module veilor-systemd 1.0;

require {
    type systemd_modules_load_t;
    class capability2 perfmon;
    class capability sys_admin;
}

#============= systemd_modules_load_t ==============
allow systemd_modules_load_t self:capability sys_admin;
allow systemd_modules_load_t self:capability2 perfmon;