(roleattribute ntpd_roles)
(roletype ntpd_roles ntpd_t)
(type ntp_conf_t)
(roletype object_r ntp_conf_t)
(type ntp_drift_t)
(roletype object_r ntp_drift_t)
(type ntpd_t)
(roletype object_r ntpd_t)
(type ntpd_exec_t)
(roletype object_r ntpd_exec_t)
(type ntpd_initrc_exec_t)
(roletype object_r ntpd_initrc_exec_t)
(type ntpd_key_t)
(roletype object_r ntpd_key_t)
(type ntpd_lock_t)
(roletype object_r ntpd_lock_t)
(type ntpd_log_t)
(roletype object_r ntpd_log_t)
(type ntpd_pid_t)
(roletype object_r ntpd_pid_t)
(type ntpd_tmp_t)
(roletype object_r ntpd_tmp_t)
(type ntpd_tmpfs_t)
(roletype object_r ntpd_tmpfs_t)
(type ntpd_unit_t)
(roletype object_r ntpd_unit_t)
(type ntpdate_exec_t)
(roletype object_r ntpdate_exec_t)
(roleattributeset cil_gen_require system_r)
(roletype system_r ntpd_t)
(typeattributeset cil_gen_require configfile)
(typeattributeset configfile (ntp_conf_t ))
(typeattributeset cil_gen_require file_type)
(typeattributeset file_type (ntp_conf_t ntp_drift_t ntpd_exec_t ntpd_initrc_exec_t ntpd_key_t ntpd_lock_t ntpd_log_t ntpd_pid_t ntpd_tmp_t ntpd_tmpfs_t ntpd_unit_t ntpdate_exec_t ))
(typeattributeset cil_gen_require non_security_file_type)
(typeattributeset non_security_file_type (ntp_conf_t ntp_drift_t ntpd_exec_t ntpd_initrc_exec_t ntpd_key_t ntpd_lock_t ntpd_log_t ntpd_pid_t ntpd_tmp_t ntpd_tmpfs_t ntpd_unit_t ntpdate_exec_t ))
(typeattributeset cil_gen_require non_auth_file_type)
(typeattributeset non_auth_file_type (ntp_conf_t ntp_drift_t ntpd_exec_t ntpd_initrc_exec_t ntpd_key_t ntpd_lock_t ntpd_log_t ntpd_pid_t ntpd_tmp_t ntpd_tmpfs_t ntpd_unit_t ntpdate_exec_t ))
(typeattributeset cil_gen_require init_mountpoint_type)
(typeattributeset init_mountpoint_type (ntp_drift_t ntpd_pid_t ))
(typeattributeset cil_gen_require initrc_t)
(typeattributeset cil_gen_require daemon)
(typeattributeset daemon (ntpd_t ))
(typeattributeset cil_gen_require domain)
(typeattributeset domain (ntpd_t ))
(typeattributeset cil_gen_require init_t)
(typeattributeset cil_gen_require sysfs_t)
(typeattributeset cil_gen_require entry_type)
(typeattributeset entry_type (ntpd_exec_t ntpd_initrc_exec_t ntpdate_exec_t ))
(typeattributeset cil_gen_require exec_type)
(typeattributeset exec_type (ntpd_exec_t ntpd_initrc_exec_t ntpdate_exec_t ))
(typeattributeset cil_gen_require init_domain_type)
(typeattributeset init_domain_type (ntpd_t ))
(typeattributeset cil_gen_require init_script_file_type)
(typeattributeset init_script_file_type (ntpd_initrc_exec_t ))
(typeattributeset cil_gen_require init_run_all_scripts_domain)
(typeattributeset cil_gen_require lockfile)
(typeattributeset lockfile (ntpd_lock_t ))
(typeattributeset cil_gen_require var_t)
(typeattributeset cil_gen_require var_lock_t)
(typeattributeset cil_gen_require logfile)
(typeattributeset logfile (ntpd_log_t ))
(typeattributeset cil_gen_require tmp_t)
(typeattributeset cil_gen_require tmpfs_t)
(typeattributeset cil_gen_require pidfile)
(typeattributeset pidfile (ntpd_pid_t ))
(typeattributeset cil_gen_require tmpfile)
(typeattributeset tmpfile (ntpd_tmp_t ))
(typeattributeset cil_gen_require polymember)
(typeattributeset polymember (ntpd_tmp_t ))
(typeattributeset cil_gen_require tmpfsfile)
(typeattributeset tmpfsfile (ntpd_tmpfs_t ))
(typeattributeset cil_gen_require systemdunit)
(typeattributeset systemdunit (ntpd_unit_t ))
(typeattributeset cil_gen_require systemprocess)
(typeattributeset systemprocess (ntpd_t ))
(typeattributeset cil_gen_require application_domain_type)
(typeattributeset application_domain_type (ntpd_t ))
(typeattributeset cil_gen_require application_exec_type)
(typeattributeset application_exec_type (ntpdate_exec_t ))
(typeattributeset cil_gen_require etc_t)
(typeattributeset cil_gen_require var_log_t)
(typeattributeset cil_gen_require var_run_t)
(typeattributeset cil_gen_require proc_t)
(typeattributeset cil_gen_require sysctl_t)
(typeattributeset cil_gen_require sysctl_kernel_t)
(typeattributeset cil_gen_require proc_net_t)
(typeattributeset cil_gen_require sysctl_vm_overcommit_t)
(typeattributeset cil_gen_require sysctl_vm_t)
(typeattributeset cil_gen_require kernel_t)
(typeattributeset cil_gen_require netlabel_peer_t)
(typeattributeset cil_gen_require netif_t)
(typeattributeset cil_gen_require node_t)
(typeattributeset cil_gen_require ntp_client_packet_t)
(typeattributeset cil_gen_require ntp_server_packet_t)
(typeattributeset cil_gen_require ntp_port_t)
(typeattributeset cil_gen_require bin_t)
(typeattributeset cil_gen_require usr_t)
(typeattributeset cil_gen_require shell_exec_t)
(typeattributeset cil_gen_require device_t)
(typeattributeset cil_gen_require urandom_device_t)
(typeattributeset cil_gen_require clock_device_t)
(typeattributeset cil_gen_require privfd)
(typeattributeset cil_gen_require etc_runtime_t)
(typeattributeset cil_gen_require var_lib_t)
