type glgps, domain;
type glgps_exec, exec_type, file_type;

init_daemon_domain(glgps)

allow glgps shell_exec:file { rx_file_perms entrypoint };

#for text relocs & execution
allow glgps system_file:file { execute_no_trans execmod };
allow glgps gps_device:chr_file { getattr setattr };
allow glgps gps_data_file:dir { search write add_name remove_name };
allow glgps gps_data_file:file { create rw_file_perms };
allow glgps gps_data_file:fifo_file { unlink create setattr getattr rw_file_perms };

allow glgps node:udp_socket { node_bind name_bind };
allow glgps port:tcp_socket name_connect;
allow glgps self:tcp_socket { getopt write read };

allow glgps sysfs:file { setattr write };
allow glgps gps_device:chr_file { ioctl open read write };
allow glgps glgps:udp_socket { create bind };
allow glgps glgps:tcp_socket { create connect };
allow glgps fwmarkd_socket:sock_file write;
allow glgps dnsproxyd_socket:sock_file write;
allow glgps netd:unix_stream_socket connectto;