type vsoc_input_service, domain;
type vsoc_input_service_exec, exec_type, vendor_file_type, file_type;
vendor_internal_prop(vendor_vsock_keyboard_port)
vendor_internal_prop(vendor_vsock_touch_port)

init_daemon_domain(vsoc_input_service)

# I/O with /dev/uinput
allow vsoc_input_service uhid_device:chr_file rw_file_perms;

net_domain(vsoc_input_service)

get_prop(vsoc_input_service, vendor_cuttlefish_config_server_port_prop)

allow vsoc_input_service self:{ socket vsock_socket } create_socket_perms_no_ioctl;

allow vsoc_input_service self:capability net_admin;