(typeattributeset cil_gen_require root_t)
(typeattributeset cil_gen_require filesystem_type)
(typeattributeset cil_gen_require autofs_t)
(typeattributeset cil_gen_require nsfs_t)
(typeattributeset cil_gen_require ptmx_t)
(typeattributeset cil_gen_require nsswitch_domain)
(typeattributeset nsswitch_domain (ntpd_t ))
(typeattributeset cil_gen_require initrc_exec_t)
(typeattributeset cil_gen_require systemd_unit_t)
(typeattributeset cil_gen_require syslogd_t)
(typeattributeset cil_gen_require syslogd_runtime_t)
(typeattributeset cil_gen_require devlog_t)
(typeattributeset cil_gen_require init_runtime_t)
(typeattributeset cil_gen_require console_device_t)
(typeattributeset cil_gen_require locale_t)
(typeattributeset cil_gen_require unpriv_userdomain)
(typeattributeset cil_gen_require user_home_dir_t)
(typeattributeset cil_gen_require home_root_t)
(typeattributeset cil_gen_require dbusd_system_bus_client)
(typeattributeset dbusd_system_bus_client (ntpd_t ))
(typeattributeset cil_gen_require system_dbusd_t)
(typeattributeset cil_gen_require system_dbusd_runtime_t)
(typeattributeset cil_gen_require system_dbusd_var_lib_t)
(typeattributeset cil_gen_require session_dbusd_tmp_t)
(typeattributeset cil_gen_require dbusd_etc_t)
(typeattributeset cil_gen_require lib_t)
(typeattributeset cil_gen_require init_var_lib_t)
(typeattributeset cil_gen_require memory_pressure_t)
(typeattributeset cil_gen_require systemd_networkd_runtime_t)
(allow ntpd_t ntpd_exec_t (file (entrypoint)))
(allow ntpd_t ntpd_exec_t (file (ioctl read getattr lock map execute open)))
(allow initrc_t ntpd_exec_t (file (ioctl read getattr map execute open)))
(allow initrc_t ntpd_t (process (transition)))
(dontaudit initrc_t ntpd_t (process (noatsecure siginh rlimitinh)))
(typetransition initrc_t ntpd_exec_t process ntpd_t)
(allow ntpd_t initrc_t (fd (use)))
(allow ntpd_t initrc_t (fifo_file (ioctl read write getattr lock append)))
(allow ntpd_t initrc_t (process (sigchld)))
(allow ntpd_t ntpd_exec_t (file (entrypoint)))
(allow ntpd_t ntpd_exec_t (file (ioctl read getattr lock map execute open)))
(allow init_t ntpd_exec_t (file (ioctl read getattr map execute open)))
(allow init_t ntpd_t (process (transition)))
(dontaudit init_t ntpd_t (process (noatsecure siginh rlimitinh)))
(typetransition init_t ntpd_exec_t process ntpd_t)
(allow ntpd_t init_t (fd (use)))
(allow ntpd_t init_t (fifo_file (ioctl read write getattr lock append)))
(allow ntpd_t init_t (process (sigchld)))
(allow initrc_t ntpd_initrc_exec_t (file (entrypoint)))
(allow initrc_t ntpd_initrc_exec_t (file (ioctl read getattr lock map execute open)))
(allow init_run_all_scripts_domain ntpd_initrc_exec_t (file (ioctl read getattr map execute open)))
(allow init_run_all_scripts_domain initrc_t (process (transition)))
(dontaudit init_run_all_scripts_domain initrc_t (process (noatsecure siginh rlimitinh)))
(typetransition init_run_all_scripts_domain ntpd_initrc_exec_t process initrc_t)
(allow initrc_t init_run_all_scripts_domain (fd (use)))
(allow initrc_t init_run_all_scripts_domain (fifo_file (ioctl read write getattr lock append)))
(allow initrc_t init_run_all_scripts_domain (process (sigchld)))
(allow initrc_t var_t (dir (getattr open search)))
(allow initrc_t var_lock_t (lnk_file (read getattr)))
(allow initrc_t var_lock_t (dir (ioctl read write getattr lock open add_name remove_name search)))
(allow initrc_t ntpd_lock_t (dir (ioctl read write create getattr setattr lock unlink link rename open add_name remove_name reparent search rmdir)))
(allow initrc_t ntpd_lock_t (file (ioctl read write create getattr setattr lock append unlink link rename open)))
(allow ntpd_log_t tmp_t (filesystem (associate)))
(allow ntpd_log_t tmpfs_t (filesystem (associate)))
(allow ntpd_t ntpdate_exec_t (file (entrypoint)))
(allow ntpd_t ntpdate_exec_t (file (ioctl read getattr lock map execute open)))
(allow initrc_t ntpdate_exec_t (file (ioctl read getattr map execute open)))
(allow initrc_t ntpd_t (process (transition)))
(dontaudit initrc_t ntpd_t (process (noatsecure siginh rlimitinh)))
(typetransition initrc_t ntpdate_exec_t process ntpd_t)
(allow ntpd_t initrc_t (fd (use)))
(allow ntpd_t initrc_t (fifo_file (ioctl read write getattr lock append)))
(allow ntpd_t initrc_t (process (sigchld)))
(allow ntpd_t ntpdate_exec_t (file (entrypoint)))
(allow ntpd_t ntpdate_exec_t (file (ioctl read getattr lock map execute open)))
(allow init_t ntpdate_exec_t (file (ioctl read getattr map execute open)))
(allow init_t ntpd_t (process (transition)))
(dontaudit init_t ntpd_t (process (noatsecure siginh rlimitinh)))
(typetransition init_t ntpdate_exec_t process ntpd_t)
(allow ntpd_t init_t (fd (use)))
(allow ntpd_t init_t (fifo_file (ioctl read write getattr lock append)))
(allow ntpd_t init_t (process (sigchld)))
