From: rtrimana <rtrimana@uci.edu>
Date: Fri, 7 Apr 2017 00:35:06 +0000 (-0700)
Subject: Modifying master for Tomoyo process jailing; Adding basic policies for Tomoyo environ... 
X-Git-Url: http://plrg.eecs.uci.edu/git/?p=iot2.git;a=commitdiff_plain;h=18ca99a8de6bc1d02dc61612894e515b9107932c

Modifying master for Tomoyo process jailing; Adding basic policies for Tomoyo environment for SmartLightsController
---

diff --git a/iotjava/iotruntime/master/IoTMaster.java b/iotjava/iotruntime/master/IoTMaster.java
index 6a66039..ce99125 100644
--- a/iotjava/iotruntime/master/IoTMaster.java
+++ b/iotjava/iotruntime/master/IoTMaster.java
@@ -112,6 +112,7 @@ public class IoTMaster {
 	private static final String STR_CFG_FILE_EXT = ".config";
 	private static final String STR_CLS_FILE_EXT = ".class";
 	private static final String STR_JAR_FILE_EXT = ".jar";
+	private static final String STR_SHELL_FILE_EXT = ".sh";
 	private static final String STR_SO_FILE_EXT = ".so";
 	private static final String STR_ZIP_FILE_EXT = ".zip";
 	private static final String STR_TCP_PROTOCOL = "tcp";
@@ -130,6 +131,8 @@ public class IoTMaster {
 	private static final String STR_SSH = "ssh";
 	private static final String STR_SCP = "scp";
 	private static final String STR_IOTSLAVE_CPP = "./IoTSlave.o";
+	private static final String STR_SHELL_HEADER = "#!/bin/sh";
+	private static final String STR_JAVA_PATH = "/usr/bin/java";
 
 	private static int INT_SIZE = 4;	// send length in the size of integer (4 bytes)
 
@@ -210,6 +213,24 @@ public class IoTMaster {
 		mapClassNameToCrim = new HashMap<String,Object>();
 	}
 
+	/**
+	 * getPrintWriter() gets a new PrintWriter for a new object
+	 *
+	 * @param   strObjectName 	String object name
+	 * @return  PrintWriter
+	 */
+	private PrintWriter getPrintWriter(String strObjectName) {
+
+		FileWriter fw = null;
+		try {
+			fw = new FileWriter(strObjectName);
+		} catch (IOException ex) {
+			ex.printStackTrace();
+		}
+		PrintWriter printWriter = new PrintWriter(new BufferedWriter(fw));
+		return printWriter;
+	}
+
 	/**
 	 * A method to initialize constants from config file
 	 *
@@ -870,13 +891,28 @@ public class IoTMaster {
 	 *
 	 * @return       String
 	 */
-	private String getCmdJavaDriverIoTSlave(String strIoTMasterHostAdd, String strIoTSlaveObjectHostAdd, String strObjName) {
+	/*private String getCmdJavaDriverIoTSlave(String strIoTMasterHostAdd, String strIoTSlaveObjectHostAdd, String strObjName) {
 
 		return STR_SSH + " " + STR_USERNAME + strIoTSlaveObjectHostAdd + " cd " + STR_RUNTIME_DIR + " sudo java " +
 			STR_CLS_PATH + " " + STR_RMI_PATH + " " + STR_RMI_HOSTNAME +
 			strIoTSlaveObjectHostAdd + " " + STR_IOT_SLAVE_CLS + " " + strIoTMasterHostAdd + " " +
 			commHan.getComPort(strObjName) + " " + commHan.getRMIRegPort(strObjName) + " " +
 			commHan.getRMIStubPort(strObjName) + " >& " + STR_LOG_FILE_PATH + strObjName + ".log &";
+	}*/
+	private String getCmdJavaDriverIoTSlave(String strIoTMasterHostAdd, String strIoTSlaveObjectHostAdd, String strObjName) {
+
+		// Create an Shell executable
+		String strJavaCommand =	STR_SHELL_HEADER + "\nexec " + STR_JAVA_PATH + " " + STR_CLS_PATH + " " + STR_RMI_PATH + " " + 
+			STR_RMI_HOSTNAME + strIoTSlaveObjectHostAdd + " " + STR_IOT_SLAVE_CLS + " " + strIoTMasterHostAdd + " " +
+			commHan.getComPort(strObjName) + " " + commHan.getRMIRegPort(strObjName) + " " +
+			commHan.getRMIStubPort(strObjName) + " > " + STR_LOG_FILE_PATH + strObjName + ".log &";
+		String shellFile = "./" + strObjName + STR_SHELL_FILE_EXT;
+		createWrapperShellScript(strJavaCommand, shellFile);
+		// Send the file to the compute node
+		String strCmdSend = "scp " + shellFile + " " + STR_USERNAME + strIoTSlaveObjectHostAdd + ":" + STR_RUNTIME_DIR;
+		runCommand(strCmdSend);
+		System.out.println("IoTMaster: Sending shell file: " + strCmdSend);
+		return STR_SSH + " " + STR_USERNAME + strIoTSlaveObjectHostAdd + " cd " + STR_RUNTIME_DIR + " " + shellFile;
 	}
 
