(roleattribute gpg_roles)
(roleattributeset gpg_roles (system_r ))
(roletype gpg_roles gpg_t)
(roleattribute gpg_agent_roles)
(roletype gpg_agent_roles gpg_agent_t)
(roleattribute gpg_helper_roles)
(roleattributeset gpg_helper_roles (system_r ))
(roletype gpg_helper_roles gpg_helper_t)
(roleattribute gpg_pinentry_roles)
(roletype gpg_pinentry_roles gpg_pinentry_t)
(type gpg_t)
(roletype object_r gpg_t)
(type gpg_exec_t)
(roletype object_r gpg_exec_t)
(type gpg_runtime_t)
(roletype object_r gpg_runtime_t)
(type gpg_agent_t)
(roletype object_r gpg_agent_t)
(type gpg_agent_exec_t)
(roletype object_r gpg_agent_exec_t)
(type gpg_agent_tmp_t)
(roletype object_r gpg_agent_tmp_t)
(type gpg_secret_t)
(roletype object_r gpg_secret_t)
(type gpg_helper_t)
(roletype object_r gpg_helper_t)
(type gpg_helper_exec_t)
(roletype object_r gpg_helper_exec_t)
(type gpg_pinentry_t)
(roletype object_r gpg_pinentry_t)
(type gpg_pinentry_exec_t)
(roletype object_r gpg_pinentry_exec_t)
(type gpg_pinentry_tmp_t)
(roletype object_r gpg_pinentry_tmp_t)
(type gpg_pinentry_tmpfs_t)
(roletype object_r gpg_pinentry_tmpfs_t)
(boolean gpg_agent_env_file false)
(boolean gpg_agent_use_card false)
(boolean gpg_read_generic_user_content true)
(boolean gpg_read_all_user_content false)
(boolean gpg_manage_generic_user_content false)
(boolean gpg_manage_all_user_content false)
(roleattributeset cil_gen_require system_r)
(typeattributeset cil_gen_require application_domain_type)
(typeattributeset application_domain_type (gpg_t gpg_agent_t gpg_helper_t gpg_pinentry_t ))
(typeattributeset cil_gen_require domain)
(typeattributeset domain (gpg_t gpg_agent_t gpg_helper_t gpg_pinentry_t ))
(typeattributeset cil_gen_require sysfs_t)
(typeattributeset cil_gen_require application_exec_type)
(typeattributeset application_exec_type (gpg_exec_t gpg_agent_exec_t gpg_helper_exec_t gpg_pinentry_exec_t ))
(typeattributeset cil_gen_require exec_type)
(typeattributeset exec_type (gpg_exec_t gpg_agent_exec_t gpg_helper_exec_t gpg_pinentry_exec_t ))
(typeattributeset cil_gen_require file_type)
(typeattributeset file_type (gpg_exec_t gpg_runtime_t gpg_agent_exec_t gpg_agent_tmp_t gpg_secret_t gpg_helper_exec_t gpg_pinentry_exec_t gpg_pinentry_tmp_t gpg_pinentry_tmpfs_t ))
(typeattributeset cil_gen_require non_security_file_type)
(typeattributeset non_security_file_type (gpg_exec_t gpg_runtime_t gpg_agent_exec_t gpg_agent_tmp_t gpg_secret_t gpg_helper_exec_t gpg_pinentry_exec_t gpg_pinentry_tmp_t gpg_pinentry_tmpfs_t ))
(typeattributeset cil_gen_require non_auth_file_type)
(typeattributeset non_auth_file_type (gpg_exec_t gpg_runtime_t gpg_agent_exec_t gpg_agent_tmp_t gpg_secret_t gpg_helper_exec_t gpg_pinentry_exec_t gpg_pinentry_tmp_t gpg_pinentry_tmpfs_t ))
(typeattributeset cil_gen_require entry_type)
(typeattributeset entry_type (gpg_exec_t gpg_agent_exec_t gpg_helper_exec_t gpg_pinentry_exec_t ))
(typeattributeset cil_gen_require ubac_constrained_type)
(typeattributeset ubac_constrained_type (gpg_t gpg_runtime_t gpg_agent_t gpg_agent_tmp_t gpg_secret_t gpg_helper_t gpg_pinentry_t gpg_pinentry_tmp_t gpg_pinentry_tmpfs_t ))
(typeattributeset cil_gen_require gpg_runtime_t)
(typeattributeset cil_gen_require pidfile)
(typeattributeset pidfile (gpg_runtime_t ))
(typeattributeset cil_gen_require user_runtime_content_type)
(typeattributeset user_runtime_content_type (gpg_runtime_t gpg_agent_tmp_t ))
(typeattributeset cil_gen_require gpg_agent_t)
(typeattributeset cil_gen_require gpg_agent_tmp_t)
(typeattributeset cil_gen_require tmpfile)
(typeattributeset tmpfile (gpg_agent_tmp_t gpg_pinentry_tmp_t ))
(typeattributeset cil_gen_require polymember)
(typeattributeset polymember (gpg_agent_tmp_t gpg_secret_t gpg_pinentry_tmp_t ))
(typeattributeset cil_gen_require gpg_secret_t)
(typeattributeset cil_gen_require user_home_content_type)
(typeattributeset user_home_content_type (gpg_secret_t ))
(typeattributeset cil_gen_require user_home_t)
(typeattributeset cil_gen_require tmpfsfile)
(typeattributeset tmpfsfile (gpg_pinentry_tmpfs_t ))
(typeattributeset cil_gen_require user_runtime_t)
(typeattributeset cil_gen_require user_runtime_root_t)
(typeattributeset cil_gen_require var_t)
(typeattributeset cil_gen_require var_run_t)
(typeattributeset cil_gen_require tmp_t)
(typeattributeset cil_gen_require user_home_dir_t)
(typeattributeset cil_gen_require home_root_t)
(typeattributeset cil_gen_require sysctl_t)
(typeattributeset cil_gen_require proc_t)
(typeattributeset cil_gen_require shell_exec_t)
(typeattributeset cil_gen_require bin_t)
(typeattributeset cil_gen_require usr_t)
(typeattributeset cil_gen_require netlabel_peer_t)
(typeattributeset cil_gen_require netif_t)
(typeattributeset cil_gen_require node_t)
(typeattributeset cil_gen_require client_packet_type)
(typeattributeset cil_gen_require port_type)
(typeattributeset cil_gen_require usb_device_t)
(typeattributeset cil_gen_require device_t)
(typeattributeset cil_gen_require random_device_t)
(typeattributeset cil_gen_require urandom_device_t)
(typeattributeset cil_gen_require fs_t)
(typeattributeset cil_gen_require inotifyfs_t)
(typeattributeset cil_gen_require privfd)
(typeattributeset cil_gen_require nsswitch_domain)
(typeattributeset nsswitch_domain (gpg_t gpg_agent_t gpg_helper_t gpg_pinentry_t ))
(typeattributeset cil_gen_require syslogd_t)
(typeattributeset cil_gen_require syslogd_runtime_t)
(typeattributeset cil_gen_require devlog_t)
(typeattributeset cil_gen_require init_runtime_t)
(typeattributeset cil_gen_require console_device_t)
(typeattributeset cil_gen_require locale_t)
(typeattributeset cil_gen_require etc_t)
(typeattributeset cil_gen_require cert_t)
(typeattributeset cil_gen_require user_devpts_t)
(typeattributeset cil_gen_require devpts_t)
(typeattributeset cil_gen_require user_tty_device_t)
(typeattributeset cil_gen_require user_tmp_t)
(typeattributeset cil_gen_require nfs_t)
(typeattributeset cil_gen_require cifs_t)
(typeattributeset cil_gen_require tmpfs_t)
(typeattributeset cil_gen_require fonts_t)
(typeattributeset cil_gen_require fonts_cache_t)
(typeattributeset cil_gen_require lib_t)
(allow gpg_t gpg_exec_t (file (entrypoint)))
(allow gpg_t gpg_exec_t (file (ioctl read getattr lock map execute open)))
(allow gpg_agent_t gpg_agent_exec_t (file (entrypoint)))
(allow gpg_agent_t gpg_agent_exec_t (file (ioctl read getattr lock map execute open)))
(allow gpg_secret_t user_home_t (filesystem (associate)))
(allow gpg_helper_t gpg_helper_exec_t (file (entrypoint)))
(allow gpg_helper_t gpg_helper_exec_t (file (ioctl read getattr lock map execute open)))
(allow gpg_pinentry_t gpg_pinentry_exec_t (file (entrypoint)))
(allow gpg_pinentry_t gpg_pinentry_exec_t (file (ioctl read getattr lock map execute open)))
(allow gpg_t self (capability (setuid ipc_lock)))
(allow gpg_t self (process (signull signal getsched setsched setpgid getcap setcap setrlimit)))
(dontaudit gpg_t self (netlink_audit_socket (ioctl read write create getattr setattr append bind connect getopt setopt shutdown nlmsg_read)))
(allow gpg_t self (fifo_file (ioctl read write getattr lock append open)))
(allow gpg_t self (tcp_socket (listen accept)))
(allow gpg_t self (unix_stream_socket (ioctl read write create getattr setattr append bind connect listen accept getopt setopt shutdown)))
(allow gpg_t gpg_runtime_t (dir (ioctl read write getattr lock open add_name remove_name search)))
(allow gpg_t gpg_runtime_t (dir (ioctl read write create getattr setattr lock unlink link rename open add_name remove_name reparent search rmdir)))
(allow gpg_t user_runtime_t (dir (ioctl read write getattr lock open add_name remove_name search)))
(allow gpg_t user_runtime_root_t (dir (getattr open search)))
(allow gpg_t var_run_t (lnk_file (read getattr)))
(allow gpg_t var_t (dir (getattr open search)))
(allow gpg_t var_run_t (dir (getattr open search)))
(allow gpg_t gpg_runtime_t (dir (ioctl read write getattr lock open add_name remove_name search)))
(allow gpg_t gpg_runtime_t (sock_file (ioctl read write create getattr setattr lock append unlink link rename open)))
(allow gpg_t gpg_agent_tmp_t (dir (ioctl read write getattr lock open add_name remove_name search)))
(allow gpg_t gpg_agent_tmp_t (dir (ioctl read write create getattr setattr lock unlink link rename open add_name remove_name reparent search rmdir)))
(allow gpg_t gpg_agent_tmp_t (dir (ioctl read write getattr lock open add_name remove_name search)))
(allow gpg_t gpg_agent_tmp_t (file (ioctl read write create getattr setattr lock append unlink link rename open)))
(allow gpg_t gpg_agent_tmp_t (dir (ioctl read write getattr lock open add_name remove_name search)))
(allow gpg_t gpg_agent_tmp_t (sock_file (ioctl read write create getattr setattr lock append unlink link rename open)))
(allow gpg_t tmp_t (dir (ioctl read write getattr lock open add_name remove_name search)))
(typetransition gpg_t tmp_t dir gpg_agent_tmp_t)
(typetransition gpg_t tmp_t file gpg_agent_tmp_t)
(allow gpg_t gpg_secret_t (dir (ioctl read write getattr lock open add_name remove_name search)))
(allow gpg_t gpg_secret_t (dir (ioctl read write create getattr setattr lock unlink link rename open add_name remove_name reparent search rmdir)))
(allow gpg_t gpg_secret_t (dir (ioctl read write getattr lock open add_name remove_name search)))
(allow gpg_t gpg_secret_t (sock_file (ioctl read write create getattr setattr lock append unlink link rename open)))
(allow gpg_t gpg_secret_t (dir (ioctl read write getattr lock open add_name remove_name search)))
(allow gpg_t gpg_secret_t (file (ioctl read write create getattr setattr lock append unlink link rename open)))