(allow ntpd_t self (capability (chown dac_override kill setgid setuid ipc_lock ipc_owner sys_chroot sys_nice sys_resource sys_time)))
(dontaudit ntpd_t self (capability (fsetid net_admin sys_tty_config)))
(allow ntpd_t self (process (sigchld sigkill sigstop signull signal setsched getcap setcap setrlimit)))
(allow ntpd_t self (fifo_file (ioctl read write getattr lock append open)))
(allow ntpd_t self (shm (create destroy getattr setattr read write associate unix_read unix_write lock)))
(allow ntpd_t self (socket (create)))
(allow ntpd_t self (unix_dgram_socket (sendto)))
(allow ntpd_t ntp_conf_t (file (ioctl read getattr lock open)))
(allow ntpd_t ntp_drift_t (lnk_file (read getattr)))
(allow ntpd_t ntp_drift_t (dir (ioctl read write getattr lock open add_name remove_name search)))
(allow ntpd_t ntp_drift_t (dir (ioctl read write create getattr setattr lock unlink link rename open add_name remove_name reparent search rmdir)))
(allow ntpd_t ntp_drift_t (dir (ioctl read write getattr lock open add_name remove_name search)))
(allow ntpd_t ntp_drift_t (file (ioctl read write create getattr setattr lock append unlink link rename open)))
(allow ntpd_t etc_t (dir (ioctl read write getattr lock open add_name remove_name search)))
(typetransition ntpd_t etc_t file ntp_drift_t)
(allow ntpd_t var_t (dir (ioctl read write getattr lock open add_name remove_name search)))
(typetransition ntpd_t var_t file ntp_drift_t)
(allow ntpd_t ntpd_key_t (dir (getattr open search)))
(allow ntpd_t ntpd_key_t (file (ioctl read getattr lock open)))
(allow ntpd_t ntpd_key_t (dir (getattr open search)))
(allow ntpd_t ntpd_key_t (lnk_file (read getattr)))
(allow ntpd_t ntpd_lock_t (file (ioctl read write getattr lock append open)))
(allow ntpd_t ntpd_log_t (dir (setattr)))
(allow ntpd_t ntpd_log_t (dir (ioctl read write getattr lock open add_name remove_name search)))
(allow ntpd_t ntpd_log_t (dir (ioctl read write create getattr setattr lock unlink link rename open add_name remove_name reparent search rmdir)))
(allow ntpd_t ntpd_log_t (dir (ioctl read write getattr lock open add_name remove_name search)))
(allow ntpd_t ntpd_log_t (file (ioctl read write create getattr setattr lock append unlink link rename open)))
(allow ntpd_t var_t (dir (getattr open search)))
(allow ntpd_t var_log_t (dir (ioctl read write getattr lock open add_name remove_name search)))
(typetransition ntpd_t var_log_t dir ntpd_log_t)
(typetransition ntpd_t var_log_t file ntpd_log_t)
(allow ntpd_t var_log_t (lnk_file (read getattr)))
(allow ntpd_t ntpd_pid_t (dir (ioctl read write getattr lock open add_name remove_name search)))
(allow ntpd_t ntpd_pid_t (file (ioctl read write create getattr setattr lock append unlink link rename open)))
(allow ntpd_t ntpd_pid_t (dir (ioctl read write getattr lock open add_name remove_name search)))
(allow ntpd_t ntpd_pid_t (sock_file (ioctl read write create getattr setattr lock append unlink link rename open)))
(allow ntpd_t var_t (dir (getattr open search)))
(allow ntpd_t var_run_t (lnk_file (read getattr)))
(allow ntpd_t var_run_t (dir (ioctl read write getattr lock open add_name remove_name search)))
(typetransition ntpd_t var_run_t sock_file ntpd_pid_t)
(typetransition ntpd_t var_run_t file ntpd_pid_t)
(allow ntpd_t ntpd_tmp_t (dir (ioctl read write getattr lock open add_name remove_name search)))
(allow ntpd_t ntpd_tmp_t (dir (ioctl read write create getattr setattr lock unlink link rename open add_name remove_name reparent search rmdir)))
(allow ntpd_t ntpd_tmp_t (dir (ioctl read write getattr lock open add_name remove_name search)))
(allow ntpd_t ntpd_tmp_t (file (ioctl read write create getattr setattr lock append unlink link rename open)))
(allow ntpd_t tmp_t (dir (ioctl read write getattr lock open add_name remove_name search)))
(typetransition ntpd_t tmp_t dir ntpd_tmp_t)
(typetransition ntpd_t tmp_t file ntpd_tmp_t)
(allow ntpd_t ntpd_tmpfs_t (dir (ioctl read write getattr lock open add_name remove_name search)))
(allow ntpd_t ntpd_tmpfs_t (dir (ioctl read write create getattr setattr lock unlink link rename open add_name remove_name reparent search rmdir)))
(allow ntpd_t ntpd_tmpfs_t (dir (ioctl read write getattr lock open add_name remove_name search)))
(allow ntpd_t ntpd_tmpfs_t (file (ioctl read write create getattr setattr lock append unlink link rename open)))
(allow ntpd_tmpfs_t tmpfs_t (filesystem (associate)))
(allow ntpd_t tmpfs_t (dir (ioctl read write getattr lock open add_name remove_name search)))
(typetransition ntpd_t tmpfs_t dir ntpd_tmpfs_t)
(typetransition ntpd_t tmpfs_t file ntpd_tmpfs_t)
(allow ntpd_t ntpd_exec_t (file (ioctl read getattr lock map execute open execute_no_trans)))
(allow ntpd_t proc_t (dir (getattr open search)))
(allow ntpd_t sysctl_t (dir (getattr open search)))
