||SE Linux Module mdatp_service1.0@\\Obluetooth_socket map append bind connectcreatewrite relabelfromioctl name_bindsendtorecv_msgsend_msggetattrsetattracceptgetoptreadsetoptshutdownrecvfromlock relabeltolisten$netlink_audit_socket map nlmsg_relay append bind connectcreatewritenlmsg_tty_audit relabelfromioctl name_bindnlmsg_readpriv nlmsg_writesendtorecv_msgsend_msggetattrsetattracceptgetoptreadsetoptshutdownrecvfromlock relabeltolisten nlmsg_read tcp_socket map append bind connectcreatewrite relabelfrom acceptfrom connecttoioctl name_bind node_bindnewconnsendtorecv_msgsend_msggetattrsetattracceptgetopt name_connectreadsetoptshutdownrecvfromlock relabeltolisten msgq associatecreatewrite unix_readdestroygetattrsetattrread enqueue unix_write Frose_socket map append bind connectcreatewrite relabelfromioctl name_bindsendtorecv_msgsend_msggetattrsetattracceptgetoptreadsetoptshutdownrecvfromlock relabeltolisten2binder impersonatetransfercallset_context_mgrdir maprmdir appendcreateexecutewrite relabelfrom link unlinkioctl audit_access remove_namegetattrsetattradd_namereparentexecmodreadrenamesearchlock relabeltomountonopenquotaonswapon.peerrecv Ntipc_socket map append bind connectcreatewrite relabelfromioctl name_bindsendtorecv_msgsend_msggetattrsetattracceptgetoptreadsetoptshutdownrecvfromlock relabeltolisten blk_file map appendcreateexecutewrite relabelfrom link unlinkioctl audit_accessgetattrsetattrexecmodreadrenamelock relabeltomountonopenquotaonswapon chr_file map appendcreateexecutewrite relabelfrom link unlinkioctl audit_access entrypointgetattrsetattrexecmodreadrenamelock relabeltoexecute_no_transmountonopenquotaonswapon ipc associatecreatewrite unix_readdestroygetattrsetattrread unix_write Bipx_socket map append bind connectcreatewrite relabelfromioctl name_bindsendtorecv_msgsend_msggetattrsetattracceptgetoptreadsetoptshutdownrecvfromlock relabeltolisten lnk_file map appendcreateexecutewrite relabelfrom link unlinkioctl audit_accessgetattrsetattrexecmodreadrenamelock relabeltomountonopenquotaonswapon5netlink_connector_socket map append bind connectcreatewrite relabelfromioctl name_bindsendtorecv_msgsend_msggetattrsetattracceptgetoptreadsetoptshutdownrecvfromlock relabeltolistenprocessgetcapsetcapsigstopsigchld getrlimitshareexecheap setcurrent setfscreate setkeycreatesiginh dyntransition transitionfork getsession noatsecuresigkillsignull setrlimitgetattr getschedsetexec setsched getpgid setpgidptrace execstack rlimitinh setsockcreatesignalexecmem Hatmsvc_socket map append bind connectcreatewrite relabelfromioctl name_bindsendtorecv_msgsend_msggetattrsetattracceptgetoptreadsetoptshutdownrecvfromlock relabeltolisten /capability2 mac_override mac_admin audit_readsyslog block_suspend wake_alarmfduse Wnfc_socket map append bind connectcreatewrite relabelfromioctl name_bindsendtorecv_msgsend_msggetattrsetattracceptgetoptreadsetoptshutdownrecvfromlock relabeltolisten*packet forward_outflow_outsendrecv forward_in relabeltoflow_insocket map append bind connectcreatewrite relabelfromioctl name_bindsendtorecv_msgsend_msggetattrsetattracceptgetoptreadsetoptshutdownrecvfromlock relabeltolisten = cap_userns setfcap setpcapfownersys_bootsys_tty_confignet_raw sys_admin sys_chroot sys_module sys_rawio dac_override ipc_ownerkilldac_read_search sys_pacct net_broadcast net_bind_servicesys_nicesys_timefsetidmknodsetgidsetuidlease net_admin audit_write linux_immutable sys_ptrace audit_controlipc_lock sys_resourcechown fifo_file map appendcreateexecutewrite relabelfrom link unlinkioctl audit_accessgetattrsetattrexecmodreadrenamelock relabeltomountonopenquotaonswaponfile map appendcreateexecutewrite relabelfrom link unlinkioctl audit_access entrypointgetattrsetattrexecmodreadrenamelock relabeltoexecute_no_transmountonopenquotaonswapon node rawip_recvtcp_recvudp_recv rawip_sendtcp_sendudp_send dccp_recv