Allow to setup users homedir with quota.group

diff --git a/policy/modules/admin/quota.fc b/policy/modules/admin/quota.fc
index 98adfd249e432f33f04d7739b3d4830ff4505e95..e63f9c6d5f5a641e68b7992a433b82bb37340a1a 100644 (file)
--- a/policy/modules/admin/quota.fc
+++ b/policy/modules/admin/quota.fc
@@ -1,4 +1,5 @@
 HOME_ROOT/a?quota\.(user|group)        --      gen_context(system_u:object_r:quota_db_t,s0)
+HOME_DIR/a?quota\.(user|group) --  gen_context(system_u:object_r:quota_db_t,s0)
 
 /a?quota\.(user|group) --      gen_context(system_u:object_r:quota_db_t,s0)
 

diff --git a/policy/modules/admin/quota.te b/policy/modules/admin/quota.te
index bef4392fbc5a63161783fbabb25912bbc50cef7b..f830d4c9f81266e46551852bf8a2f7fbabf816fc 100644 (file)
--- a/policy/modules/admin/quota.te
+++ b/policy/modules/admin/quota.te
@@ -41,9 +41,13 @@ files_home_filetrans(quota_t, quota_db_t, file)
 files_usr_filetrans(quota_t, quota_db_t, file)
 files_var_filetrans(quota_t, quota_db_t, file)
 files_spool_filetrans(quota_t, quota_db_t, file)
-mta_spool_filetrans(quota_t, quota_db_t, file)
-mta_spool_filetrans(quota_t, quota_db_t, file)
-mta_spool_filetrans_queue(quota_t, quota_db_t, file)
+userdom_user_home_dir_filetransquota_t, quota_db_t, file)
+
+optional_policy(`
+       mta_spool_filetrans(quota_t, quota_db_t, file)
+       mta_spool_filetrans(quota_t, quota_db_t, file)
+       mta_spool_filetrans_queue(quota_t, quota_db_t, file)
+')
 
 kernel_list_proc(quota_t)
 kernel_read_proc_symlinks(quota_t)