(allow ntpd_t sysctl_kernel_t (dir (getattr open search)))
(allow ntpd_t sysctl_kernel_t (file (ioctl read getattr lock open)))
(allow ntpd_t proc_t (dir (getattr open search)))
(allow ntpd_t sysctl_t (dir (getattr open search)))
(allow ntpd_t sysctl_kernel_t (dir (ioctl read getattr lock open search)))
(allow ntpd_t proc_t (dir (getattr open search)))
(allow ntpd_t proc_t (file (ioctl read getattr lock open)))
(allow ntpd_t proc_t (dir (getattr open search)))
(allow ntpd_t proc_t (lnk_file (read getattr)))
(allow ntpd_t proc_t (dir (getattr open search)))
(allow ntpd_t proc_t (dir (ioctl read getattr lock open search)))
(allow ntpd_t proc_t (dir (getattr open search)))
(allow ntpd_t proc_net_t (dir (getattr open search)))
(allow ntpd_t proc_net_t (file (ioctl read getattr lock open)))
(allow ntpd_t proc_t (dir (getattr open search)))
(allow ntpd_t proc_net_t (dir (getattr open search)))
(allow ntpd_t proc_net_t (lnk_file (read getattr)))
(allow ntpd_t proc_t (dir (getattr open search)))
(allow ntpd_t proc_net_t (dir (ioctl read getattr lock open search)))
(allow ntpd_t proc_t (dir (getattr open search)))
(allow ntpd_t sysctl_t (dir (getattr open search)))
(allow ntpd_t sysctl_vm_t (dir (getattr open search)))
(allow ntpd_t sysctl_vm_overcommit_t (file (ioctl read getattr lock open)))
(allow ntpd_t kernel_t (system (module_request)))
(allow ntpd_t netlabel_peer_t (peer (recv)))
(allow ntpd_t netlabel_peer_t (tcp_socket (recvfrom)))
(allow ntpd_t netlabel_peer_t (udp_socket (recvfrom)))
(allow ntpd_t netlabel_peer_t (rawip_socket (recvfrom)))
(allow ntpd_t netif_t (netif (egress)))
(allow ntpd_t netif_t (netif (ingress)))
(allow ntpd_t node_t (node (sendto)))
(allow ntpd_t node_t (node (recvfrom)))
(allow ntpd_t node_t (udp_socket (node_bind)))
(allow ntpd_t ntp_client_packet_t (packet (send)))
(allow ntpd_t ntp_client_packet_t (packet (recv)))
(allow ntpd_t ntp_server_packet_t (packet (send)))
(allow ntpd_t ntp_server_packet_t (packet (recv)))
(allow ntpd_t ntp_port_t (udp_socket (name_bind)))
(allow ntpd_t self (capability (net_bind_service)))
(allow ntpd_t bin_t (dir (getattr open search)))
(allow ntpd_t bin_t (lnk_file (read getattr)))
(allow ntpd_t usr_t (dir (getattr open search)))
(allow ntpd_t bin_t (dir (getattr open search)))
(allow ntpd_t bin_t (dir (ioctl read getattr lock open search)))
(allow ntpd_t bin_t (file (ioctl read getattr lock map execute open execute_no_trans)))
(allow ntpd_t bin_t (dir (getattr open search)))
(allow ntpd_t bin_t (lnk_file (read getattr)))
(allow ntpd_t usr_t (dir (getattr open search)))
(allow ntpd_t bin_t (dir (getattr open search)))
(allow ntpd_t bin_t (dir (ioctl read getattr lock open search)))
(allow ntpd_t shell_exec_t (file (ioctl read getattr lock map execute open execute_no_trans)))
(allow ntpd_t sysfs_t (dir (getattr open search)))
(allow ntpd_t sysfs_t (file (ioctl read getattr lock open)))
(allow ntpd_t sysfs_t (dir (getattr open search)))
(allow ntpd_t sysfs_t (lnk_file (read getattr)))
(allow ntpd_t sysfs_t (dir (getattr open search)))
(allow ntpd_t sysfs_t (dir (ioctl read getattr lock open search)))
(allow ntpd_t device_t (dir (getattr open search)))
(allow ntpd_t urandom_device_t (chr_file (ioctl read getattr lock open)))
(allow ntpd_t device_t (dir (getattr open search)))
(allow ntpd_t clock_device_t (chr_file (ioctl read getattr lock open)))
(allow ntpd_t device_t (dir (getattr open search)))
(allow ntpd_t clock_device_t (chr_file (ioctl write getattr lock append open)))
(allow ntpd_t clock_device_t (chr_file (setattr)))
(allow ntpd_t privfd (fd (use)))
(dontaudit ntpd_t domain (dir (ioctl read getattr lock open search)))
(allow ntpd_t etc_t (dir (ioctl read write getattr lock open add_name remove_name search)))
(allow ntpd_t etc_t (lnk_file (ioctl read write create getattr setattr lock append unlink link rename)))
(allow ntpd_t etc_t (dir (ioctl read getattr lock open search)))
(allow ntpd_t etc_t (dir (getattr open search)))
(allow ntpd_t etc_runtime_t (file (ioctl read getattr lock open)))
(allow ntpd_t etc_t (dir (getattr open search)))
(allow ntpd_t etc_runtime_t (lnk_file (read getattr)))
(allow ntpd_t usr_t (dir (ioctl read getattr lock open search)))
(allow ntpd_t usr_t (dir (getattr open search)))
(allow ntpd_t usr_t (file (ioctl read getattr lock open)))
(allow ntpd_t usr_t (dir (getattr open search)))
(allow ntpd_t usr_t (lnk_file (read getattr)))
(allow ntpd_t var_t (dir (getattr open search)))
(allow ntpd_t var_lib_t (dir (ioctl read getattr lock open search)))
(allow ntpd_t root_t (dir (watch)))
(allow ntpd_t var_run_t (dir (watch)))
(allow ntpd_t filesystem_type (filesystem (getattr)))
(allow ntpd_t file_type (filesystem (getattr)))
(allow ntpd_t autofs_t (dir (getattr open search)))
(allow ntpd_t nsfs_t (file (getattr)))