dccp_send enforce_dest sendto recvfrom\process2nosuid_transitionnnp_transition Gdecnet_socket map append bind connectcreatewrite relabelfromioctl name_bindsendtorecv_msgsend_msggetattrsetattracceptgetoptreadsetoptshutdownrecvfromlock relabeltolisten Jirda_socket map append bind connectcreatewrite relabelfromioctl name_bindsendtorecv_msgsend_msggetattrsetattracceptgetoptreadsetoptshutdownrecvfromlock relabeltolisten Sphonet_socket map append bind connectcreatewrite relabelfromioctl name_bindsendtorecv_msgsend_msggetattrsetattracceptgetoptreadsetoptshutdownrecvfromlock relabeltolisten!netlink_nflog_socket map append bind connectcreatewrite relabelfromioctl name_bindsendtorecv_msgsend_msggetattrsetattracceptgetoptreadsetoptshutdownrecvfromlock relabeltolisten Irds_socket map append bind connectcreatewrite relabelfromioctl name_bindsendtorecv_msgsend_msggetattrsetattracceptgetoptreadsetoptshutdownrecvfromlock relabeltolisten ?sctp_socket map append bind connectcreatewrite relabelfromioctl name_bind node_bindsendtorecv_msgsend_msggetattrsetattracceptgetoptreadsetoptshutdownrecvfromlock relabeltolisten+keycreatewriteviewlinksetattrreadsearch6netlink_netfilter_socket map append bind connectcreatewrite relabelfromioctl name_bindsendtorecv_msgsend_msggetattrsetattracceptgetoptreadsetoptshutdownrecvfromlock relabeltolisten3netlink_iscsi_socket map append bind connectcreatewrite relabelfromioctl name_bindsendtorecv_msgsend_msggetattrsetattracceptgetoptreadsetoptshutdownrecvfromlock relabeltolisten netlink_tcpdiag_socket map append bind connectcreatewrite relabelfromioctl name_bind nlmsg_writesendtorecv_msgsend_msggetattrsetattracceptgetoptreadsetoptshutdownrecvfromlock relabeltolisten nlmsg_readunix_stream_socket map append bind connectcreatewrite relabelfrom acceptfrom connecttoioctl name_bindnewconnsendtorecv_msgsend_msggetattrsetattracceptgetoptreadsetoptshutdownrecvfromlock relabeltolisten0kernel_servicecreate_files_asuse_as_overridenetlink_route_socket map append bind connectcreatewrite relabelfromioctl name_bind nlmsg_writesendtorecv_msgsend_msggetattrsetattracceptgetoptreadsetoptshutdownrecvfromlock relabeltolisten nlmsg_read Kpppox_socket map append bind connectcreatewrite relabelfromioctl name_bindsendtorecv_msgsend_msggetattrsetattracceptgetoptreadsetoptshutdownrecvfromlock relabeltolistenTieee802154_socket map append bind connectcreatewrite relabelfromioctl name_bindsendtorecv_msgsend_msggetattrsetattracceptgetoptreadsetoptshutdownrecvfromlock relabeltolisten<infiniband_endport manage_subnet9netlink_rdma_socket map append bind connectcreatewrite relabelfromioctl name_bindsendtorecv_msgsend_msggetattrsetattracceptgetoptreadsetoptshutdownrecvfromlock relabeltolisten Cnetrom_socket map append bind connectcreatewrite relabelfromioctl name_bindsendtorecv_msgsend_msggetattrsetattracceptgetoptreadsetoptshutdownrecvfromlock relabeltolisten shm associatecreatewrite unix_readdestroygetattrsetattrread lock unix_write Lllc_socket map append bind connectcreatewrite relabelfromioctl name_bindsendtorecv_msgsend_msggetattrsetattracceptgetoptreadsetoptshutdownrecvfromlock relabeltolisten#netlink_selinux_socket map append bind connectcreatewrite relabelfromioctl name_bindsendtorecv_msgsend_msggetattrsetattracceptgetoptreadsetoptshutdownrecvfromlock relabeltolisten  capability setfcap setpcapfownersys_bootsys_tty_confignet_raw sys_admin sys_chroot sys_module sys_rawio dac_override ipc_ownerkilldac_read_search sys_pacct net_broadcast net_bind_servicesys_nicesys_timefsetidmknodsetgidsetuidlease net_admin audit_write linux_immutable sys_ptrace audit_controlipc_lock sys_resourcechown%netlink_ip6fw_socket map append bind connectcreatewrite relabelfromioctl name_bind nlmsg_writesendtorecv_msgsend_msggetattrsetattracceptgetoptreadsetoptshutdownrecvfromlock relabeltolisten nlmsg_read >cap2_userns mac_override mac_admin