(allow gpg_t gpg_secret_t (dir (ioctl read write getattr lock open add_name remove_name search)))
(allow gpg_t gpg_secret_t (lnk_file (ioctl read write create getattr setattr lock append unlink link rename)))
(allow gpg_t user_home_dir_t (dir (ioctl read write getattr lock open add_name remove_name search)))
(typetransition gpg_t user_home_dir_t dir gpg_secret_t)
(allow gpg_t home_root_t (dir (getattr open search)))
(allow gpg_t home_root_t (lnk_file (read getattr)))
(allow gpg_t gpg_agent_tmp_t (dir (getattr open search)))
(allow gpg_t gpg_agent_tmp_t (sock_file (write getattr append open)))
(allow gpg_t gpg_agent_t (unix_stream_socket (connectto)))
(allow gpg_t gpg_runtime_t (dir (getattr open search)))
(allow gpg_t gpg_secret_t (dir (getattr open search)))
(allow gpg_t user_runtime_t (dir (getattr open search)))
(allow gpg_t user_runtime_root_t (dir (getattr open search)))
(allow gpg_t var_run_t (lnk_file (read getattr)))
(allow gpg_t var_t (dir (getattr open search)))
(allow gpg_t var_run_t (dir (getattr open search)))
(allow gpg_t user_home_dir_t (dir (getattr open search)))
(allow gpg_t home_root_t (dir (getattr open search)))
(allow gpg_t home_root_t (lnk_file (read getattr)))
(allow gpg_t gpg_agent_exec_t (file (ioctl read getattr map execute open)))
(allow gpg_t gpg_agent_t (process (transition)))
(dontaudit gpg_t gpg_agent_t (process (noatsecure siginh rlimitinh)))
(typetransition gpg_t gpg_agent_exec_t process gpg_agent_t)
(allow gpg_agent_t gpg_t (fd (use)))
(allow gpg_agent_t gpg_t (fifo_file (ioctl read write getattr lock append)))
(allow gpg_agent_t gpg_t (process (sigchld)))
(allow gpg_t gpg_helper_exec_t (file (ioctl read getattr map execute open)))
(allow gpg_t gpg_helper_t (process (transition)))
(dontaudit gpg_t gpg_helper_t (process (noatsecure siginh rlimitinh)))
(typetransition gpg_t gpg_helper_exec_t process gpg_helper_t)
(allow gpg_helper_t gpg_t (fd (use)))
(allow gpg_helper_t gpg_t (fifo_file (ioctl read write getattr lock append)))
(allow gpg_helper_t gpg_t (process (sigchld)))
(allow gpg_t proc_t (dir (getattr open search)))
(allow gpg_t sysctl_t (dir (ioctl read getattr lock open search)))
(allow gpg_t sysctl_t (dir (getattr open search)))
(allow gpg_t sysctl_t (file (ioctl read getattr lock open)))
(allow gpg_t proc_t (dir (getattr open search)))
(allow gpg_t proc_t (file (ioctl read getattr lock open)))
(allow gpg_t proc_t (dir (getattr open search)))
(allow gpg_t proc_t (lnk_file (read getattr)))
(allow gpg_t proc_t (dir (getattr open search)))
(allow gpg_t proc_t (dir (ioctl read getattr lock open search)))
(allow gpg_t bin_t (dir (getattr open search)))
(allow gpg_t bin_t (lnk_file (read getattr)))
(allow gpg_t usr_t (dir (getattr open search)))
(allow gpg_t bin_t (dir (getattr open search)))
(allow gpg_t bin_t (dir (ioctl read getattr lock open search)))
(allow gpg_t shell_exec_t (file (ioctl read getattr lock map execute open execute_no_trans)))
(allow gpg_t bin_t (dir (getattr open search)))
(allow gpg_t bin_t (lnk_file (read getattr)))
(allow gpg_t usr_t (dir (getattr open search)))
(allow gpg_t bin_t (dir (getattr open search)))
(allow gpg_t bin_t (dir (ioctl read getattr lock open search)))
(allow gpg_t bin_t (file (ioctl read getattr lock map execute open execute_no_trans)))
(allow gpg_t netlabel_peer_t (peer (recv)))
(allow gpg_t netlabel_peer_t (tcp_socket (recvfrom)))
(allow gpg_t netlabel_peer_t (udp_socket (recvfrom)))
(allow gpg_t netlabel_peer_t (rawip_socket (recvfrom)))
(allow gpg_t netif_t (netif (ingress egress)))
(allow gpg_t node_t (node (recvfrom sendto)))
(allow gpg_t client_packet_type (packet (send)))
(allow gpg_t client_packet_type (packet (recv)))
(allow gpg_t port_type (tcp_socket (name_connect)))
(allow gpg_t device_t (dir (getattr open search)))
(allow gpg_t usb_device_t (chr_file (ioctl read getattr lock open)))
(allow gpg_t device_t (dir (getattr open search)))
(allow gpg_t random_device_t (chr_file (ioctl read getattr lock open)))
(allow gpg_t device_t (dir (getattr open search)))
(allow gpg_t urandom_device_t (chr_file (ioctl read getattr lock open)))
(allow gpg_t usr_t (dir (ioctl read getattr lock open search)))
(allow gpg_t usr_t (dir (getattr open search)))
(allow gpg_t usr_t (file (ioctl read getattr lock open)))
(allow gpg_t usr_t (dir (getattr open search)))
(allow gpg_t usr_t (lnk_file (read getattr)))
(dontaudit gpg_t var_t (dir (getattr open search)))
(allow gpg_t fs_t (filesystem (getattr)))
(allow gpg_t inotifyfs_t (dir (ioctl read getattr lock open search)))
(allow gpg_t privfd (fd (use)))
(allow gpg_t devlog_t (sock_file (write getattr append open)))
(allow gpg_t var_run_t (lnk_file (read getattr)))
(allow gpg_t var_t (dir (getattr open search)))
(allow gpg_t var_run_t (dir (getattr open search)))
(allow gpg_t init_runtime_t (dir (getattr open search)))
(allow gpg_t syslogd_runtime_t (dir (getattr open search)))
(allow gpg_t syslogd_t (unix_dgram_socket (sendto)))
(allow gpg_t syslogd_t (unix_stream_socket (connectto)))
(allow gpg_t self (unix_dgram_socket (ioctl read write create getattr setattr append bind connect getopt setopt shutdown)))
(allow gpg_t self (unix_stream_socket (ioctl read write create getattr setattr append bind connect getopt setopt shutdown)))
(allow gpg_t device_t (dir (getattr open search)))
(allow gpg_t device_t (dir (ioctl read getattr lock open search)))
(allow gpg_t device_t (dir (getattr open search)))
(allow gpg_t device_t (lnk_file (read getattr)))
(allow gpg_t console_device_t (chr_file (ioctl write getattr lock append open)))
(dontaudit gpg_t console_device_t (chr_file (ioctl read getattr lock open)))
(allow gpg_t etc_t (dir (getattr open search)))
(allow gpg_t etc_t (lnk_file (read getattr)))
(allow gpg_t usr_t (dir (getattr open search)))
(allow gpg_t locale_t (dir (ioctl read getattr lock open search)))
(allow gpg_t locale_t (dir (getattr open search)))
(allow gpg_t locale_t (file (ioctl read getattr lock open)))
(allow gpg_t locale_t (dir (getattr open search)))
(allow gpg_t locale_t (lnk_file (read getattr)))
(allow gpg_t locale_t (file (map)))
(allow gpg_t cert_t (dir (ioctl read getattr lock open search)))
(allow gpg_t cert_t (dir (getattr open search)))
(allow gpg_t cert_t (file (ioctl read getattr lock open)))
(allow gpg_t cert_t (dir (getattr open search)))
(allow gpg_t cert_t (lnk_file (read getattr)))
(allow gpg_t device_t (dir (getattr open search)))
(allow gpg_t device_t (dir (ioctl read getattr lock open search)))
(allow gpg_t device_t (dir (getattr open search)))
(allow gpg_t device_t (lnk_file (read getattr)))
(allow gpg_t devpts_t (dir (ioctl read getattr lock open search)))
(allow gpg_t user_devpts_t (chr_file (ioctl read write getattr append open)))
(allow gpg_t user_tty_device_t (chr_file (ioctl read write getattr append open)))
(allow gpg_t user_tmp_t (dir (ioctl read write getattr lock open add_name remove_name search)))
(allow gpg_t user_tmp_t (dir (ioctl read write create getattr setattr lock unlink link rename open add_name remove_name reparent search rmdir)))
(allow gpg_t tmp_t (dir (getattr open search)))
(allow gpg_t user_runtime_t (dir (getattr open search)))
(allow gpg_t user_runtime_root_t (dir (getattr open search)))
(allow gpg_t var_run_t (lnk_file (read getattr)))
(allow gpg_t var_t (dir (getattr open search)))
(allow gpg_t var_run_t (dir (getattr open search)))
(allow gpg_t user_tmp_t (dir (ioctl read write getattr lock open add_name remove_name search)))
(allow gpg_t user_tmp_t (file (ioctl read write create getattr setattr lock append unlink link rename open)))
(allow gpg_t tmp_t (dir (getattr open search)))
(allow gpg_t user_runtime_t (dir (getattr open search)))
(allow gpg_t user_runtime_root_t (dir (getattr open search)))
(allow gpg_t var_run_t (lnk_file (read getattr)))
(allow gpg_t var_t (dir (getattr open search)))
(allow gpg_t var_run_t (dir (getattr open search)))
(allow gpg_helper_t self (process (getsched setsched)))
(allow gpg_helper_t self (unix_stream_socket (ioctl read write create getattr setattr append bind connect listen accept getopt setopt shutdown)))
(dontaudit gpg_helper_t gpg_secret_t (file (ioctl read getattr lock open)))
(allow gpg_helper_t netlabel_peer_t (peer (recv)))
(allow gpg_helper_t netlabel_peer_t (tcp_socket (recvfrom)))
(allow gpg_helper_t netlabel_peer_t (udp_socket (recvfrom)))
(allow gpg_helper_t netlabel_peer_t (rawip_socket (recvfrom)))
(allow gpg_helper_t netif_t (netif (ingress egress)))
(allow gpg_helper_t node_t (node (recvfrom sendto)))
(allow gpg_helper_t client_packet_type (packet (send)))
(allow gpg_helper_t client_packet_type (packet (recv)))
(allow gpg_helper_t port_type (tcp_socket (name_connect)))
(allow gpg_helper_t device_t (dir (getattr open search)))
(allow gpg_helper_t device_t (dir (ioctl read getattr lock open search)))
(allow gpg_helper_t device_t (dir (getattr open search)))
(allow gpg_helper_t device_t (lnk_file (read getattr)))
(allow gpg_helper_t devpts_t (dir (ioctl read getattr lock open search)))
(allow gpg_helper_t user_devpts_t (chr_file (ioctl read write getattr append open)))
(allow gpg_helper_t user_tty_device_t (chr_file (ioctl read write getattr append open)))
(allow gpg_agent_t self (process (sigchld sigkill sigstop signull signal setrlimit)))
(allow gpg_agent_t self (unix_stream_socket (ioctl read write create getattr setattr append bind connect listen accept getopt setopt shutdown connectto)))
(allow gpg_agent_t self (fifo_file (ioctl read write getattr lock append open)))
(allow gpg_agent_t gpg_secret_t (dir (ioctl read write getattr lock open add_name remove_name search)))