(allow ntpd_t device_t (dir (getattr open search)))
(allow ntpd_t device_t (dir (ioctl read getattr lock open search)))
(allow ntpd_t device_t (dir (getattr open search)))
(allow ntpd_t device_t (lnk_file (read getattr)))
(allow ntpd_t ptmx_t (chr_file (ioctl read write getattr lock append open)))
(allow initrc_t var_t (dir (getattr open search)))
(allow initrc_t var_lock_t (lnk_file (read getattr)))
(allow initrc_t var_lock_t (dir (ioctl read write getattr lock open add_name remove_name search)))
(allow initrc_t ntpd_lock_t (dir (ioctl read write create getattr setattr lock unlink link rename open add_name remove_name reparent search rmdir)))
(allow initrc_t ntpd_lock_t (file (ioctl read write create getattr setattr lock append unlink link rename open)))
(allow ntpd_t etc_t (dir (ioctl read getattr lock open search)))
(allow ntpd_t initrc_exec_t (file (ioctl read getattr lock map execute open execute_no_trans)))
(allow ntpd_t systemd_unit_t (service (status)))
(allow ntpd_t devlog_t (sock_file (write getattr append open)))
(allow ntpd_t var_run_t (lnk_file (read getattr)))
(allow ntpd_t var_t (dir (getattr open search)))
(allow ntpd_t var_run_t (dir (getattr open search)))
(allow ntpd_t init_runtime_t (dir (getattr open search)))
(allow ntpd_t syslogd_runtime_t (dir (getattr open search)))
(allow ntpd_t syslogd_t (unix_dgram_socket (sendto)))
(allow ntpd_t syslogd_t (unix_stream_socket (connectto)))
(allow ntpd_t self (unix_dgram_socket (ioctl read write create getattr setattr append bind connect getopt setopt shutdown)))
(allow ntpd_t self (unix_stream_socket (ioctl read write create getattr setattr append bind connect getopt setopt shutdown)))
(allow ntpd_t device_t (dir (getattr open search)))
(allow ntpd_t device_t (dir (ioctl read getattr lock open search)))
(allow ntpd_t device_t (dir (getattr open search)))
(allow ntpd_t device_t (lnk_file (read getattr)))
(allow ntpd_t console_device_t (chr_file (ioctl write getattr lock append open)))
(dontaudit ntpd_t console_device_t (chr_file (ioctl read getattr lock open)))
(allow syslogd_t ntpd_t (process (signull)))
(allow ntpd_t kernel_t (unix_dgram_socket (sendto)))
(allow ntpd_t kernel_t (unix_stream_socket (connectto)))
(allow ntpd_t etc_t (dir (getattr open search)))
(allow ntpd_t etc_t (lnk_file (read getattr)))
(allow ntpd_t usr_t (dir (getattr open search)))
(allow ntpd_t locale_t (dir (ioctl read getattr lock open search)))
(allow ntpd_t locale_t (dir (getattr open search)))
(allow ntpd_t locale_t (file (ioctl read getattr lock open)))
(allow ntpd_t locale_t (dir (getattr open search)))
(allow ntpd_t locale_t (lnk_file (read getattr)))
(allow ntpd_t locale_t (file (map)))
(dontaudit ntpd_t unpriv_userdomain (fd (use)))
(allow ntpd_t user_home_dir_t (dir (ioctl read getattr lock open search)))
(allow ntpd_t home_root_t (dir (getattr open search)))
(allow ntpd_t home_root_t (lnk_file (read getattr)))
(allow ntpd_t self (process (setfscreate)))
(allow ntpd_t ntpd_unit_t (file (ioctl read getattr lock open)))
(allow ntpd_t system_dbusd_t (dbus (send_msg)))
(allow ntpd_t self (dbus (send_msg)))
(allow system_dbusd_t ntpd_t (dbus (send_msg)))
(allow ntpd_t var_t (dir (getattr open search)))
(allow ntpd_t var_lib_t (dir (getattr open search)))
(allow ntpd_t system_dbusd_var_lib_t (dir (getattr open search)))
(allow ntpd_t system_dbusd_var_lib_t (file (ioctl read getattr lock open)))
(allow ntpd_t system_dbusd_var_lib_t (dir (getattr open search)))
(allow ntpd_t system_dbusd_var_lib_t (lnk_file (read getattr)))
(allow ntpd_t session_dbusd_tmp_t (dir (getattr open search)))
(allow ntpd_t session_dbusd_tmp_t (sock_file (read write getattr append open)))
(allow ntpd_t var_run_t (lnk_file (read getattr)))
(allow ntpd_t var_t (dir (getattr open search)))
(allow ntpd_t var_run_t (dir (getattr open search)))
(allow ntpd_t system_dbusd_runtime_t (dir (getattr open search)))
(allow ntpd_t system_dbusd_runtime_t (sock_file (write getattr append open)))
(allow ntpd_t system_dbusd_t (unix_stream_socket (connectto)))
(allow ntpd_t dbusd_etc_t (dir (ioctl read getattr lock open search)))
(allow ntpd_t dbusd_etc_t (file (ioctl read getattr lock open)))
(allow ntpd_t system_dbusd_runtime_t (dir (ioctl read getattr lock open search)))
(allow ntpd_t system_dbusd_runtime_t (sock_file (read)))
(allow ntpd_t system_dbusd_var_lib_t (dir (getattr open search)))
(allow ntpd_t system_dbusd_var_lib_t (lnk_file (read getattr)))
(allow ntpd_t system_dbusd_t (dbus (acquire_svc)))
(allow ntpd_t system_dbusd_runtime_t (dir (watch)))
(allow ntpd_t system_dbusd_runtime_t (sock_file (watch)))
(allow ntpd_t init_t (dbus (send_msg)))
(allow init_t ntpd_t (dbus (send_msg)))
(allow ntpd_t init_t (system (status)))
(allow ntpd_t systemd_unit_t (dir (ioctl read getattr lock open search)))
(allow ntpd_t init_runtime_t (dir (getattr open search)))
