/a?quota\.(user|group)	--	gen_context(system_u:object_r:quota_db_t,s0)
+HOME_DIR/a?quota\.(user|group) --  gen_context(system_u:object_r:quota_db_t,s0)
 
 /a?quota\.(user|group)	--	gen_context(system_u:object_r:quota_db_t,s0)
 
diff --git a/policy/modules/admin/quota.te b/policy/modules/admin/quota.te
index bef4392f..f830d4c9 100644
--- a/policy/modules/admin/quota.te
+++ b/policy/modules/admin/quota.te
@@ -41,9 +41,13 @@ files_home_filetrans(quota_t, quota_db_t, file)
 files_usr_filetrans(quota_t, quota_db_t, file)
 files_var_filetrans(quota_t, quota_db_t, file)
 files_spool_filetrans(quota_t, quota_db_t, file)
-mta_spool_filetrans(quota_t, quota_db_t, file)
-mta_spool_filetrans(quota_t, quota_db_t, file)
-mta_spool_filetrans_queue(quota_t, quota_db_t, file)
+userdom_user_home_dir_filetransquota_t, quota_db_t, file)
+
+optional_policy(`
+	mta_spool_filetrans(quota_t, quota_db_t, file)
+	mta_spool_filetrans(quota_t, quota_db_t, file)
+	mta_spool_filetrans_queue(quota_t, quota_db_t, file)
+')
 
 kernel_list_proc(quota_t)
 kernel_read_proc_symlinks(quota_t)