Do not audit attempts by thumb to search config_home_t dirs (~/.config)

telepathy: fix filetrans_pattern

Signed-off-by: Dominick Grift <dominick.grift@gmail.com>

diff --git a/policy/modules/apps/telepathy.te b/policy/modules/apps/telepathy.te
index f4fac6c22c5aae403cf8487e13669f7fec570594..b4888b3667bff4e45037a3d2221a30316b6456f8 100644 (file)
--- a/policy/modules/apps/telepathy.te
+++ b/policy/modules/apps/telepathy.te
@@ -414,7 +414,7 @@ allow telepathy_domain self:fifo_file rw_fifo_file_perms;
 allow telepathy_domain self:tcp_socket create_socket_perms;
 allow telepathy_domain self:udp_socket create_socket_perms;
 
-manage_dirs_pattern(telepathy_gabble_t, telepathy_cache_home_t, telepathy_cache_home_t)
+manage_dirs_pattern(telepathy_domain, telepathy_cache_home_t, telepathy_cache_home_t)
 gnome_cache_filetrans(telepathy_domain, telepathy_cache_home_t, dir, "telepathy")
 
 dev_read_urand(telepathy_domain)

diff --git a/policy/modules/apps/thumb.te b/policy/modules/apps/thumb.te
index 66277209dacd3fc970e18276974a8b77e0eac93c..cc502a070ddc423ae1989c581cb93988f82414a3 100644 (file)
--- a/policy/modules/apps/thumb.te
+++ b/policy/modules/apps/thumb.te
@@ -66,6 +66,8 @@ optional_policy(`
 ')
 
 optional_policy(`
+       # .config
+       gnome_dontaudit_search_config(thumb_t)
        gnome_read_generic_data_home_files(thumb_t)
        gnome_manage_gstreamer_home_files(thumb_t)
 ')