(allow ntpd_t systemd_unit_t (dir (getattr open search)))
(allow ntpd_t etc_t (dir (getattr open search)))
(allow ntpd_t usr_t (dir (getattr open search)))
(allow ntpd_t lib_t (dir (getattr open search)))
(allow ntpd_t tmpfs_t (dir (getattr open search)))
(allow ntpd_t init_var_lib_t (dir (ioctl read getattr lock open search)))
(allow ntpd_t init_var_lib_t (lnk_file (read getattr)))
(allow ntpd_t self (capability (fowner setpcap)))
(allow ntpd_t init_t (dir (getattr open search)))
(allow ntpd_t init_t (file (ioctl read getattr lock open)))
(allow ntpd_t init_t (lnk_file (read getattr)))
(allow ntpd_t init_t (system (reload)))
(allow ntpd_t init_runtime_t (dir (watch)))
(allow ntpd_t memory_pressure_t (file (ioctl read write getattr setattr lock append open)))
(allow ntpd_t init_var_lib_t (dir (ioctl read getattr lock open search)))
(allow ntpd_t init_runtime_t (dir (ioctl read getattr lock open search)))
(allow ntpd_t var_run_t (lnk_file (read getattr)))
(allow ntpd_t var_t (dir (getattr open search)))
(allow ntpd_t var_run_t (dir (getattr open search)))
(allow ntpd_t systemd_networkd_runtime_t (dir (ioctl read getattr lock open search)))
(allow ntpd_t systemd_networkd_runtime_t (dir (getattr open search)))
(allow ntpd_t systemd_networkd_runtime_t (dir (ioctl read getattr lock open search)))
(allow ntpd_t systemd_networkd_runtime_t (dir (getattr open search)))
(allow ntpd_t systemd_networkd_runtime_t (file (ioctl read getattr lock open)))
(allow ntpd_t systemd_networkd_runtime_t (dir (watch)))
(typetransition initrc_t var_lock_t file "ntpsec-ntpdate" ntpd_lock_t)
(typetransition initrc_t var_lock_t file "ntpdate" ntpd_lock_t)
(optional ntp_optional_2
    (typeattributeset cil_gen_require init_t)
    (allow ntpd_t init_t (process (sigchld)))
    (allow ntpd_t init_t (process (signull)))
    (optional ntp_optional_3
        (typeattributeset cil_gen_require rpm_t)
        (allow ntpd_t rpm_t (fd (use)))
        (allow ntpd_t rpm_t (fifo_file (ioctl read getattr lock open)))
    )
    (optional ntp_optional_4
        (typeattributeset cil_gen_require security_t)
        (typeattributeset cil_gen_require sysfs_t)
        (dontaudit ntpd_t security_t (filesystem (getattr)))
        (dontaudit ntpd_t sysfs_t (filesystem (getattr)))
        (dontaudit ntpd_t sysfs_t (dir (getattr open search)))
        (dontaudit ntpd_t security_t (dir (getattr open search)))
        (dontaudit ntpd_t security_t (file (ioctl read getattr lock open)))
    )
    (optional ntp_optional_5
        (typeattributeset cil_gen_require selinux_config_t)
        (dontaudit ntpd_t selinux_config_t (dir (getattr open search)))
        (dontaudit ntpd_t selinux_config_t (file (ioctl read getattr lock open)))
    )
    (optional ntp_optional_6
        (typeattributeset cil_gen_require init_t)
        (allow ntpd_t init_t (process (sigchld)))
        (allow ntpd_t init_t (process (signull)))
        (optional ntp_optional_7
            (typeattributeset cil_gen_require rpm_t)
            (allow ntpd_t rpm_t (fd (use)))
            (allow ntpd_t rpm_t (fifo_file (ioctl read getattr lock open)))
        )
        (optional ntp_optional_8
            (typeattributeset cil_gen_require security_t)
            (typeattributeset cil_gen_require sysfs_t)
            (dontaudit ntpd_t security_t (filesystem (getattr)))
            (dontaudit ntpd_t sysfs_t (filesystem (getattr)))
            (dontaudit ntpd_t sysfs_t (dir (getattr open search)))
            (dontaudit ntpd_t security_t (dir (getattr open search)))
            (dontaudit ntpd_t security_t (file (ioctl read getattr lock open)))
        )
        (optional ntp_optional_9
            (typeattributeset cil_gen_require selinux_config_t)
            (dontaudit ntpd_t selinux_config_t (dir (getattr open search)))
            (dontaudit ntpd_t selinux_config_t (file (ioctl read getattr lock open)))
        )
        (optional ntp_optional_10
            (typeattributeset cil_gen_require init_t)
            (allow ntpd_t init_t (process (sigchld)))
            (allow ntpd_t init_t (process (signull)))
            (optional ntp_optional_11
                (typeattributeset cil_gen_require rpm_t)
                (allow ntpd_t rpm_t (fd (use)))
                (allow ntpd_t rpm_t (fifo_file (ioctl read getattr lock open)))
            )
            (optional ntp_optional_12
                (typeattributeset cil_gen_require security_t)
                (typeattributeset cil_gen_require sysfs_t)
                (dontaudit ntpd_t security_t (filesystem (getattr)))
                (dontaudit ntpd_t sysfs_t (filesystem (getattr)))
                (dontaudit ntpd_t sysfs_t (dir (getattr open search)))
                (dontaudit ntpd_t security_t (dir (getattr open search)))
