module my-rpcvirtstorage 1.0;

require {
	type user_home_t;
	type virtstoraged_t;
	type qemu_var_run_t;
	class dir setattr;
	class capability fowner;
	class file setattr;
}

#============= virtstoraged_t ==============
allow virtstoraged_t qemu_var_run_t:file setattr;
allow virtstoraged_t self:capability fowner;
allow virtstoraged_t user_home_t:dir setattr;