# Inherit from core domain
typeattribute pawlet_device coredomain;

# Basic file access for your domain
allow pawlet_device pawlet_device_exec:file { execute read open map };
allow pawlet_device system_file:file { read getattr open };

# Binder communication if needed
binder_use(pawlet_device)
binder_call(pawlet_device, system_server)
binder_call(pawlet_device, servicemanager)

# Define a new property type for your device
type pawlet_prop, property_type;

# Allow your device to get and set its own properties
allow pawlet_device pawlet_prop:property_service { get set };