module myClamAV 1.0;

require {
	type clamd_t;
	type home_root_t;
	type user_home_dir_t;
	type user_home_t;
	class dir { search getattr read open };
	class file { read open };
}

#============= clamd_t ==============
allow clamd_t home_root_t:dir search;
allow clamd_t user_home_dir_t:dir { getattr read open search };
allow clamd_t user_home_t:dir { getattr read open search };
allow clamd_t user_home_t:file { read open };