audit_readsyslog block_suspend wake_alarm ,dccp_socket map append bind connectcreatewrite relabelfromioctl name_bind node_bindsendtorecv_msgsend_msggetattrsetattracceptgetopt name_connectreadsetoptshutdownrecvfromlock relabeltolisten Piucv_socket map append bind connectcreatewrite relabelfromioctl name_bindsendtorecv_msgsend_msggetattrsetattracceptgetoptreadsetoptshutdownrecvfromlock relabeltolistennetlink_firewall_socket map append bind connectcreatewrite relabelfromioctl name_bind nlmsg_writesendtorecv_msgsend_msggetattrsetattracceptgetoptreadsetoptshutdownrecvfromlock relabeltolisten nlmsg_read sock_file map appendcreateexecutewrite relabelfrom link unlinkioctl audit_accessgetattrsetattrexecmodreadrenamelock relabeltomountonopenquotaonswaponunix_dgram_socket map append bind connectcreatewrite relabelfromioctl name_bindsendtorecv_msgsend_msggetattrsetattracceptgetoptreadsetoptshutdownrecvfromlock relabeltolisten Ykcm_socket map append bind connectcreatewrite relabelfromioctl name_bindsendtorecv_msgsend_msggetattrsetattracceptgetoptreadsetoptshutdownrecvfromlock relabeltolisten(netlink_kobject_uevent_socket map append bind connectcreatewrite relabelfromioctl name_bindsendtorecv_msgsend_msggetattrsetattracceptgetoptreadsetoptshutdownrecvfromlock relabeltolisten Xvsock_socket map append bind connectcreatewrite relabelfromioctl name_bindsendtorecv_msgsend_msggetattrsetattracceptgetoptreadsetoptshutdownrecvfromlock relabeltolisten  filesystem associate quotaget relabelfrom transitiongetattr quotamodmountremountunmount relabelto"netlink_xfrm_socket map append bind connectcreatewrite relabelfromioctl name_bind nlmsg_writesendtorecv_msgsend_msggetattrsetattracceptgetoptreadsetoptshutdownrecvfromlock relabeltolisten nlmsg_read Qrxrpc_socket map append bind connectcreatewrite relabelfromioctl name_bindsendtorecv_msgsend_msggetattrsetattracceptgetoptreadsetoptshutdownrecvfromlock relabeltolisten Mcan_socket map append bind connectcreatewrite relabelfromioctl name_bindsendtorecv_msgsend_msggetattrsetattracceptgetoptreadsetoptshutdownrecvfromlock relabeltolisten&netlink_dnrt_socket map append bind connectcreatewrite relabelfromioctl name_bindsendtorecv_msgsend_msggetattrsetattracceptgetoptreadsetoptshutdownrecvfromlock relabeltolisten7netlink_generic_socket map append bind connectcreatewrite relabelfromioctl name_bindsendtorecv_msgsend_msggetattrsetattracceptgetoptreadsetoptshutdownrecvfromlock relabeltolisten Datmpvc_socket map append bind connectcreatewrite relabelfromioctl name_bindsendtorecv_msgsend_msggetattrsetattracceptgetoptreadsetoptshutdownrecvfromlock relabeltolisten Aax25_socket map append bind connectcreatewrite relabelfromioctl name_bindsendtorecv_msgsend_msggetattrsetattracceptgetoptreadsetoptshutdownrecvfromlock relabeltolisten8netlink_scsitransport_socket map append bind connectcreatewrite relabelfromioctl name_bindsendtorecv_msgsend_msggetattrsetattracceptgetoptreadsetoptshutdownrecvfromlock relabeltolisten Ex25_socket map append bind connectcreatewrite relabelfromioctl name_bindsendtorecv_msgsend_msggetattrsetattracceptgetoptreadsetoptshutdownrecvfromlock relabeltolisten Risdn_socket map append bind connectcreatewrite relabelfromioctl name_bindsendtorecv_msgsend_msggetattrsetattracceptgetoptreadsetoptshutdownrecvfromlock relabeltolisten key_socket map append bind connectcreatewrite relabelfromioctl name_bindsendtorecv_msgsend_msggetattrsetattracceptgetoptreadsetoptshutdownrecvfromlock relabeltolisten netif rawip_recvtcp_recvudp_recv rawip_send egress ingresstcp_sendudp_send dccp_recv dccp_send packet_socket map append bind connectcreatewrite relabelfromioctl name_bindsendtorecv_msgsend_msggetattrsetattracceptgetoptreadsetoptshutdownrecvfromlock relabeltolisten -memprotect mmap_zeromsgsendreceiveZqipcrtr_socket map append bind connectcreatewrite relabelfromioctl