(allow gpg_agent_t gpg_secret_t (dir (ioctl read write create getattr setattr lock unlink link rename open add_name remove_name reparent search rmdir)))
(allow gpg_agent_t gpg_secret_t (dir (ioctl read write getattr lock open add_name remove_name search)))
(allow gpg_agent_t gpg_secret_t (sock_file (ioctl read write create getattr setattr lock append unlink link rename open)))
(allow gpg_agent_t gpg_secret_t (dir (ioctl read write getattr lock open add_name remove_name search)))
(allow gpg_agent_t gpg_secret_t (file (ioctl read write create getattr setattr lock append unlink link rename open)))
(allow gpg_agent_t gpg_secret_t (dir (ioctl read write getattr lock open add_name remove_name search)))
(allow gpg_agent_t gpg_secret_t (lnk_file (ioctl read write create getattr setattr lock append unlink link rename)))
(allow gpg_agent_t gpg_secret_t (dir (watch)))
(allow gpg_agent_t gpg_runtime_t (dir (ioctl read write getattr lock open add_name remove_name search)))
(allow gpg_agent_t gpg_runtime_t (dir (ioctl read write create getattr setattr lock unlink link rename open add_name remove_name reparent search rmdir)))
(allow gpg_agent_t user_runtime_t (dir (ioctl read write getattr lock open add_name remove_name search)))
(allow gpg_agent_t user_runtime_root_t (dir (getattr open search)))
(allow gpg_agent_t var_run_t (lnk_file (read getattr)))
(allow gpg_agent_t var_t (dir (getattr open search)))
(allow gpg_agent_t var_run_t (dir (getattr open search)))
(allow gpg_agent_t gpg_runtime_t (dir (ioctl read write getattr lock open add_name remove_name search)))
(allow gpg_agent_t gpg_runtime_t (sock_file (ioctl read write create getattr setattr lock append unlink link rename open)))
(allow gpg_agent_t gpg_runtime_t (dir (watch)))
(allow gpg_agent_t gpg_agent_tmp_t (dir (ioctl read write getattr lock open add_name remove_name search)))
(allow gpg_agent_t gpg_agent_tmp_t (dir (ioctl read write create getattr setattr lock unlink link rename open add_name remove_name reparent search rmdir)))
(allow gpg_agent_t gpg_agent_tmp_t (dir (ioctl read write getattr lock open add_name remove_name search)))
(allow gpg_agent_t gpg_agent_tmp_t (file (ioctl read write create getattr setattr lock append unlink link rename open)))
(allow gpg_agent_t gpg_agent_tmp_t (dir (ioctl read write getattr lock open add_name remove_name search)))
(allow gpg_agent_t gpg_agent_tmp_t (sock_file (ioctl read write create getattr setattr lock append unlink link rename open)))
(allow gpg_agent_t tmp_t (dir (ioctl read write getattr lock open add_name remove_name search)))
(typetransition gpg_agent_t tmp_t sock_file gpg_agent_tmp_t)
(typetransition gpg_agent_t tmp_t dir gpg_agent_tmp_t)
(typetransition gpg_agent_t tmp_t file gpg_agent_tmp_t)
(allow gpg_agent_t gpg_secret_t (dir (ioctl read write getattr lock open add_name remove_name search)))
(typetransition gpg_agent_t gpg_secret_t sock_file gpg_agent_tmp_t)
(allow gpg_agent_t gpg_runtime_t (dir (ioctl read write getattr lock open add_name remove_name search)))
(typetransition gpg_agent_t gpg_runtime_t sock_file gpg_agent_tmp_t)
(allow gpg_agent_t gpg_pinentry_exec_t (file (ioctl read getattr map execute open)))
(allow gpg_agent_t gpg_pinentry_t (process (transition)))
(dontaudit gpg_agent_t gpg_pinentry_t (process (noatsecure siginh rlimitinh)))
(typetransition gpg_agent_t gpg_pinentry_exec_t process gpg_pinentry_t)
(allow gpg_pinentry_t gpg_agent_t (fd (use)))
(allow gpg_pinentry_t gpg_agent_t (fifo_file (ioctl read write getattr lock append)))
(allow gpg_pinentry_t gpg_agent_t (process (sigchld)))
(dontaudit gpg_agent_t sysctl_t (dir (search)))
(allow gpg_agent_t proc_t (dir (getattr open search)))
(allow gpg_agent_t proc_t (file (ioctl read getattr lock open)))
(allow gpg_agent_t proc_t (dir (getattr open search)))
(allow gpg_agent_t proc_t (lnk_file (read getattr)))
(allow gpg_agent_t proc_t (dir (getattr open search)))
(allow gpg_agent_t proc_t (dir (ioctl read getattr lock open search)))
(allow gpg_agent_t bin_t (dir (getattr open search)))
(allow gpg_agent_t bin_t (lnk_file (read getattr)))
(allow gpg_agent_t usr_t (dir (getattr open search)))
(allow gpg_agent_t bin_t (dir (getattr open search)))
(allow gpg_agent_t bin_t (dir (ioctl read getattr lock open search)))
(allow gpg_agent_t bin_t (file (ioctl read getattr lock map execute open execute_no_trans)))
(allow gpg_agent_t bin_t (dir (getattr open search)))
(allow gpg_agent_t bin_t (lnk_file (read getattr)))
(allow gpg_agent_t usr_t (dir (getattr open search)))
(allow gpg_agent_t bin_t (dir (getattr open search)))
(allow gpg_agent_t bin_t (dir (ioctl read getattr lock open search)))
(allow gpg_agent_t shell_exec_t (file (ioctl read getattr lock map execute open execute_no_trans)))
(allow gpg_agent_t device_t (dir (getattr open search)))
(allow gpg_agent_t random_device_t (chr_file (ioctl read getattr lock open)))
(allow gpg_agent_t device_t (dir (getattr open search)))
(allow gpg_agent_t urandom_device_t (chr_file (ioctl read getattr lock open)))
(allow gpg_agent_t privfd (fd (use)))
(dontaudit gpg_agent_t inotifyfs_t (dir (ioctl read getattr lock open search)))
(allow gpg_agent_t etc_t (dir (getattr open search)))
(allow gpg_agent_t etc_t (lnk_file (read getattr)))
(allow gpg_agent_t usr_t (dir (getattr open search)))
(allow gpg_agent_t locale_t (dir (ioctl read getattr lock open search)))
(allow gpg_agent_t locale_t (dir (getattr open search)))
(allow gpg_agent_t locale_t (file (ioctl read getattr lock open)))
(allow gpg_agent_t locale_t (dir (getattr open search)))
(allow gpg_agent_t locale_t (lnk_file (read getattr)))
(allow gpg_agent_t locale_t (file (map)))
(allow gpg_agent_t device_t (dir (getattr open search)))
(allow gpg_agent_t device_t (dir (ioctl read getattr lock open search)))
(allow gpg_agent_t device_t (dir (getattr open search)))
(allow gpg_agent_t device_t (lnk_file (read getattr)))
(allow gpg_agent_t devpts_t (dir (ioctl read getattr lock open search)))
(allow gpg_agent_t user_devpts_t (chr_file (ioctl read write getattr append open)))
(allow gpg_agent_t user_tty_device_t (chr_file (ioctl read write getattr append open)))
(allow gpg_agent_t user_home_dir_t (dir (getattr open search)))
(allow gpg_agent_t home_root_t (dir (getattr open search)))
(allow gpg_agent_t home_root_t (lnk_file (read getattr)))
(allow gpg_agent_t user_runtime_t (dir (getattr open search)))
(allow gpg_agent_t user_runtime_root_t (dir (getattr open search)))
(allow gpg_agent_t var_run_t (lnk_file (read getattr)))
(allow gpg_agent_t var_t (dir (getattr open search)))
(allow gpg_agent_t var_run_t (dir (getattr open search)))
(dontaudit gpg_agent_t user_tmp_t (file (ioctl read getattr lock open)))
(allow gpg_agent_t user_runtime_t (dir (ioctl read write getattr lock open add_name remove_name search)))
(typetransition gpg_agent_t user_runtime_t sock_file gpg_agent_tmp_t)
(typetransition gpg_agent_t user_runtime_t dir gpg_agent_tmp_t)
(typetransition gpg_agent_t user_runtime_t file gpg_agent_tmp_t)
(allow gpg_agent_t user_runtime_root_t (dir (getattr open search)))
(allow gpg_agent_t var_run_t (lnk_file (read getattr)))
(allow gpg_agent_t var_t (dir (getattr open search)))
(allow gpg_agent_t var_run_t (dir (getattr open search)))
(allow gpg_pinentry_t self (process (signal getsched setsched getcap)))
(allow gpg_pinentry_t self (fifo_file (ioctl read write getattr lock append open)))
(allow gpg_pinentry_t self (shm (create destroy getattr setattr read write associate unix_read unix_write lock)))
(allow gpg_pinentry_t self (tcp_socket (listen accept)))
(allow gpg_pinentry_t gpg_pinentry_tmp_t (dir (ioctl read write getattr lock open add_name remove_name search)))
(allow gpg_pinentry_t gpg_pinentry_tmp_t (sock_file (ioctl read write create getattr setattr lock append unlink link rename open)))
(allow gpg_pinentry_t user_tmp_t (dir (ioctl read write getattr lock open add_name remove_name search)))
(typetransition gpg_pinentry_t user_tmp_t sock_file gpg_pinentry_tmp_t)
(allow gpg_pinentry_t tmp_t (dir (getattr open search)))
(allow gpg_pinentry_t user_runtime_t (dir (getattr open search)))
(allow gpg_pinentry_t user_runtime_root_t (dir (getattr open search)))
(allow gpg_pinentry_t var_run_t (lnk_file (read getattr)))
(allow gpg_pinentry_t var_t (dir (getattr open search)))
(allow gpg_pinentry_t var_run_t (dir (getattr open search)))
(allow gpg_pinentry_t gpg_pinentry_tmpfs_t (dir (ioctl read write getattr lock open add_name remove_name search)))
(allow gpg_pinentry_t gpg_pinentry_tmpfs_t (dir (ioctl read write create getattr setattr lock unlink link rename open add_name remove_name reparent search rmdir)))
(allow gpg_pinentry_t gpg_pinentry_tmpfs_t (dir (ioctl read write getattr lock open add_name remove_name search)))
(allow gpg_pinentry_t gpg_pinentry_tmpfs_t (file (ioctl read write create getattr setattr lock append unlink link rename open)))
(allow gpg_pinentry_tmpfs_t tmpfs_t (filesystem (associate)))
(allow gpg_pinentry_t tmpfs_t (dir (ioctl read write getattr lock open add_name remove_name search)))
(typetransition gpg_pinentry_t tmpfs_t dir gpg_pinentry_tmpfs_t)
(typetransition gpg_pinentry_t tmpfs_t file gpg_pinentry_tmpfs_t)
(allow gpg_pinentry_t gpg_pinentry_exec_t (file (ioctl read getattr lock map execute open execute_no_trans)))
(dontaudit gpg_pinentry_t sysctl_t (dir (search)))
(allow gpg_pinentry_t proc_t (dir (getattr open search)))
(allow gpg_pinentry_t proc_t (file (ioctl read getattr lock open)))
(allow gpg_pinentry_t proc_t (dir (getattr open search)))
(allow gpg_pinentry_t proc_t (lnk_file (read getattr)))
(allow gpg_pinentry_t proc_t (dir (getattr open search)))
