allow vendor_pcs_app {
    vendor_camera_lyricconfigprovider_service
    vendor_camera_cameraidremapper_service
    edgetpu_app_service
}:service_manager find;

allow vendor_pcs_app hal_pixel_remote_camera_service:service_manager add;

binder_call(vendor_pcs_app, hal_pixel_remote_camera_service);
binder_call(vendor_pcs_app, hal_camera_default);

# Allow interacting with EdgeTpu.
allow vendor_pcs_app edgetpu_device:chr_file { getattr read write ioctl map };

# Allow PCS to open socket connections for HTTP streaming support.
allow vendor_pcs_app vendor_pcs_app:unpriv_socket_class_set create_socket_perms_no_ioctl;
allow vendor_pcs_app fwmarkd_socket:sock_file write;
allow vendor_pcs_app port:tcp_socket name_connect;
allow vendor_pcs_app port:udp_socket name_bind;
allow vendor_pcs_app netd:unix_stream_socket connectto;
allow vendor_pcs_app node:udp_socket node_bind;

allow netd vendor_pcs_app:unpriv_socket_class_set create_socket_perms_no_ioctl;
allow netd vendor_pcs_app:fd use;