#
allow untrusted_app debugfs:dir { open read };
allow untrusted_app self:udp_socket ioctl;
allow untrusted_app sysfs:file { getattr open read };
allow untrusted_app system_data_file:file read;