module my-utilsrb110 1.0;

require {
	type user_home_dir_t;
	type home_root_t;
	type user_home_t;
	type ood_pun_t;
	class dir { add_name create read write };
}

#============= ood_pun_t ==============
allow ood_pun_t home_root_t:dir read;

#!!!! This avc is allowed in the current policy
allow ood_pun_t user_home_dir_t:dir { add_name create read write };
allow ood_pun_t user_home_t:dir read;