type wephone_exec, exec_type, file_type;

allow { appdomain shell } wephone:file { getattr read open execute execute_no_trans };