type vl53l1_daemon_main, domain;
type vl53l1_daemon_main_exec, exec_type, vendor_file_type, file_type;

init_daemon_domain(vl53l1_daemon_main)

allow vl53l1_daemon_main self:{
    netlink_generic_socket
    netlink_iscsi_socket
    netlink_kobject_uevent_socket
    netlink_socket
} create_socket_perms_no_ioctl;

# Allow vl53l1_daemon_main to read and write to sysfs_vl53l1
allow vl53l1_daemon_main sysfs_vl53l1:dir search;
allow vl53l1_daemon_main sysfs_vl53l1:file rw_file_perms;