(allow gpg_pinentry_t proc_t (dir (ioctl read getattr lock open search)))
(allow gpg_pinentry_t bin_t (dir (getattr open search)))
(allow gpg_pinentry_t bin_t (lnk_file (read getattr)))
(allow gpg_pinentry_t usr_t (dir (getattr open search)))
(allow gpg_pinentry_t bin_t (dir (getattr open search)))
(allow gpg_pinentry_t bin_t (dir (ioctl read getattr lock open search)))
(allow gpg_pinentry_t shell_exec_t (file (ioctl read getattr lock map execute open execute_no_trans)))
(allow gpg_pinentry_t bin_t (dir (getattr open search)))
(allow gpg_pinentry_t bin_t (lnk_file (read getattr)))
(allow gpg_pinentry_t usr_t (dir (getattr open search)))
(allow gpg_pinentry_t bin_t (dir (getattr open search)))
(allow gpg_pinentry_t bin_t (dir (ioctl read getattr lock open search)))
(allow gpg_pinentry_t bin_t (file (ioctl read getattr lock map execute open execute_no_trans)))
(allow gpg_pinentry_t netlabel_peer_t (peer (recv)))
(allow gpg_pinentry_t netlabel_peer_t (tcp_socket (recvfrom)))
(allow gpg_pinentry_t netlabel_peer_t (udp_socket (recvfrom)))
(allow gpg_pinentry_t netlabel_peer_t (rawip_socket (recvfrom)))
(allow gpg_pinentry_t netif_t (netif (ingress egress)))
(allow gpg_pinentry_t node_t (node (recvfrom sendto)))
(allow gpg_pinentry_t device_t (dir (getattr open search)))
(allow gpg_pinentry_t urandom_device_t (chr_file (ioctl read getattr lock open)))
(allow gpg_pinentry_t device_t (dir (getattr open search)))
(allow gpg_pinentry_t random_device_t (chr_file (ioctl read getattr lock open)))
(allow gpg_pinentry_t privfd (fd (use)))
(allow gpg_pinentry_t usr_t (file (map)))
(allow gpg_pinentry_t usr_t (dir (ioctl read getattr lock open search)))
(allow gpg_pinentry_t usr_t (dir (getattr open search)))
(allow gpg_pinentry_t usr_t (file (ioctl read getattr lock open)))
(allow gpg_pinentry_t usr_t (dir (getattr open search)))
(allow gpg_pinentry_t usr_t (lnk_file (read getattr)))
(dontaudit gpg_pinentry_t fs_t (filesystem (getattr)))
(dontaudit gpg_pinentry_t inotifyfs_t (dir (ioctl read getattr lock open search)))
(allow gpg_pinentry_t devlog_t (sock_file (write getattr append open)))
(allow gpg_pinentry_t var_run_t (lnk_file (read getattr)))
(allow gpg_pinentry_t var_t (dir (getattr open search)))
(allow gpg_pinentry_t var_run_t (dir (getattr open search)))
(allow gpg_pinentry_t init_runtime_t (dir (getattr open search)))
(allow gpg_pinentry_t syslogd_runtime_t (dir (getattr open search)))
(allow gpg_pinentry_t syslogd_t (unix_dgram_socket (sendto)))
(allow gpg_pinentry_t syslogd_t (unix_stream_socket (connectto)))
(allow gpg_pinentry_t self (unix_dgram_socket (ioctl read write create getattr setattr append bind connect getopt setopt shutdown)))
(allow gpg_pinentry_t self (unix_stream_socket (ioctl read write create getattr setattr append bind connect getopt setopt shutdown)))
(allow gpg_pinentry_t device_t (dir (getattr open search)))
(allow gpg_pinentry_t device_t (dir (ioctl read getattr lock open search)))
(allow gpg_pinentry_t device_t (dir (getattr open search)))
(allow gpg_pinentry_t device_t (lnk_file (read getattr)))
(allow gpg_pinentry_t console_device_t (chr_file (ioctl write getattr lock append open)))
(dontaudit gpg_pinentry_t console_device_t (chr_file (ioctl read getattr lock open)))
(allow gpg_pinentry_t usr_t (dir (getattr open search)))
(allow gpg_pinentry_t lib_t (dir (getattr open search)))
(allow gpg_pinentry_t fonts_t (dir (ioctl read getattr lock open search)))
(allow gpg_pinentry_t fonts_t (dir (getattr open search)))
(allow gpg_pinentry_t fonts_t (file (ioctl read getattr lock open)))
(allow gpg_pinentry_t fonts_t (file (map)))
(allow gpg_pinentry_t fonts_t (dir (getattr open search)))
(allow gpg_pinentry_t fonts_t (lnk_file (read getattr)))
(allow gpg_pinentry_t fonts_cache_t (dir (ioctl read getattr lock open search)))
(allow gpg_pinentry_t fonts_cache_t (dir (getattr open search)))
(allow gpg_pinentry_t fonts_cache_t (file (ioctl read getattr lock open)))
(allow gpg_pinentry_t fonts_cache_t (file (map)))
(allow gpg_pinentry_t fonts_cache_t (dir (getattr open search)))
(allow gpg_pinentry_t fonts_cache_t (lnk_file (read getattr)))
(allow gpg_pinentry_t etc_t (dir (getattr open search)))
(allow gpg_pinentry_t etc_t (lnk_file (read getattr)))
(allow gpg_pinentry_t usr_t (dir (getattr open search)))
(allow gpg_pinentry_t locale_t (dir (ioctl read getattr lock open search)))
(allow gpg_pinentry_t locale_t (dir (getattr open search)))
(allow gpg_pinentry_t locale_t (file (ioctl read getattr lock open)))
(allow gpg_pinentry_t locale_t (dir (getattr open search)))
(allow gpg_pinentry_t locale_t (lnk_file (read getattr)))
(allow gpg_pinentry_t locale_t (file (map)))
(allow gpg_pinentry_t device_t (dir (getattr open search)))
(allow gpg_pinentry_t device_t (dir (ioctl read getattr lock open search)))
(allow gpg_pinentry_t device_t (dir (getattr open search)))
(allow gpg_pinentry_t device_t (lnk_file (read getattr)))
(allow gpg_pinentry_t devpts_t (dir (ioctl read getattr lock open search)))
(allow gpg_pinentry_t user_devpts_t (chr_file (ioctl read write getattr append open)))
(allow gpg_pinentry_t user_tty_device_t (chr_file (ioctl read write getattr append open)))
(typetransition gpg_agent_t user_runtime_t dir "gnupg" gpg_runtime_t)
(typetransition gpg_t user_runtime_t dir "gnupg" gpg_runtime_t)
(booleanif (gpg_agent_use_card)
    (true
        (allow gpg_agent_t usb_device_t (chr_file (ioctl read write getattr lock append open)))
        (allow gpg_agent_t device_t (dir (getattr open search)))
        (allow gpg_agent_t sysfs_t (dir (ioctl read getattr lock open search)))
        (allow gpg_agent_t sysfs_t (dir (getattr open search)))
        (allow gpg_agent_t sysfs_t (lnk_file (read getattr)))
        (allow gpg_agent_t sysfs_t (dir (getattr open search)))
        (allow gpg_agent_t sysfs_t (file (ioctl read getattr lock open)))
        (allow gpg_agent_t sysfs_t (dir (getattr open search)))
    )
)
(booleanif (gpg_agent_env_file)
    (true
        (allow gpg_agent_t home_root_t (lnk_file (read getattr)))
        (allow gpg_agent_t home_root_t (dir (getattr open search)))
        (typetransition gpg_agent_t user_home_dir_t file user_home_t)
        (allow gpg_agent_t user_home_dir_t (dir (ioctl read write getattr lock open add_name remove_name search)))
        (allow gpg_agent_t home_root_t (lnk_file (read getattr)))
        (allow gpg_agent_t home_root_t (dir (getattr open search)))
        (allow gpg_agent_t user_home_dir_t (dir (getattr open search)))
        (allow gpg_agent_t user_home_t (file (ioctl read write create getattr setattr lock append map unlink link rename open)))
        (allow gpg_agent_t user_home_t (dir (ioctl read write getattr lock open add_name remove_name search)))
        (allow gpg_agent_t home_root_t (lnk_file (read getattr)))
        (allow gpg_agent_t home_root_t (dir (getattr open search)))
        (allow gpg_agent_t user_home_t (dir (ioctl read write create getattr setattr lock unlink link rename open add_name remove_name reparent search rmdir)))
        (allow gpg_agent_t user_home_t (dir (ioctl read write getattr lock open add_name remove_name search)))
        (allow gpg_agent_t user_home_dir_t (dir (ioctl read write getattr lock open add_name remove_name search)))
    )
)
(booleanif (use_samba_home_dirs)
    (true
        (allow gpg_t cifs_t (file (ioctl read write create getattr setattr lock append unlink link rename open)))
        (allow gpg_t cifs_t (dir (ioctl read write getattr lock open add_name remove_name search)))
        (allow gpg_t cifs_t (dir (ioctl read write create getattr setattr lock unlink link rename open add_name remove_name reparent search rmdir)))
        (dontaudit gpg_helper_t cifs_t (file (ioctl read write getattr lock append open)))
        (allow gpg_agent_t cifs_t (lnk_file (ioctl read write create getattr setattr lock append unlink link rename)))
        (allow gpg_agent_t cifs_t (dir (ioctl read write getattr lock open add_name remove_name search)))
        (allow gpg_agent_t cifs_t (file (ioctl read write create getattr setattr lock append unlink link rename open)))
        (allow gpg_agent_t cifs_t (dir (ioctl read write getattr lock open add_name remove_name search)))
        (allow gpg_agent_t cifs_t (dir (ioctl read write create getattr setattr lock unlink link rename open add_name remove_name reparent search rmdir)))
        (allow gpg_pinentry_t cifs_t (file (ioctl read getattr lock open)))
        (allow gpg_pinentry_t cifs_t (dir (getattr open search)))
        (allow gpg_pinentry_t cifs_t (dir (ioctl read getattr lock open search)))
    )
)
(booleanif (use_nfs_home_dirs)
    (true
        (allow gpg_t nfs_t (file (ioctl read write create getattr setattr lock append unlink link rename open)))
        (allow gpg_t nfs_t (dir (ioctl read write getattr lock open add_name remove_name search)))
        (allow gpg_t nfs_t (dir (ioctl read write create getattr setattr lock unlink link rename open add_name remove_name reparent search rmdir)))
        (dontaudit gpg_helper_t nfs_t (file (ioctl read write getattr lock append open)))
        (allow gpg_agent_t nfs_t (lnk_file (ioctl read write create getattr setattr lock append unlink link rename)))
        (allow gpg_agent_t nfs_t (dir (ioctl read write getattr lock open add_name remove_name search)))
        (allow gpg_agent_t nfs_t (file (ioctl read write create getattr setattr lock append unlink link rename open)))
        (allow gpg_agent_t nfs_t (dir (ioctl read write getattr lock open add_name remove_name search)))