name_bindsendtorecv_msgsend_msggetattrsetattracceptgetoptreadsetoptshutdownrecvfromlock relabeltolisten 1tun_socket map append bind connectcreatewrite relabelfromioctl name_bindsendtorecv_msgsend_msg attach_queuegetattrsetattracceptgetoptreadsetoptshutdownrecvfromlock relabeltolisten udp_socket map append bind connectcreatewrite relabelfromioctl name_bind node_bindsendtorecv_msgsend_msggetattrsetattracceptgetoptreadsetoptshutdownrecvfromlock relabeltolisten)appletalk_socket map append bind connectcreatewrite relabelfromioctl name_bindsendtorecv_msgsend_msggetattrsetattracceptgetoptreadsetoptshutdownrecvfromlock relabeltolisten:netlink_crypto_socket map append bind connectcreatewrite relabelfromioctl name_bindsendtorecv_msgsend_msggetattrsetattracceptgetoptreadsetoptshutdownrecvfromlock relabeltolisten rawip_socket map append bind connectcreatewrite relabelfromioctl name_bind node_bindsendtorecv_msgsend_msggetattrsetattracceptgetoptreadsetoptshutdownrecvfromlock relabeltolisten 'association setcontextsendtorecvfrompolmatch Ucaif_socket map append bind connectcreatewrite relabelfromioctl name_bindsendtorecv_msgsend_msggetattrsetattracceptgetoptreadsetoptshutdownrecvfromlock relabeltolistennetlink_socket map append bind connectcreatewrite relabelfromioctl name_bindsendtorecv_msgsend_msggetattrsetattracceptgetoptreadsetoptshutdownrecvfromlock relabeltolisten;infiniband_pkeyaccess sem associatecreatewrite unix_readdestroygetattrsetattrread unix_writesystem stop statusmodule_requestreboot disable enable module_loadipc_info syslog_readhaltreload startsyslog_console syslog_mod Valg_socket map append bind connectcreatewrite relabelfromioctl name_bindsendtorecv_msgsend_msggetattrsetattracceptgetoptreadsetoptshutdownrecvfromlock relabeltolisten @icmp_socket map append bind connectcreatewrite relabelfromioctl name_bind node_bindsendtorecv_msgsend_msggetattrsetattracceptgetoptreadsetoptshutdownrecvfromlock relabeltolisten4netlink_fib_lookup_socket map append bind connectcreatewrite relabelfromioctl name_bindsendtorecv_msgsend_msggetattrsetattracceptgetoptreadsetoptshutdownrecvfromlock relabeltolisten securitycompute_member compute_usercompute_create setenforce check_context setcheckreqprot validate_transcompute_relabel setbool load_policy read_policy setsecparam compute_av [smc_socket map append bind connectcreatewrite relabelfromioctl name_bindsendtorecv_msgsend_msggetattrsetattracceptgetoptreadsetoptshutdownrecvfromlock relabeltolistenobject_r@@@@system_r@@@@@@unconfined_service_ts0@c0 c10ec100c1000c1010c1020oc110yc120c130c140c150c160c170c180c190c20c200c210c220c230c240c250c260c270c280#c290c30-c3007c310Ac320Kc330Uc340_c350ic360sc370}c380c390)c40c400c410c420c430c440c450c460c470c480c4903c50c500c510 c520c530c540'c5501c560;c570Ec580Oc590=c60Yc600cc610mc620wc630c640c650c660c670c680c690Gc70c700c710c720c730c740c750c760c770 c780c790Qc80!c800+c8105c820?c830Ic840Sc850]c860gc870qc880{c890[c90c900c910c920c930c940c950c960c970c980c990c1c1001fc101c1011c1021 c11pc111zc121c131c141c151c161c171c181c191c201c21c211c221c231c241c251c261c271c281$c291.c301 c318c311Bc321Lc331Vc341`c351jc361tc371~c381c391c401*c41c411c421c431c441c451c461c471c481c491c5014c51c511 c521c531c541(c5512c561<c571Fc581Pc591Zc601>c61dc611nc621xc631c641c651c661c671c681c691c701Hc71c711c721c731c741c751c761c771c781c791"c801Rc81,c8116c821@c831Jc841Tc851^c861hc871rc881|c891c901\c91c911c921c931c941c951c961c971c981c991c1002c1012gc102c1022qc112 c12{c122c132c142c152c162c172c182c192c2c202c212c22c222c232c242c252c262c272c282%c292/c3029c312!c32Cc322Mc332Wc342ac352kc362uc372c382c392c402c412+c42c422c432c442c452c462c472c482c492c502c5125c52 c522c532c542)c5523c562=c572Gc582Qc592[c602ec612?c62oc622yc632c642c652c662c672c682c692c702c712Ic72c722c732c742c752c762c772c782c792#c802-c812Sc827c822Ac832Kc842Uc852_c862ic872sc882}c892c902c912]c92c922c932c942c952c962c972c982c992c1003c1013c1023hc103rc113|c123c13c133c143c153c163c173c183c193c203c213c223c23c233c243c253c263c273c283&c293c30c303:c313Dc323"c33Nc333Xc343bc353lc363vc373c383c393c403c413c423,c43c433c443c453c463c473c483c493c503c513 