                (dontaudit ntpd_t security_t (file (ioctl read getattr lock open)))
            )
            (optional ntp_optional_13
                (typeattributeset cil_gen_require selinux_config_t)
                (dontaudit ntpd_t selinux_config_t (dir (getattr open search)))
                (dontaudit ntpd_t selinux_config_t (file (ioctl read getattr lock open)))
            )
            (optional ntp_optional_14
                (typeattributeset cil_gen_require init_t)
                (allow ntpd_t init_t (process (sigchld)))
                (allow ntpd_t init_t (process (signull)))
                (optional ntp_optional_15
                    (typeattributeset cil_gen_require rpm_t)
                    (allow ntpd_t rpm_t (fd (use)))
                    (allow ntpd_t rpm_t (fifo_file (ioctl read getattr lock open)))
                )
                (optional ntp_optional_16
                    (typeattributeset cil_gen_require security_t)
                    (typeattributeset cil_gen_require sysfs_t)
                    (dontaudit ntpd_t security_t (filesystem (getattr)))
                    (dontaudit ntpd_t sysfs_t (filesystem (getattr)))
                    (dontaudit ntpd_t sysfs_t (dir (getattr open search)))
                    (dontaudit ntpd_t security_t (dir (getattr open search)))
                    (dontaudit ntpd_t security_t (file (ioctl read getattr lock open)))
                )
                (optional ntp_optional_17
                    (typeattributeset cil_gen_require selinux_config_t)
                    (dontaudit ntpd_t selinux_config_t (dir (getattr open search)))
                    (dontaudit ntpd_t selinux_config_t (file (ioctl read getattr lock open)))
                )
                (optional ntp_optional_18
                    (typeattributeset cil_gen_require chronyd_unit_t)
                    (allow ntpd_t chronyd_unit_t (service (status)))
                    (allow ntpd_t chronyd_unit_t (service (disable enable)))
                    (allow ntpd_t chronyd_unit_t (service (status)))
                    (allow ntpd_t chronyd_unit_t (service (start stop)))
                )
                (optional ntp_optional_19
                    (typeattributeset cil_gen_require unconfined_t)
                    (allow ntpd_t unconfined_t (dbus (send_msg)))
                )
                (optional ntp_optional_20
                    (typeattributeset cil_gen_require etc_t)
                    (typeattributeset cil_gen_require adjtime_t)
                    (allow ntpd_t etc_t (dir (ioctl read getattr lock open search)))
                    (allow ntpd_t adjtime_t (file (ioctl read getattr lock open)))
                )
                (optional ntp_optional_21
                    (typeattributeset cil_gen_require crond_t)
                    (typeattributeset cil_gen_require system_cronjob_t)
                    (roleattributeset cil_gen_require system_r)
                    (roletype system_r ntpd_t)
                    (allow system_cronjob_t ntpdate_exec_t (file (ioctl read getattr map execute open)))
                    (allow system_cronjob_t ntpd_t (process (transition)))
                    (dontaudit system_cronjob_t ntpd_t (process (noatsecure siginh rlimitinh)))
                    (typetransition system_cronjob_t ntpdate_exec_t process ntpd_t)
                    (allow ntpd_t system_cronjob_t (fd (use)))
                    (allow ntpd_t system_cronjob_t (fifo_file (ioctl read write getattr lock append)))
                    (allow ntpd_t system_cronjob_t (process (sigchld)))
                    (allow crond_t ntpdate_exec_t (file (ioctl read getattr map execute open)))
                    (allow crond_t ntpd_t (process (transition)))
                    (dontaudit crond_t ntpd_t (process (noatsecure siginh rlimitinh)))
                    (typetransition crond_t ntpdate_exec_t process ntpd_t)
                    (allow ntpd_t crond_t (fd (use)))
                    (allow ntpd_t crond_t (fifo_file (ioctl read write getattr lock append)))
                    (allow ntpd_t crond_t (process (sigchld)))
                )
                (optional ntp_optional_22
                    (typeattributeset cil_gen_require tmpfs_t)
                    (typeattributeset cil_gen_require gpsd_t)
                    (typeattributeset cil_gen_require gpsd_tmpfs_t)
                    (allow ntpd_t gpsd_t (shm (getattr read write associate unix_read unix_write lock)))
                    (allow ntpd_t gpsd_tmpfs_t (dir (ioctl read getattr lock open search)))
                    (allow ntpd_t gpsd_tmpfs_t (dir (getattr open search)))
                    (allow ntpd_t gpsd_tmpfs_t (file (ioctl read write getattr lock append open)))
                    (allow ntpd_t gpsd_tmpfs_t (dir (getattr open search)))