        (allow gpg_agent_t nfs_t (dir (ioctl read write create getattr setattr lock unlink link rename open add_name remove_name reparent search rmdir)))
        (allow gpg_pinentry_t nfs_t (file (ioctl read getattr lock open)))
        (allow gpg_pinentry_t nfs_t (dir (getattr open search)))
        (allow gpg_pinentry_t nfs_t (dir (ioctl read getattr lock open search)))
    )
)
(booleanif (gpg_manage_all_user_content)
    (true
        (allow gpg_t user_home_content_type (sock_file (ioctl read write create getattr setattr lock append unlink link rename open)))
        (allow gpg_t user_home_content_type (dir (ioctl read write getattr lock open add_name remove_name search)))
        (allow gpg_t user_home_content_type (fifo_file (ioctl read write create getattr setattr lock append unlink link rename open)))
        (allow gpg_t user_home_content_type (dir (ioctl read write getattr lock open add_name remove_name search)))
        (allow gpg_t user_home_content_type (lnk_file (ioctl read write create getattr setattr lock append unlink link rename)))
        (allow gpg_t user_home_content_type (dir (ioctl read write getattr lock open add_name remove_name search)))
        (allow gpg_t user_home_content_type (file (ioctl read write create getattr setattr lock append unlink link rename open)))
        (allow gpg_t user_home_content_type (dir (ioctl read write getattr lock open add_name remove_name search)))
        (allow gpg_t user_home_content_type (dir (ioctl read write create getattr setattr lock unlink link rename open add_name remove_name reparent search rmdir)))
        (allow gpg_t user_home_content_type (dir (ioctl read write getattr lock open add_name remove_name search)))
    )
)
(booleanif (gpg_manage_generic_user_content)
    (true
        (allow gpg_t home_root_t (lnk_file (read getattr)))
        (allow gpg_t home_root_t (dir (getattr open search)))
        (allow gpg_t user_home_dir_t (dir (getattr open search)))
        (allow gpg_t user_home_t (lnk_file (ioctl read write create getattr setattr lock append unlink link rename)))
        (allow gpg_t user_home_t (dir (ioctl read write getattr lock open add_name remove_name search)))
        (allow gpg_t home_root_t (lnk_file (read getattr)))
        (allow gpg_t home_root_t (dir (getattr open search)))
        (allow gpg_t user_home_dir_t (dir (getattr open search)))
        (allow gpg_t user_home_t (file (ioctl read write create getattr setattr lock append map unlink link rename open)))
        (allow gpg_t user_home_t (dir (ioctl read write getattr lock open add_name remove_name search)))
        (allow gpg_t home_root_t (lnk_file (read getattr)))
        (allow gpg_t home_root_t (dir (getattr open search)))
        (allow gpg_t user_home_t (dir (ioctl read write create getattr setattr lock unlink link rename open add_name remove_name reparent search rmdir)))
        (allow gpg_t user_home_t (dir (ioctl read write getattr lock open add_name remove_name search)))
        (allow gpg_t user_home_dir_t (dir (ioctl read write getattr lock open add_name remove_name search)))
        (allow gpg_t var_run_t (dir (getattr open search)))
        (allow gpg_t var_t (dir (getattr open search)))
        (allow gpg_t var_run_t (lnk_file (read getattr)))
        (allow gpg_t user_runtime_root_t (dir (getattr open search)))
        (allow gpg_t user_runtime_t (dir (getattr open search)))
        (allow gpg_t tmp_t (dir (getattr open search)))
        (allow gpg_t user_tmp_t (lnk_file (ioctl read write create getattr setattr lock append unlink link rename)))
        (allow gpg_t user_tmp_t (dir (ioctl read write getattr lock open add_name remove_name search)))
        (allow gpg_t var_run_t (dir (getattr open search)))
        (allow gpg_t var_t (dir (getattr open search)))
        (allow gpg_t var_run_t (lnk_file (read getattr)))
        (allow gpg_t user_runtime_root_t (dir (getattr open search)))
        (allow gpg_t user_runtime_t (dir (getattr open search)))
        (allow gpg_t tmp_t (dir (getattr open search)))
        (allow gpg_t user_tmp_t (file (ioctl read write create getattr setattr lock append unlink link rename open)))
        (allow gpg_t user_tmp_t (dir (ioctl read write getattr lock open add_name remove_name search)))
        (allow gpg_t var_run_t (dir (getattr open search)))
        (allow gpg_t var_t (dir (getattr open search)))
        (allow gpg_t var_run_t (lnk_file (read getattr)))
        (allow gpg_t user_runtime_root_t (dir (getattr open search)))
        (allow gpg_t user_runtime_t (dir (getattr open search)))
        (allow gpg_t tmp_t (dir (getattr open search)))
        (allow gpg_t user_tmp_t (dir (ioctl read write create getattr setattr lock unlink link rename open add_name remove_name reparent search rmdir)))
        (allow gpg_t user_tmp_t (dir (ioctl read write getattr lock open add_name remove_name search)))
    )
)
(booleanif (gpg_read_all_user_content)
    (true
        (allow gpg_t user_home_content_type (sock_file (read getattr open)))
        (allow gpg_t user_home_content_type (dir (getattr open search)))
        (allow gpg_t user_home_content_type (fifo_file (ioctl read getattr lock open)))
        (allow gpg_t user_home_content_type (dir (getattr open search)))
        (allow gpg_t user_home_content_type (lnk_file (read getattr)))
        (allow gpg_t user_home_content_type (dir (getattr open search)))
        (allow gpg_t user_home_content_type (file (ioctl read getattr lock open)))
        (allow gpg_t user_home_content_type (dir (getattr open search)))
        (allow gpg_t user_home_content_type (dir (ioctl read getattr lock open search)))
        (allow gpg_t user_home_content_type (dir (getattr open search)))
        (allow gpg_t var_run_t (dir (getattr open search)))
        (allow gpg_t var_t (dir (getattr open search)))
        (allow gpg_t var_run_t (lnk_file (read getattr)))
        (allow gpg_t user_runtime_root_t (dir (getattr open search)))
        (allow gpg_t user_runtime_t (dir (getattr open search)))
        (allow gpg_t tmp_t (dir (getattr open search)))
        (allow gpg_t user_runtime_t (dir (ioctl read getattr lock open search)))
        (allow gpg_t user_tmp_t (dir (ioctl read getattr lock open search)))
    )
)
(booleanif (gpg_read_generic_user_content)
    (true
        (allow gpg_t var_run_t (dir (getattr open search)))
        (allow gpg_t var_t (dir (getattr open search)))
        (allow gpg_t var_run_t (lnk_file (read getattr)))
        (allow gpg_t user_runtime_root_t (dir (getattr open search)))
        (allow gpg_t user_runtime_t (dir (getattr open search)))
        (allow gpg_t tmp_t (dir (getattr open search)))
        (allow gpg_t user_tmp_t (dir (ioctl read getattr lock open search)))
        (allow gpg_t user_tmp_t (lnk_file (read getattr)))
        (allow gpg_t user_tmp_t (dir (getattr open search)))
        (allow gpg_t var_run_t (dir (getattr open search)))
        (allow gpg_t var_t (dir (getattr open search)))
        (allow gpg_t var_run_t (lnk_file (read getattr)))
        (allow gpg_t user_runtime_root_t (dir (getattr open search)))
        (allow gpg_t user_runtime_t (dir (getattr open search)))
        (allow gpg_t tmp_t (dir (getattr open search)))
        (allow gpg_t user_tmp_t (dir (ioctl read getattr lock open search)))
        (allow gpg_t user_tmp_t (file (ioctl read getattr lock open)))
        (allow gpg_t user_tmp_t (dir (getattr open search)))
        (allow gpg_t home_root_t (lnk_file (read getattr)))
        (allow gpg_t home_root_t (dir (getattr open search)))
        (allow gpg_t user_home_t (lnk_file (read getattr)))
        (allow gpg_t user_home_t (dir (getattr open search)))
        (allow gpg_t user_home_dir_t (dir (getattr open search)))
        (allow gpg_t home_root_t (lnk_file (read getattr)))
        (allow gpg_t home_root_t (dir (getattr open search)))
        (allow gpg_t user_home_t (file (ioctl read getattr lock open)))
        (allow gpg_t user_home_t (dir (getattr open search)))
        (allow gpg_t user_home_dir_t (dir (getattr open search)))
        (allow gpg_t user_home_t (dir (ioctl read getattr lock open search)))
        (allow gpg_t var_run_t (dir (getattr open search)))
        (allow gpg_t var_t (dir (getattr open search)))
        (allow gpg_t var_run_t (lnk_file (read getattr)))
        (allow gpg_t user_runtime_root_t (dir (getattr open search)))
        (allow gpg_t user_runtime_t (dir (getattr open search)))
        (allow gpg_t tmp_t (dir (getattr open search)))
        (allow gpg_t user_runtime_t (dir (ioctl read getattr lock open search)))
        (allow gpg_t user_tmp_t (dir (ioctl read getattr lock open search)))
    )
    (false
        (dontaudit gpg_t user_tmp_t (file (ioctl read getattr lock open)))
        (dontaudit gpg_t user_home_t (file (ioctl read getattr lock open)))
        (dontaudit gpg_t user_home_t (dir (ioctl read getattr lock open search)))
        (dontaudit gpg_t user_tmp_t (dir (ioctl read getattr lock open search)))
        (dontaudit gpg_t user_home_dir_t (dir (ioctl read getattr lock open search)))
        (dontaudit gpg_t tmp_t (dir (ioctl read getattr lock open search)))
        (dontaudit gpg_t home_root_t (lnk_file (read getattr)))
        (dontaudit gpg_t home_root_t (dir (ioctl read getattr lock open search)))
    )
)
(optional gpg_optional_2
    (typeattributeset cil_gen_require init_t)
    (allow gpg_t init_t (process (sigchld)))
    (allow gpg_t init_t (process (signull)))
)
(optional gpg_optional_3
    (typeattributeset cil_gen_require rpm_t)
    (allow gpg_t rpm_t (fd (use)))
    (allow gpg_t rpm_t (fifo_file (ioctl read getattr lock open)))