c5236c53c533 c543*c5534c563>c573Hc583Rc593\c603fc613pc623@c63zc633c643c653c663c673c683c693c703c713c723Jc73c733c743c753c763c773c783c793$c803.c8138c823Tc83Bc833Lc843Vc853`c863jc873tc883~c893c903c913c923^c93c933c943c953c963c973c983c993c1004c1014ic104sc114}c124c134c14c144c154c164c174c184c194c204c214c224c234c24c244c254 c264c274c284'c2941c304;c314Ec324Oc334#c34Yc344cc354mc364wc374c384c394c4c404c414c424c434-c44c444c454c464c474c484c494c504c514 c524c5347c54!c544+c5545c564?c574Ic584Sc594]c604gc614qc624{c634Ac64c644c654c664c674c684c694c704c714c724c734Kc74c744c754c764c774c784c794%c804/c8149c824Cc834Uc84Mc844Wc854ac864kc874uc884c894c904c914c924c934_c94c944c954c964c974c984c994c1005c1015jc105tc115~c125c135c145c15c155c165c175c185c195c205c215c225c235c245c25c255 c265c275c285(c2952c305<c315Fc325Pc335Zc345$c35dc355nc365xc375c385c395c405c415c425c435c445.c45c455c465c475c485c495c5c505c515c525c535"c5458c55,c5556c565@c575Jc585Tc595^c605hc615rc625|c635c645Bc65c655c665c675c685c695c705c715c725c735c745Lc75c755c765c775c785c795&c8050c815:c825Dc835Nc845Vc85Xc855bc865lc875vc885c895c905c915c925c935c945`c95c955c965c975c985c995c1006c1016kc106uc116c126c136c146c156c16c166c176c186c196c206c216c226c236c246c256c26 c266c276c286)c2963c306=c316Gc326Qc336[c346ec356%c36oc366yc376c386c396c406c416c426c436c446c456/c46c466c476c486c496c506c516c526c536#c546-c5569c567c566Ac576Kc586Uc596c6_c606ic616sc626}c636c646c656Cc66c666c676c686c696c706c716c726c736c746c756Mc76c766 c776c786c796'c8061c816;c826Ec836Oc846Yc856Wc86cc866mc876wc886c896c906c916c926c936c946c956ac96c966c976c986c996c1007c1017lc107vc117c127c137c147c157c167c17c177c187c197c207c217c227c237c247c257 c267c27c277 c287*c2974c307>c317Hc327Rc337\c347fc357pc367&c37zc377c387c397c407c417c427c437c447c457c4670c47c477c487c497c507c517c527c537$c547.c5578c567:c57Bc577Lc587Vc597`c607jc617tc627~c637c647c657c667Dc67c677c687c697c7c707c717c727c737c747c757c767Nc77 c777c787c797(c8072c817<c827Fc837Pc847Zc857dc867Xc87nc877xc887c897c907c917c927c937c947c957c967bc97c977c987c997c1008c1018mc108wc118c128c138c148c158c168c178c18c188c198c208c218c228c238c248c258 c268c278c28!c288+c2985c308?c318Ic328Sc338]c348gc358qc368{c378'c38c388c398c408c418c428c438c448c458c468c4781c48c488c498c508c518c528c538%c548/c5589c568Cc578;c58Mc588Wc598ac608kc618uc628c638c648c658c668c678Ec68c688c698c708c718c728c738c748c758c768 c778Oc78c788c798 c8)c8083c818=c828Gc838Qc848[c858ec868oc878Yc88yc888c898c908c918c928c938c948c958c968c978cc98c988c998c1009c1019nc109xc119c129c139c149c159c169c179c189c19c199c209c219c229c239c249c259c269c279"c289c29,c2996c309@c319Jc329Tc339^c349hc359rc369|c379c389(c39c399c409c419c429c439c449c459c469c479c4892c49c499c509c519c529c539&c5490c559:c569Dc579Nc589<c59Xc599bc609lc619vc629c639c649c659c669c679c689Fc69c699c709c719c729c739c749c759c769 c779c789Pc79 c799*c8094c819>c829Hc839Rc849\c859fc869pc879zc889Zc89c899 c9c909c919c929c939c949c959c969c979c989dc99c999@@@@@@@@@@@@@@@@@@@@@\@@@@@@?@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@?@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@?@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@\bluetooth_socketnetlink_audit_socket tcp_socketmsgq rose_socketbinderdirpeer tipc_socketblk_filechr_fileipc ipx_socketlnk_filenetlink_connector_socketprocess atmsvc_socket capability2fd nfc_socketpacketsocket cap_userns fifo_filefilenodeprocess2 decnet_socket irda_socket phonet_socketnetlink_nflog_socket rds_socket sctp_socketkeynetlink_netfilter_socketnetlink_iscsi_socketnetlink_tcpdiag_socketunix_stream_socketkernel_servicenetlink_route_socket pppox_socketieee802154_socketinfiniband_endportnetlink_rdma_socket netrom_socketshm llc_socketnetlink_selinux_socket capabilitynetlink_ip6fw_socket