                    (allow ntpd_t gpsd_tmpfs_t (lnk_file (read getattr)))
                    (allow ntpd_t tmpfs_t (dir (getattr open search)))
                )
                (optional ntp_optional_23
                    (typeattributeset cil_gen_require firstboot_t)
                    (dontaudit ntpd_t firstboot_t (fd (use)))
                    (dontaudit ntpd_t firstboot_t (fifo_file (read write)))
                    (dontaudit ntpd_t firstboot_t (unix_stream_socket (read write)))
                )
                (optional ntp_optional_24
                    (typeattributeset cil_gen_require bin_t)
                    (typeattributeset cil_gen_require usr_t)
                    (typeattributeset cil_gen_require logrotate_exec_t)
                    (allow ntpd_t bin_t (dir (getattr open search)))
                    (allow ntpd_t bin_t (lnk_file (read getattr)))
                    (allow ntpd_t usr_t (dir (getattr open search)))
                    (allow ntpd_t logrotate_exec_t (file (ioctl read getattr lock map execute open execute_no_trans)))
                )
                (optional ntp_optional_25
                    (typeattributeset cil_gen_require newrole_t)
                    (allow ntpd_t newrole_t (process (sigchld)))
                )
            )
        )
    )
)
(filecon "/etc/cron\.daily/ntp" file (system_u object_r ntpd_exec_t (systemlow systemlow)))
(filecon "/etc/cron\.(daily|weekly)/ntp-simple" file (system_u object_r ntpd_exec_t (systemlow systemlow)))
(filecon "/etc/cron\.(daily|weekly)/ntp-server" file (system_u object_r ntpd_exec_t (systemlow systemlow)))
(filecon "/etc/ntp\.conf" file (system_u object_r ntp_conf_t (systemlow systemlow)))
(filecon "/etc/ntp\.drift" file (system_u object_r ntp_drift_t (systemlow systemlow)))
(filecon "/etc/ntpd.*\.conf.*" file (system_u object_r ntp_conf_t (systemlow systemlow)))
(filecon "/etc/ntp/crypto(/.*)?" any (system_u object_r ntpd_key_t (systemlow systemlow)))
(filecon "/etc/ntp/data(/.*)?" any (system_u object_r ntp_drift_t (systemlow systemlow)))
(filecon "/etc/ntp/keys" file (system_u object_r ntpd_key_t (systemlow systemlow)))
(filecon "/etc/ntp/step-tickers.*" file (system_u object_r ntp_conf_t (systemlow systemlow)))
(filecon "/etc/rc\.d/init\.d/ntpd?" file (system_u object_r ntpd_initrc_exec_t (systemlow systemlow)))
(filecon "/run/ntpd\.pid" file (system_u object_r ntpd_pid_t (systemlow systemlow)))
(filecon "/run/lock/ntpsec-ntpdate" file (system_u object_r ntpd_lock_t (systemlow systemlow)))
(filecon "/run/systemd/timesync(/.*)?" any (system_u object_r ntpd_pid_t (systemlow systemlow)))
(filecon "/usr/bin/ntpd" file (system_u object_r ntpd_exec_t (systemlow systemlow)))
(filecon "/usr/bin/ntpdate" file (system_u object_r ntpdate_exec_t (systemlow systemlow)))
(filecon "/usr/bin/sntp" file (system_u object_r ntpdate_exec_t (systemlow systemlow)))
(filecon "/usr/lib/systemd/ntp-units\.d/.*" file (system_u object_r ntpd_unit_t (systemlow systemlow)))
(filecon "/usr/lib/systemd/system/ntpd.*\.service" file (system_u object_r ntpd_unit_t (systemlow systemlow)))
(filecon "/usr/lib/systemd/systemd-timedated" file (system_u object_r ntpd_exec_t (systemlow systemlow)))
(filecon "/usr/lib/systemd/systemd-timesyncd" file (system_u object_r ntpd_exec_t (systemlow systemlow)))
(filecon "/usr/sbin/ntpd" file (system_u object_r ntpd_exec_t (systemlow systemlow)))
(filecon "/usr/sbin/ntpdate" file (system_u object_r ntpdate_exec_t (systemlow systemlow)))
(filecon "/usr/sbin/sntp" file (system_u object_r ntpdate_exec_t (systemlow systemlow)))
(filecon "/var/db/ntp-kod" file (system_u object_r ntp_drift_t (systemlow systemlow)))
(filecon "/var/lib/ntp(/.*)?" any (system_u object_r ntp_drift_t (systemlow systemlow)))
(filecon "/var/lib/ntpsec(/.*)?" any (system_u object_r ntp_drift_t (systemlow systemlow)))
(filecon "/var/lib/sntp-kod(/.*)?" any (system_u object_r ntp_drift_t (systemlow systemlow)))
(filecon "/var/lib/systemd/clock" file (system_u object_r ntp_drift_t (systemlow systemlow)))
(filecon "/var/lib/systemd/timesync(/.*)?" any (system_u object_r ntp_drift_t (systemlow systemlow)))
(filecon "/var/lock/ntpdate" file (system_u object_r ntpd_lock_t (systemlow systemlow)))
(filecon "/var/log/ntp.*" file (system_u object_r ntpd_log_t (systemlow systemlow)))
(filecon "/var/log/ntpstats(/.*)?" any (system_u object_r ntpd_log_t (systemlow systemlow)))
(filecon "/var/log/xntpd.*" file (system_u object_r ntpd_log_t (systemlow systemlow)))
(filecon "/run/ntpd\.sock" socket (system_u object_r ntpd_pid_t (systemlow systemlow)))
(filecon "/var/lib/openntpd/ntpd\.drift" file (system_u object_r ntp_drift_t (systemlow systemlow)))
(filecon "/usr/sbin/ntpctl" file (system_u object_r ntpd_exec_t (systemlow systemlow)))