)
(optional gpg_optional_4
    (typeattributeset cil_gen_require security_t)
    (typeattributeset cil_gen_require sysfs_t)
    (dontaudit gpg_t security_t (filesystem (getattr)))
    (dontaudit gpg_t sysfs_t (filesystem (getattr)))
    (dontaudit gpg_t sysfs_t (dir (getattr open search)))
    (dontaudit gpg_t security_t (dir (getattr open search)))
    (dontaudit gpg_t security_t (file (ioctl read getattr lock open)))
)
(optional gpg_optional_5
    (typeattributeset cil_gen_require selinux_config_t)
    (dontaudit gpg_t selinux_config_t (dir (getattr open search)))
    (dontaudit gpg_t selinux_config_t (file (ioctl read getattr lock open)))
)
(optional gpg_optional_6
    (typeattributeset cil_gen_require init_t)
    (allow gpg_agent_t init_t (process (sigchld)))
    (allow gpg_agent_t init_t (process (signull)))
)
(optional gpg_optional_7
    (typeattributeset cil_gen_require rpm_t)
    (allow gpg_agent_t rpm_t (fd (use)))
    (allow gpg_agent_t rpm_t (fifo_file (ioctl read getattr lock open)))
)
(optional gpg_optional_8
    (typeattributeset cil_gen_require security_t)
    (typeattributeset cil_gen_require sysfs_t)
    (dontaudit gpg_agent_t security_t (filesystem (getattr)))
    (dontaudit gpg_agent_t sysfs_t (filesystem (getattr)))
    (dontaudit gpg_agent_t sysfs_t (dir (getattr open search)))
    (dontaudit gpg_agent_t security_t (dir (getattr open search)))
    (dontaudit gpg_agent_t security_t (file (ioctl read getattr lock open)))
)
(optional gpg_optional_9
    (typeattributeset cil_gen_require selinux_config_t)
    (dontaudit gpg_agent_t selinux_config_t (dir (getattr open search)))
    (dontaudit gpg_agent_t selinux_config_t (file (ioctl read getattr lock open)))
)
(optional gpg_optional_10
    (typeattributeset cil_gen_require init_t)
    (allow gpg_helper_t init_t (process (sigchld)))
    (allow gpg_helper_t init_t (process (signull)))
)
(optional gpg_optional_11
    (typeattributeset cil_gen_require rpm_t)
    (allow gpg_helper_t rpm_t (fd (use)))
    (allow gpg_helper_t rpm_t (fifo_file (ioctl read getattr lock open)))
)
(optional gpg_optional_12
    (typeattributeset cil_gen_require security_t)
    (typeattributeset cil_gen_require sysfs_t)
    (dontaudit gpg_helper_t security_t (filesystem (getattr)))
    (dontaudit gpg_helper_t sysfs_t (filesystem (getattr)))
    (dontaudit gpg_helper_t sysfs_t (dir (getattr open search)))
    (dontaudit gpg_helper_t security_t (dir (getattr open search)))
    (dontaudit gpg_helper_t security_t (file (ioctl read getattr lock open)))
)
(optional gpg_optional_13
    (typeattributeset cil_gen_require selinux_config_t)
    (dontaudit gpg_helper_t selinux_config_t (dir (getattr open search)))
    (dontaudit gpg_helper_t selinux_config_t (file (ioctl read getattr lock open)))
)
(optional gpg_optional_14
    (typeattributeset cil_gen_require init_t)
    (allow gpg_pinentry_t init_t (process (sigchld)))
    (allow gpg_pinentry_t init_t (process (signull)))
)
(optional gpg_optional_15
    (typeattributeset cil_gen_require rpm_t)
    (allow gpg_pinentry_t rpm_t (fd (use)))
    (allow gpg_pinentry_t rpm_t (fifo_file (ioctl read getattr lock open)))
)
(optional gpg_optional_16
    (typeattributeset cil_gen_require security_t)
    (typeattributeset cil_gen_require sysfs_t)
    (dontaudit gpg_pinentry_t security_t (filesystem (getattr)))
    (dontaudit gpg_pinentry_t sysfs_t (filesystem (getattr)))
    (dontaudit gpg_pinentry_t sysfs_t (dir (getattr open search)))
    (dontaudit gpg_pinentry_t security_t (dir (getattr open search)))
    (dontaudit gpg_pinentry_t security_t (file (ioctl read getattr lock open)))
)
(optional gpg_optional_17
    (typeattributeset cil_gen_require selinux_config_t)
    (dontaudit gpg_pinentry_t selinux_config_t (dir (getattr open search)))
    (dontaudit gpg_pinentry_t selinux_config_t (file (ioctl read getattr lock open)))
)
(optional gpg_optional_18
    (typeattributeset cil_gen_require pulseaudio_tmpfsfile)
    (typeattributeset cil_gen_require pulseaudio_tmpfsfile)
    (typeattributeset pulseaudio_tmpfsfile (gpg_pinentry_tmpfs_t ))
)
(optional gpg_optional_19
    (typeattributeset cil_gen_require gpg_agent_tmp_t)
    (typeattributeset cil_gen_require user_runtime_t)
    (typeattributeset cil_gen_require user_runtime_root_t)
    (typeattributeset cil_gen_require var_t)
    (typeattributeset cil_gen_require var_run_t)
    (typeattributeset cil_gen_require user_home_dir_t)
    (typeattributeset cil_gen_require home_root_t)
    (typeattributeset cil_gen_require bin_t)
    (typeattributeset cil_gen_require usr_t)
    (typeattributeset cil_gen_require dirmngr_t)
    (typeattributeset cil_gen_require dirmngr_exec_t)
    (typeattributeset cil_gen_require dirmngr_tmp_t)
    (allow gpg_t bin_t (dir (getattr open search)))
    (allow gpg_t bin_t (lnk_file (read getattr)))
    (allow gpg_t usr_t (dir (getattr open search)))
    (allow gpg_t dirmngr_exec_t (file (ioctl read getattr map execute open)))
    (allow gpg_t dirmngr_t (process (transition)))
    (dontaudit gpg_t dirmngr_t (process (noatsecure siginh rlimitinh)))
    (typetransition gpg_t dirmngr_exec_t process dirmngr_t)
    (allow dirmngr_t gpg_t (fd (use)))
    (allow dirmngr_t gpg_t (fifo_file (ioctl read write getattr lock append)))
    (allow dirmngr_t gpg_t (process (sigchld)))
    (allow gpg_t gpg_agent_tmp_t (dir (getattr open search)))
    (allow gpg_t dirmngr_tmp_t (sock_file (read write getattr append open)))
    (allow gpg_t dirmngr_t (unix_stream_socket (connectto)))
    (allow gpg_t user_runtime_t (dir (getattr open search)))
    (allow gpg_t user_runtime_root_t (dir (getattr open search)))
    (allow gpg_t var_run_t (lnk_file (read getattr)))
    (allow gpg_t var_t (dir (getattr open search)))
    (allow gpg_t var_run_t (dir (getattr open search)))
    (allow gpg_t user_home_dir_t (dir (getattr open search)))
    (allow gpg_t home_root_t (dir (getattr open search)))
    (allow gpg_t home_root_t (lnk_file (read getattr)))
)
(optional gpg_optional_20
    (typeattributeset cil_gen_require tmp_t)
    (typeattributeset cil_gen_require evolution_orbit_tmp_t)
    (allow gpg_t tmp_t (dir (getattr open search)))
    (allow gpg_t evolution_orbit_tmp_t (dir (getattr open search)))
    (allow gpg_t evolution_orbit_tmp_t (file (ioctl read getattr lock open)))
)
(optional gpg_optional_21
    (typeattributeset cil_gen_require user_runtime_t)
    (typeattributeset cil_gen_require user_runtime_root_t)
    (typeattributeset cil_gen_require var_t)
    (typeattributeset cil_gen_require var_run_t)
    (typeattributeset cil_gen_require tmp_t)
    (typeattributeset cil_gen_require user_home_dir_t)
    (typeattributeset cil_gen_require home_root_t)
    (typeattributeset cil_gen_require gnome_home_t)
    (typeattributeset cil_gen_require gkeyringd_domain)
    (typeattributeset cil_gen_require gnome_keyring_tmp_t)
    (allow gpg_t user_home_dir_t (dir (getattr open search)))
    (allow gpg_t home_root_t (dir (getattr open search)))
    (allow gpg_t home_root_t (lnk_file (read getattr)))
    (allow gpg_t gnome_home_t (dir (ioctl read getattr lock open search)))
    (allow gpg_t gnome_home_t (file (ioctl read getattr lock map open)))
    (allow gpg_t gnome_home_t (fifo_file (ioctl read getattr lock open)))
    (allow gpg_t gnome_home_t (lnk_file (read getattr)))
    (allow gpg_t gnome_home_t (sock_file (read getattr open)))
    (allow gpg_t tmp_t (dir (getattr open search)))
    (allow gpg_t user_runtime_t (dir (getattr open search)))
    (allow gpg_t user_runtime_root_t (dir (getattr open search)))
    (allow gpg_t var_run_t (lnk_file (read getattr)))
    (allow gpg_t var_t (dir (getattr open search)))
    (allow gpg_t var_run_t (dir (getattr open search)))
    (allow gpg_t gnome_keyring_tmp_t (dir (getattr open search)))
    (allow gpg_t gnome_keyring_tmp_t (sock_file (write getattr append open)))
    (allow gpg_t gkeyringd_domain (unix_stream_socket (connectto)))
)
(optional gpg_optional_22
    (typeattributeset cil_gen_require mozilla_home_t)
    (dontaudit gpg_t mozilla_home_t (file (ioctl read write getattr lock append open)))
)
(optional gpg_optional_23
    (typeattributeset cil_gen_require var_t)
    (typeattributeset cil_gen_require etc_t)
    (typeattributeset cil_gen_require mail_spool_t)
    (typeattributeset cil_gen_require var_spool_t)
    (typeattributeset cil_gen_require etc_mail_t)
    (allow gpg_t var_t (dir (getattr open search)))
    (allow gpg_t var_spool_t (dir (getattr open search)))
    (allow gpg_t mail_spool_t (dir (getattr open search)))
    (allow gpg_t mail_spool_t (file (ioctl read getattr lock open)))
    (allow gpg_t mail_spool_t (file (map)))
    (allow gpg_t etc_t (dir (getattr open search)))
    (allow gpg_t etc_mail_t (dir (getattr open search)))
    (allow gpg_t etc_mail_t (file (ioctl write getattr lock append open)))
)
(optional gpg_optional_24
    (typeattributeset cil_gen_require spamd_tmp_t)
    (allow gpg_t spamd_tmp_t (file (ioctl read getattr lock open)))
)
(optional gpg_optional_25
    (typeattributeset cil_gen_require xdm_t)
    (allow gpg_t xdm_t (fd (use)))
    (allow gpg_t xdm_t (fifo_file (ioctl read write getattr lock append)))
)
(optional gpg_optional_26
    (typeattributeset cil_gen_require var_t)
    (typeattributeset cil_gen_require var_run_t)
    (typeattributeset cil_gen_require dbusd_system_bus_client)
    (typeattributeset cil_gen_require system_dbusd_t)
    (typeattributeset cil_gen_require system_dbusd_runtime_t)
    (typeattributeset cil_gen_require system_dbusd_var_lib_t)
    (typeattributeset cil_gen_require var_lib_t)