cap2_userns dccp_socket iucv_socketnetlink_firewall_socket sock_fileunix_dgram_socket kcm_socketnetlink_kobject_uevent_socket vsock_socket filesystemnetlink_xfrm_socket rxrpc_socket can_socketnetlink_dnrt_socketnetlink_generic_socket atmpvc_socket ax25_socketnetlink_scsitransport_socket x25_socket isdn_socket key_socketnetif packet_socket memprotectmsgqipcrtr_socket tun_socket udp_socketappletalk_socketnetlink_crypto_socket rawip_socket association caif_socketnetlink_socketinfiniband_pkeysemsystem alg_socket icmp_socketnetlink_fib_lookup_socketsecurity smc_socketobject_rsystem_runconfined_service_ts0c0c10c100c1000c1010c1020c110c120c130c140c150c160c170c180c190c20c200c210c220c230c240c250c260c270c280c290c30c300c310c320c330c340c350c360c370c380c390c40c400c410c420c430c440c450c460c470c480c490c50c500c510c520c530c540c550c560c570c580c590c60c600c610c620c630c640c650c660c670c680c690c70c700c710c720c730c740c750c760c770c780c790c80c800c810c820c830c840c850c860c870c880c890c90c900c910c920c930c940c950c960c970c980c990c1c1001c101c1011c1021c11c111c121c131c141c151c161c171c181c191c201c21c211c221c231c241c251c261c271c281c291c301c31c311c321c331c341c351c361c371c381c391c401c41c411c421c431c441c451c461c471c481c491c501c51c511c521c531c541c551c561c571c581c591c601c61c611c621c631c641c651c661c671c681c691c701c71c711c721c731c741c751c761c771c781c791c801c81c811c821c831c841c851c861c871c881c891c901c91c911c921c931c941c951c961c971c981c991c1002c1012c102c1022c112c12c122c132c142c152c162c172c182c192c2c202c212c22c222c232c242c252c262c272c282c292c302c312c32c322c332c342c352c362c372c382c392c402c412c42c422c432c442c452c462c472c482c492c502c512c52c522c532c542c552c562c572c582c592c602c612c62c622c632c642c652c662c672c682c692c702c712c72c722c732c742c752c762c772c782c792c802c812c82c822c832c842c852c862c872c882c892c902c912c92c922c932c942c952c962c972c982c992c1003c1013c1023c103c113c123c13c133c143c153c163c173c183c193c203c213c223c23c233c243c253c263c273c283c293c3c303c313c323c33c333c343c353c363c373c383c393c403c413c423c43c433c443c453c463c473c483c493c503c513c523c53c533c543c553c563c573c583c593c603c613c623c63c633c643c653c663c673c683c693c703c713c723c73c733c743c753c763c773c783c793c803c813c823c83c833c843c853c863c873c883c893c903c913c923c93c933c943c953c963c973c983c993c1004c1014c104c114c124c134c14c144c154c164c174c184c194c204c214c224c234c24c244c254c264c274c284c294c304c314c324c334c34c344c354c364c374c384c394c4c404c414c424c434c44c444c454c464c474c484c494c504c514c524c534c54c544c554c564c574c584c594c604c614c624c634c64c644c654c664c674c684c694c704c714c724c734c74c744c754c764c774c784c794c804c814c824c834c84c844c854c864c874c884c894c904c914c924c934c94c944c954c964c974c984c994c1005c1015c105c115c125c135c145c15c155c165c175c185c195c205c215c225c235c245c25c255c265c275c285c295c305c315c325c335c345c35c355c365c375c385c395c405c415c425c435c445c45c455c465c475c485c495c5c505c515c525c535c545c55c555c565c575c585c595c605c615c625c635c645c65c655c665c675c685c695c705c715c725c735c745c75c755c765c775c785c795c805c815c825c835c845c85c855c865c875c885c895c905c915c925c935c945c95c955c965c975c985c995c1006c1016c106c116c126c136c146c156c16c166c176c186c196c206c216c226c236c246c256c26c266c276c286c296c306c316c326c336c346c356c36c366c376c386c396c406c416c426c436c446c456c46c466c476c486c496c506c516c526c536c546c556c56c566c576c586c596c6c606c616c626c636c646c656c66c666c676c686c696c706c716c726c736c746c756c76c766c776c786c796c806c816c826c836c846c856c86c866c876c886c896c906c916c926c936c946c956c96c966c976c986c996c1007c1017c107c117c127c137c147c157c167c17c177c187c197c207c217c227c237c247c257c267c27c277c287c297c307c317c327c337c347c357c367c37c377c387c397c407c417c427c437c447c457c467c47c477c487c497c507c517c527c537c547c557c567c57c577c587c597c607c617c627c637c647c657c667c67c677c687c697c7c707c717c727c737c747c757c767c77c777c787c797c807c817c827c837c847c857c867c87c877c887c897c907c917c927c937c947c957c967c97c977c987c997c1008c1018c108c118c128c138c148c158c168c