    (typeattributeset cil_gen_require session_dbusd_tmp_t)
    (typeattributeset cil_gen_require dbusd_etc_t)
    (typeattributeset cil_gen_require dbusd_system_bus_client)
    (typeattributeset dbusd_system_bus_client (gpg_agent_t ))
    (allow gpg_agent_t system_dbusd_t (dbus (send_msg)))
    (allow gpg_agent_t self (dbus (send_msg)))
    (allow system_dbusd_t gpg_agent_t (dbus (send_msg)))
    (allow gpg_agent_t var_t (dir (getattr open search)))
    (allow gpg_agent_t var_lib_t (dir (getattr open search)))
    (allow gpg_agent_t system_dbusd_var_lib_t (dir (getattr open search)))
    (allow gpg_agent_t system_dbusd_var_lib_t (file (ioctl read getattr lock open)))
    (allow gpg_agent_t system_dbusd_var_lib_t (dir (getattr open search)))
    (allow gpg_agent_t system_dbusd_var_lib_t (lnk_file (read getattr)))
    (allow gpg_agent_t session_dbusd_tmp_t (dir (getattr open search)))
    (allow gpg_agent_t session_dbusd_tmp_t (sock_file (read write getattr append open)))
    (allow gpg_agent_t var_run_t (lnk_file (read getattr)))
    (allow gpg_agent_t var_t (dir (getattr open search)))
    (allow gpg_agent_t var_run_t (dir (getattr open search)))
    (allow gpg_agent_t system_dbusd_runtime_t (dir (getattr open search)))
    (allow gpg_agent_t system_dbusd_runtime_t (sock_file (write getattr append open)))
    (allow gpg_agent_t system_dbusd_t (unix_stream_socket (connectto)))
    (allow gpg_agent_t dbusd_etc_t (dir (ioctl read getattr lock open search)))
    (allow gpg_agent_t dbusd_etc_t (file (ioctl read getattr lock open)))
    (allow gpg_agent_t system_dbusd_runtime_t (dir (ioctl read getattr lock open search)))
    (allow gpg_agent_t system_dbusd_runtime_t (sock_file (read)))
    (allow gpg_agent_t system_dbusd_var_lib_t (dir (getattr open search)))
    (allow gpg_agent_t system_dbusd_var_lib_t (lnk_file (read getattr)))
)
(optional gpg_optional_27
    (typeattributeset cil_gen_require mozilla_home_t)
    (dontaudit gpg_agent_t mozilla_home_t (file (ioctl read write getattr lock append open)))
)
(optional gpg_optional_28
    (typeattributeset cil_gen_require var_t)
    (typeattributeset cil_gen_require var_run_t)
    (typeattributeset cil_gen_require pcscd_t)
    (typeattributeset cil_gen_require pcscd_runtime_t)
    (allow gpg_agent_t var_run_t (lnk_file (read getattr)))
    (allow gpg_agent_t var_t (dir (getattr open search)))
    (allow gpg_agent_t var_run_t (dir (getattr open search)))
    (allow gpg_agent_t pcscd_runtime_t (dir (getattr open search)))
    (allow gpg_agent_t pcscd_runtime_t (sock_file (write getattr append open)))
    (allow gpg_agent_t pcscd_t (unix_stream_socket (connectto)))
    (allow pcscd_t gpg_agent_t (dir (ioctl read getattr lock open search)))
    (allow pcscd_t gpg_agent_t (file (ioctl read getattr lock open)))
)
(optional gpg_optional_29
    (typeattributeset cil_gen_require user_home_dir_t)
    (typeattributeset cil_gen_require home_root_t)
    (typeattributeset cil_gen_require xdm_t)
    (typeattributeset cil_gen_require xauth_home_t)
    (allow gpg_agent_t xdm_t (process (sigchld)))
    (allow gpg_agent_t xauth_home_t (file (ioctl read getattr lock open)))
    (allow gpg_agent_t user_home_dir_t (dir (getattr open search)))
    (allow gpg_agent_t home_root_t (dir (getattr open search)))
    (allow gpg_agent_t home_root_t (lnk_file (read getattr)))
)
(optional gpg_optional_30
    (typeattributeset cil_gen_require var_t)
    (typeattributeset cil_gen_require var_run_t)
    (typeattributeset cil_gen_require dbusd_system_bus_client)
    (typeattributeset cil_gen_require system_dbusd_t)
    (typeattributeset cil_gen_require system_dbusd_runtime_t)
    (typeattributeset cil_gen_require system_dbusd_var_lib_t)
    (typeattributeset cil_gen_require var_lib_t)
    (typeattributeset cil_gen_require session_dbusd_tmp_t)
    (typeattributeset cil_gen_require dbusd_etc_t)
    (typeattributeset cil_gen_require session_bus_type)
    (typeattributeset cil_gen_require dbusd_session_bus_client)
    (typeattributeset cil_gen_require dbusd_system_bus_client)
    (typeattributeset dbusd_system_bus_client (gpg_pinentry_t ))
    (typeattributeset cil_gen_require dbusd_session_bus_client)
    (typeattributeset dbusd_session_bus_client (gpg_pinentry_t ))
    (allow gpg_pinentry_t session_bus_type (dbus (send_msg)))
    (allow gpg_pinentry_t self (dbus (send_msg)))
    (allow session_bus_type gpg_pinentry_t (dbus (send_msg)))
    (allow gpg_pinentry_t session_bus_type (unix_stream_socket (connectto)))
    (allow gpg_pinentry_t session_bus_type (fd (use)))
    (allow gpg_pinentry_t session_dbusd_tmp_t (dir (getattr open search)))
    (allow gpg_pinentry_t session_dbusd_tmp_t (sock_file (read write getattr append open)))
    (allow gpg_pinentry_t system_dbusd_t (dbus (send_msg)))
    (allow gpg_pinentry_t self (dbus (send_msg)))
    (allow system_dbusd_t gpg_pinentry_t (dbus (send_msg)))
    (allow gpg_pinentry_t var_t (dir (getattr open search)))
    (allow gpg_pinentry_t var_lib_t (dir (getattr open search)))
    (allow gpg_pinentry_t system_dbusd_var_lib_t (dir (getattr open search)))
    (allow gpg_pinentry_t system_dbusd_var_lib_t (file (ioctl read getattr lock open)))
    (allow gpg_pinentry_t system_dbusd_var_lib_t (dir (getattr open search)))
    (allow gpg_pinentry_t system_dbusd_var_lib_t (lnk_file (read getattr)))
    (allow gpg_pinentry_t session_dbusd_tmp_t (dir (getattr open search)))
    (allow gpg_pinentry_t session_dbusd_tmp_t (sock_file (read write getattr append open)))
    (allow gpg_pinentry_t var_run_t (lnk_file (read getattr)))
    (allow gpg_pinentry_t var_t (dir (getattr open search)))
    (allow gpg_pinentry_t var_run_t (dir (getattr open search)))
    (allow gpg_pinentry_t system_dbusd_runtime_t (dir (getattr open search)))
    (allow gpg_pinentry_t system_dbusd_runtime_t (sock_file (write getattr append open)))
    (allow gpg_pinentry_t system_dbusd_t (unix_stream_socket (connectto)))
    (allow gpg_pinentry_t dbusd_etc_t (dir (ioctl read getattr lock open search)))
    (allow gpg_pinentry_t dbusd_etc_t (file (ioctl read getattr lock open)))
    (allow gpg_pinentry_t system_dbusd_runtime_t (dir (ioctl read getattr lock open search)))
    (allow gpg_pinentry_t system_dbusd_runtime_t (sock_file (read)))
    (allow gpg_pinentry_t system_dbusd_var_lib_t (dir (getattr open search)))
    (allow gpg_pinentry_t system_dbusd_var_lib_t (lnk_file (read getattr)))
    (optional gpg_optional_31
        (typeattributeset cil_gen_require gkeyringd_domain)
        (allow gpg_pinentry_t gkeyringd_domain (dbus (send_msg)))
        (allow gkeyringd_domain gpg_pinentry_t (dbus (send_msg)))
    )
)
(optional gpg_optional_32
    (roleattributeset cil_gen_require pulseaudio_roles)
    (typeattributeset cil_gen_require bin_t)
    (typeattributeset cil_gen_require usr_t)
    (typeattributeset cil_gen_require pulseaudio_client)
    (typeattributeset cil_gen_require pulseaudio_t)
    (typeattributeset cil_gen_require pulseaudio_exec_t)
    (roleattributeset cil_gen_require pulseaudio_roles)
    (roleattributeset pulseaudio_roles (gpg_pinentry_roles ))
    (typeattributeset cil_gen_require pulseaudio_client)
    (typeattributeset pulseaudio_client (gpg_pinentry_t ))
    (allow gpg_pinentry_t bin_t (dir (getattr open search)))
    (allow gpg_pinentry_t bin_t (lnk_file (read getattr)))
    (allow gpg_pinentry_t usr_t (dir (getattr open search)))
    (allow gpg_pinentry_t pulseaudio_exec_t (file (ioctl read getattr map execute open)))
    (allow gpg_pinentry_t pulseaudio_t (process (transition)))
    (dontaudit gpg_pinentry_t pulseaudio_t (process (noatsecure siginh rlimitinh)))
    (typetransition gpg_pinentry_t pulseaudio_exec_t process pulseaudio_t)
    (allow pulseaudio_t gpg_pinentry_t (fd (use)))
    (allow pulseaudio_t gpg_pinentry_t (fifo_file (ioctl read write getattr lock append)))
    (allow pulseaudio_t gpg_pinentry_t (process (sigchld)))
)
(optional gpg_optional_33
    (typeattributeset cil_gen_require user_home_dir_t)
    (typeattributeset cil_gen_require home_root_t)
    (typeattributeset cil_gen_require xdg_data_t)
    (allow gpg_pinentry_t xdg_data_t (dir (getattr open search)))
    (allow gpg_pinentry_t xdg_data_t (file (ioctl read getattr lock open)))
    (allow gpg_pinentry_t xdg_data_t (file (map)))
    (allow gpg_pinentry_t xdg_data_t (dir (getattr open search)))
    (allow gpg_pinentry_t xdg_data_t (dir (ioctl read getattr lock open search)))
    (allow gpg_pinentry_t xdg_data_t (dir (getattr open search)))
    (allow gpg_pinentry_t xdg_data_t (lnk_file (read getattr)))
    (allow gpg_pinentry_t user_home_dir_t (dir (getattr open search)))
    (allow gpg_pinentry_t home_root_t (dir (getattr open search)))
    (allow gpg_pinentry_t home_root_t (lnk_file (read getattr)))
)
(optional gpg_optional_34
    (type gpg_pinentry_xproperty_t)
    (roletype object_r gpg_pinentry_xproperty_t)
    (type gpg_pinentry_input_xevent_t)
    (roletype object_r gpg_pinentry_input_xevent_t)
    (typeattributeset cil_gen_require ubac_constrained_type)
    (typeattributeset ubac_constrained_type (gpg_t gpg_runtime_t gpg_agent_t gpg_agent_tmp_t gpg_secret_t gpg_helper_t gpg_pinentry_t gpg_pinentry_tmp_t gpg_pinentry_tmpfs_t ))
    (typeattributeset cil_gen_require tmp_t)
    (typeattributeset cil_gen_require user_home_dir_t)
    (typeattributeset cil_gen_require home_root_t)
    (typeattributeset cil_gen_require usr_t)
    (typeattributeset cil_gen_require xdm_t)
    (typeattributeset cil_gen_require xauth_home_t)
    (typeattributeset cil_gen_require fonts_t)
    (typeattributeset cil_gen_require fonts_cache_t)
    (typeattributeset cil_gen_require lib_t)
    (typeattributeset cil_gen_require xdm_tmp_t)
    (typeattributeset cil_gen_require iceauth_home_t)
    (typeattributeset cil_gen_require xserver_t)
    (typeattributeset cil_gen_require xserver_tmpfs_t)
    (typeattributeset cil_gen_require xsession_log_t)
    (typeattributeset cil_gen_require xserver_tmp_t)
    (typeattributeset cil_gen_require user_fonts_t)
    (typeattributeset cil_gen_require user_fonts_cache_t)
    (typeattributeset cil_gen_require user_fonts_config_t)
    (typeattributeset cil_gen_require xdg_cache_t)
    (typeattributeset cil_gen_require xproperty_type)
    (typeattributeset cil_gen_require input_xevent_type)
    (typeattributeset cil_gen_require xevent_type)
    (typeattributeset cil_gen_require gpg_pinentry_input_xevent_t)
    (typeattributeset cil_gen_require root_xdrawable_t)
    (typeattributeset cil_gen_require xevent_t)
    (typeattributeset cil_gen_require client_xevent_t)
    (typeattributeset cil_gen_require input_xevent_t)
    (typeattributeset cil_gen_require x_domain)
    (typeattributeset cil_gen_require xdrawable_type)
    (typeattributeset cil_gen_require xcolormap_type)
    (typeattributeset cil_gen_require x_domain)
    (typeattributeset x_domain (gpg_pinentry_t ))
    (typeattributeset cil_gen_require xdrawable_type)
    (typeattributeset xdrawable_type (gpg_pinentry_t ))
    (typeattributeset cil_gen_require xevent_type)
    (typeattributeset xevent_type (gpg_pinentry_input_xevent_t ))
    (typeattributeset cil_gen_require ubac_constrained_type)
    (typeattributeset ubac_constrained_type (gpg_pinentry_xproperty_t gpg_pinentry_input_xevent_t ))
    (typeattributeset cil_gen_require xcolormap_type)
    (typeattributeset xcolormap_type (gpg_pinentry_t ))
    (typeattributeset cil_gen_require xproperty_type)
    (typeattributeset xproperty_type (gpg_pinentry_xproperty_t ))
    (typeattributeset cil_gen_require input_xevent_type)
    (typeattributeset input_xevent_type (gpg_pinentry_input_xevent_t ))
    (allow gpg_pinentry_t self (shm (create destroy getattr setattr read write associate unix_read unix_write lock)))
    (allow gpg_pinentry_t self (unix_dgram_socket (ioctl read write create getattr setattr append bind connect getopt setopt shutdown)))
    (allow gpg_pinentry_t self (unix_stream_socket (ioctl read write create getattr setattr append bind connect listen accept getopt setopt shutdown connectto)))
    (allow gpg_pinentry_t xauth_home_t (file (ioctl read getattr lock open)))
    (allow gpg_pinentry_t iceauth_home_t (file (ioctl read getattr lock open)))
    (allow gpg_pinentry_t xdm_t (fd (use)))
    (allow gpg_pinentry_t xdm_t (fifo_file (ioctl read write getattr lock append)))
    (allow gpg_pinentry_t xdm_tmp_t (dir (getattr open search)))
    (allow gpg_pinentry_t xdm_tmp_t (sock_file (read write)))
    (dontaudit gpg_pinentry_t xdm_t (tcp_socket (read write)))
    (allow gpg_pinentry_t tmp_t (dir (getattr open search)))
    (allow gpg_pinentry_t usr_t (dir (getattr open search)))
    (allow gpg_pinentry_t lib_t (dir (getattr open search)))
    (allow gpg_pinentry_t fonts_t (dir (ioctl read getattr lock open search)))
    (allow gpg_pinentry_t fonts_t (dir (getattr open search)))
    (allow gpg_pinentry_t fonts_t (file (ioctl read getattr lock open)))
    (allow gpg_pinentry_t fonts_t (file (map)))
    (allow gpg_pinentry_t fonts_t (dir (getattr open search)))
    (allow gpg_pinentry_t fonts_t (lnk_file (read getattr)))
    (allow gpg_pinentry_t fonts_cache_t (dir (ioctl read getattr lock open search)))
    (allow gpg_pinentry_t fonts_cache_t (dir (getattr open search)))
    (allow gpg_pinentry_t fonts_cache_t (file (ioctl read getattr lock open)))
    (allow gpg_pinentry_t fonts_cache_t (file (map)))
    (allow gpg_pinentry_t fonts_cache_t (dir (getattr open search)))
    (allow gpg_pinentry_t fonts_cache_t (lnk_file (read getattr)))
    (allow gpg_pinentry_t user_home_dir_t (dir (getattr open search)))
    (allow gpg_pinentry_t home_root_t (dir (getattr open search)))
    (allow gpg_pinentry_t home_root_t (lnk_file (read getattr)))
    (allow gpg_pinentry_t xsession_log_t (file (ioctl read write getattr lock append open)))
    (allow xserver_t gpg_pinentry_t (fd (use)))
    (allow xserver_t gpg_pinentry_t (shm (getattr read write associate unix_read unix_write lock)))
    (allow xserver_t gpg_pinentry_tmpfs_t (file (ioctl read write getattr lock append map open)))
    (allow gpg_pinentry_t xserver_t (unix_stream_socket (connectto)))
    (allow gpg_pinentry_t xserver_t (process (signal)))
    (allow gpg_pinentry_t xserver_tmp_t (file (ioctl read getattr lock)))
    (allow gpg_pinentry_t xserver_t (fd (use)))
    (allow gpg_pinentry_t xserver_t (shm (getattr read associate unix_read)))
    (allow gpg_pinentry_t xserver_tmpfs_t (file (ioctl read getattr lock open)))
    (allow gpg_pinentry_t gpg_pinentry_tmpfs_t (file (map)))
    (allow gpg_pinentry_t user_fonts_t (dir (ioctl read getattr lock open watch search)))
    (allow gpg_pinentry_t user_fonts_t (file (ioctl read getattr lock map open)))
    (allow gpg_pinentry_t user_fonts_cache_t (dir (ioctl read write getattr lock open add_name remove_name search)))
    (allow gpg_pinentry_t user_fonts_cache_t (dir (ioctl read write create getattr setattr lock unlink link rename open add_name remove_name reparent search rmdir)))
    (allow gpg_pinentry_t user_fonts_cache_t (dir (ioctl read write getattr lock open add_name remove_name search)))
    (allow gpg_pinentry_t user_fonts_cache_t (file (ioctl read write create getattr setattr lock append unlink link rename open)))
    (allow gpg_pinentry_t user_fonts_cache_t (file (ioctl read getattr lock map open)))
    (allow gpg_pinentry_t user_fonts_config_t (dir (ioctl read getattr lock open search)))
    (allow gpg_pinentry_t user_fonts_config_t (file (ioctl read getattr lock open)))
    (allow gpg_pinentry_t user_home_dir_t (dir (getattr open search)))
    (allow gpg_pinentry_t home_root_t (dir (getattr open search)))
    (allow gpg_pinentry_t home_root_t (lnk_file (read getattr)))
    (allow gpg_pinentry_t xdg_cache_t (dir (getattr open search)))
    (allow gpg_pinentry_t xdg_cache_t (dir (getattr open search)))
    (allow gpg_pinentry_t user_home_dir_t (dir (getattr open search)))
    (allow gpg_pinentry_t home_root_t (dir (getattr open search)))
    (allow gpg_pinentry_t home_root_t (lnk_file (read getattr)))
    (allow gpg_pinentry_t tmp_t (dir (getattr open search)))
    (allow gpg_pinentry_t xdm_tmp_t (dir (getattr open search)))
    (allow gpg_pinentry_t xdm_tmp_t (file (ioctl read getattr lock open)))
    (typetransition gpg_pinentry_t root_xdrawable_t x_drawable gpg_pinentry_t)
    (typetransition gpg_pinentry_t input_xevent_t x_event gpg_pinentry_input_xevent_t)
    (allow gpg_pinentry_t gpg_pinentry_input_xevent_t (x_event (send)))
    (allow gpg_pinentry_t gpg_pinentry_input_xevent_t (x_synthetic_event (send)))
    (allow gpg_pinentry_t gpg_pinentry_input_xevent_t (x_event (receive)))
    (allow gpg_pinentry_t gpg_pinentry_input_xevent_t (x_synthetic_event (receive)))
    (allow gpg_pinentry_t client_xevent_t (x_event (receive)))
    (allow gpg_pinentry_t client_xevent_t (x_synthetic_event (receive)))
    (allow gpg_pinentry_t xevent_t (x_event (receive)))
    (allow gpg_pinentry_t xevent_t (x_synthetic_event (receive)))
    (dontaudit gpg_pinentry_t input_xevent_type (x_event (send)))
    (booleanif (or (allow_write_xshm) (xserver_client_writes_xserver_tmpfs))
        (true
            (allow gpg_pinentry_t xserver_tmpfs_t (file (ioctl read write getattr lock append open)))
        )
    )
    (booleanif (allow_write_xshm)
        (true
            (allow gpg_pinentry_t xserver_t (shm (getattr read write associate unix_read unix_write lock)))
        )
    )
)
(optional gpg_optional_35
    (typeattributeset cil_gen_require tmp_t)
    (typeattributeset cil_gen_require mutt_home_t)
    (typeattributeset cil_gen_require mutt_tmp_t)
    (allow gpg_t mutt_home_t (dir (getattr open search)))
    (allow gpg_t mutt_home_t (file (ioctl read getattr lock open)))
    (allow gpg_t mutt_tmp_t (dir (getattr open search)))
    (allow gpg_t mutt_tmp_t (file (ioctl read getattr lock open)))
    (allow gpg_t mutt_tmp_t (dir (getattr open search)))
    (allow gpg_t mutt_tmp_t (file (ioctl read write getattr lock append)))
    (allow gpg_t tmp_t (dir (getattr open search)))
)
(filecon "HOME_DIR/\.gnupg(/.+)?" any (system_u object_r gpg_secret_t ((s0) (s0))))
(filecon "HOME_DIR/\.gnupg/log-socket" socket (system_u object_r gpg_agent_tmp_t ((s0) (s0))))
(filecon "HOME_DIR/\.gnupg/S\.gpg-agent.*" socket (system_u object_r gpg_agent_tmp_t ((s0) (s0))))
(filecon "HOME_DIR/\.gnupg/S\.scdaemon" socket (system_u object_r gpg_agent_tmp_t ((s0) (s0))))
(filecon "/usr/bin/gpg(2)?" file (system_u object_r gpg_exec_t ((s0) (s0))))
(filecon "/usr/bin/gpgsm" file (system_u object_r gpg_exec_t ((s0) (s0))))
(filecon "/usr/bin/gpg-agent" file (system_u object_r gpg_agent_exec_t ((s0) (s0))))
(filecon "/usr/bin/pinentry.*" file (system_u object_r gpg_pinentry_exec_t ((s0) (s0))))
(filecon "/usr/lib/gnupg/.*" file (system_u object_r gpg_exec_t ((s0) (s0))))
(filecon "/usr/lib/gnupg/gpgkeys.*" file (system_u object_r gpg_helper_exec_t ((s0) (s0))))
(filecon "/run/user/%{USERID}/gnupg(/.*)?" any (system_u object_r gpg_runtime_t ((s0) (s0))))
(filecon "/run/user/%{USERID}/gnupg/S\.gpg-agent.*" socket (system_u object_r gpg_agent_tmp_t ((s0) (s0))))
(filecon "/run/user/%{USERID}/gnupg/S\.scdaemon" socket (system_u object_r gpg_agent_tmp_t ((s0) (s0))))