178c18c188c198c208c218c228c238c248c258c268c278c28c288c298c308c318c328c338c348c358c368c378c38c388c398c408c418c428c438c448c458c468c478c48c488c498c508c518c528c538c548c558c568c578c58c588c598c608c618c628c638c648c658c668c678c68c688c698c708c718c728c738c748c758c768c778c78c788c798c8c808c818c828c838c848c858c868c878c88c888c898c908c918c928c938c948c958c968c978c98c988c998c1009c1019c109c119c129c139c149c159c169c179c189c19c199c209c219c229c239c249c259c269c279c289c29c299c309c319c329c339c349c359c369c379c389c39c399c409c419c429c439c449c459c469c479c489c49c499c509c519c529c539c549c559c569c579c589c59c599c609c619c629c639c649c659c669c679c689c69c699c709c719c729c739c749c759c769c779c789c79c799c809c819c829c839c849c859c869c879c889c89c899c9c909c919c929c939c949c959c969c979c989c99c999|# # Directory patterns (dir) # # Parameters: # 1. domain type # 2. container (directory) type # 3. directory type # # # Regular file patterns (file) # # Parameters: # 1. domain type # 2. container (directory) type # 3. file type # # # Symbolic link patterns (lnk_file) # # Parameters: # 1. domain type # 2. container (directory) type # 3. file type # # # (Un)named Pipes/FIFO patterns (fifo_file) # # Parameters: # 1. domain type # 2. container (directory) type # 3. file type # # # (Un)named sockets patterns (sock_file) # # Parameters: # 1. domain type # 2. container (directory) type # 3. file type # # # Block device node patterns (blk_file) # # Parameters: # 1. domain type # 2. container (directory) type # 3. file type # # # Character device node patterns (chr_file) # # Parameters: # 1. domain type # 2. container (directory) type # 3. file type # # # File type_transition patterns # # Parameters: # 1. domain type # 2. container (directory) type # 3. new object type # 4. object class(es) # [optional] 5. filename (c style strcmp ready) # # do not grant $2:dir remove_name # # Admin pattern for file_type # # Parameters: # 1. domain type # 2. source object type # # # unix domain socket patterns # # Parameters: # 1. source domain type # 2. container (directory) type # 3. socket type # 4. target domain type # ######################################## # # Support macros for sets of object classes and permissions # # This file should only have object class and permission set macros - they # can only reference object classes and/or permissions. ######################################## # # Macros for sets of classes # # # All directory and file classes # # # All non-directory file classes. # # # Non-device file classes. # # # Device file classes. # # # All socket classes. # # # Datagram socket classes. # # # Stream socket classes. # # # Unprivileged socket classes (exclude rawip, netlink, packet). # ######################################## # # Macros for sets of permissions # # # Permissions to mount and unmount file systems. # # # Permissions for using sockets. # # # Permissions for creating and using sockets. # # # Permissions for using stream sockets. # # # Permissions for creating and using stream sockets. # # # Permissions for creating and using sockets. # # # Permissions for creating and using sockets. # # # Permissions for creating and using netlink sockets. # # # Permissions for using netlink sockets for operations that modify state. # # # Permissions for using netlink sockets for operations that observe state. # # # Permissions for sending all signals. # # # Permissions for sending and receiving network packets. # # # Permissions for using System V IPC # # # Directory (dir) # # # Regular file (file) # # # Symbolic link (lnk_file) # # # (Un)named Pipes/FIFOs (fifo_file) # # # (Un)named Sockets (sock_file) # # # Block device nodes (blk_file) # # # Character device nodes (chr_file) # ######################################## # # Special permission sets # # # Use (read and write) terminals # # # Sockets # # # Keys # # # Common domain transition pattern perms # # Parameters: # 1. source domain # 2. entry point file type # 3. target domain # # compatibility: Deprecated (20161201) # # Specified domain transition patterns # # Parameters: # 1. source domain # 2. entry point file type # 3. target domain # # # Automatic domain transition patterns # # Parameters: # 1. source domain # 2. entry point file type # 3. target domain # # compatibility: Deprecated (20161201) # # Automatic domain transition patterns # with feedback permissions # # Parameters: # 1. source domain # 2. entry point file type # 3. target domain # # # Dynamic transition pattern # # Parameters: # 1. source domain # 2. target domain # # # Read foreign domain proc data # # Parameters: # 1. source domain # 2. target domain # # # Process administration pattern # # Parameters: # 1. source domain # 2. target domain # ######################################## # # Helper macros # # # shiftn(num,list...) # # shift the list num times # # # ifndef(expr,true_block,false_block) # # m4 does not have this. # # # __endline__ # # dummy macro to insert a newline. used for # errprint, so the close parentheses can be # indented correctly. # ######################################## # # refpolwarn(message) # # print a warning message # ######################################## # # refpolerr(message) # # print an error message. # ######################################## # # gen_user(username, prefix, role_set, mls_defaultlevel, mls_range, [mcs_categories]) # ######################################## # # gen_context(context,mls_sensitivity,[mcs_categories]) # ######################################## # # can_exec(domain,executable) # ######################################## # # gen_bool(name,default_value) # ######################################## # # gen_cats(N) # # declares categores c0 to c(N-1) # ######################################## # # gen_sens(N) # # declares sensitivites s0 to s(N-1) with dominance # in increasing numeric order with s0 lowest, s(N-1) highest # ######################################## # # gen_levels(N,M) # # levels from s0 to (N-1) with categories c0 to (M-1) # ######################################## # # Basic level names for system low and high # ######################################## # # Macros for switching between source policy # and loadable policy module support # ############################## # # For adding the module statement # ############################## # # For use in interfaces, to optionally insert a require block # # helper function, since m4 wont expand macros # if a line is a comment (#): ############################## # # In the future interfaces should be in loadable modules # # template(name,rules) # ############################## # # In the future interfaces should be in loadable modules # # interface(name,rules) # ############################## # # Optional policy handling # ############################## # # Determine if we should use the default # tunable value as specified by the policy # or if the override value should be used # ############################## # # Extract booleans out of an expression. # This needs to be reworked so expressions # with parentheses can work. ############################## # # Tunable declaration # ############################## # # Tunable policy handling # /opt/microsoft/mdatp/sbin/wdavdaemon -- system_u:object_r:bin_t:s0 /opt/microsoft/mdatp/sbin/wdavdaemonclient -- system_u:object_r:bin_t:s0 /opt/microsoft/mdatp/sbin/telemetryd_v2 -- system_u:object_r:bin_t:s0 /opt/microsoft/mdatp/sbin/.*\.so -- system_u:object_r:lib_t:s0 /opt/microsoft/mdatp/conf(/.*)?\.(sh|py) -- system_u:object_r:bin_t:s0 /opt/microsoft/mdatp/lib(/.*)? -- system_u:object_r:lib_t:s0 /usr/lib/systemd/system/mdatp.service -- system_u:object_r:systemd_unit_file_t:s0 /lib/systemd/system/mdatp.service -- system_u:object_r:systemd_unit_file_t:s0