 
@@ -893,6 +929,22 @@ public class IoTMaster {
 	}
 
 
+	/**
+	 * createWrapperShellScript() gets a wrapper shell script
+	 *
+	 * @param   strCommand 		String command
+	 * @param   strObjectName 	String object name
+	 * @return  PrintWriter
+	 */
+	private void createWrapperShellScript(String strCommand, String strFileName) {
+
+		PrintWriter printWriter = getPrintWriter(strFileName);
+		printWriter.println(strCommand);
+		printWriter.close();
+		runCommand("chmod 755 " + strFileName);
+	}
+
+
 	/**
 	 * A private method to create an object on a specific machine
 	 *
@@ -1500,7 +1552,7 @@ public class IoTMaster {
 	 *
 	 * @return       String
 	 */
-	private String getCmdJavaIoTSlave(String strObjControllerName) {
+	/*private String getCmdJavaIoTSlave(String strObjControllerName) {
 
 		return STR_SSH + " " + STR_USERNAME + strIoTSlaveControllerHostAdd + " cd " +
 					STR_RUNTIME_DIR + " sudo java " + STR_JVM_INIT_HEAP_SIZE + " " + 
@@ -1510,6 +1562,22 @@ public class IoTMaster {
 					commHan.getRMIRegPort(strObjControllerName) + " " +
 					commHan.getRMIStubPort(strObjControllerName) + " >& " +
 					STR_LOG_FILE_PATH + strObjControllerName + ".log &";
+	}*/
+	private String getCmdJavaIoTSlave(String strObjControllerName) {
+
+		// Create an Shell executable
+		String strJavaCommand =	STR_SHELL_HEADER + "\nexec " + STR_JAVA_PATH + " " + STR_JVM_INIT_HEAP_SIZE + " " + 
+					STR_JVM_MAX_HEAP_SIZE + " " + STR_CLS_PATH + " " + STR_RMI_PATH + " " + STR_IOT_SLAVE_CLS + " " + 
+					strIoTMasterHostAdd + " " + commHan.getComPort(strObjControllerName) + " " +
+					commHan.getRMIRegPort(strObjControllerName) + " " + commHan.getRMIStubPort(strObjControllerName) + 
+					" > " + STR_LOG_FILE_PATH + strObjControllerName + ".log &";
+		String shellFile = "./" + strObjControllerName + STR_SHELL_FILE_EXT;
+		createWrapperShellScript(strJavaCommand, shellFile);
+		// Send the file to the compute node
+		String strCmdSend = "scp " + shellFile + " " + STR_USERNAME + strIoTSlaveControllerHostAdd + ":" + STR_RUNTIME_DIR;
+		runCommand(strCmdSend);
+		System.out.println("IoTMaster: Sending main controller shell file: " + strCmdSend);
+		return STR_SSH + " " + STR_USERNAME + strIoTSlaveControllerHostAdd + " cd " + STR_RUNTIME_DIR + " " + shellFile;
 	}
 
 
diff --git a/iotjava/iotruntime/master/RouterConfig.java b/iotjava/iotruntime/master/RouterConfig.java
index 8e23ce1..821922c 100644
--- a/iotjava/iotruntime/master/RouterConfig.java
+++ b/iotjava/iotruntime/master/RouterConfig.java
@@ -62,7 +62,7 @@ public final class RouterConfig {
 	 * getPrintWriter() gets the right PrintWriter object to print policies to the right file
 	 *
 	 * @param   strConfigHost String hostname to be configured
-	 * @return  void
+	 * @return  PrintWriter
 	 */
 	private PrintWriter getPrintWriter(String strConfigHost) {
 
diff --git a/localconfig/tomoyo/AmcrestCamera.tomoyo.pol b/localconfig/tomoyo/AmcrestCamera.tomoyo.pol
new file mode 100644
index 0000000..369edfc
--- /dev/null
+++ b/localconfig/tomoyo/AmcrestCamera.tomoyo.pol
@@ -0,0 +1,152 @@
+<kernel> /usr/sbin/sshd /bin/bash /home/iotuser/iot2/iotjava/iotruntime/AmcrestCamera<object-id>.sh /usr/bin/java
+use_profile 3
+use_group 0
+
+misc env MAIL
+misc env SSH_CLIENT
+misc env USER
+misc env SHLVL
+misc env HOME
+misc env OLDPWD
+misc env LOGNAME
+misc env _
+misc env XDG_SESSION_ID
+misc env PATH
+misc env XDG_RUNTIME_DIR
+misc env LANG
+misc env SHELL
+misc env PWD
+misc env SSH_CONNECTION
+file read /etc/ld.so.preload
+file read /usr/lib/jvm/jdk-8-oracle-arm32-vfp-hflt/jre/lib/arm/jli/libjli.so
+file read /usr/lib/jvm/jdk-8-oracle-arm32-vfp-hflt/jre/lib/arm/jvm.cfg
+file read /usr/lib/jvm/jdk-8-oracle-arm32-vfp-hflt/jre/lib/arm/client/libjvm.so
+file read /usr/lib/jvm/jdk-8-oracle-arm32-vfp-hflt/jre/lib/arm/libverify.so
+file read /usr/lib/jvm/jdk-8-oracle-arm32-vfp-hflt/jre/lib/arm/libjava.so
+network unix stream connect /var/run/nscd/socket
+file read /etc/nsswitch.conf
+file read /etc/passwd
+file create /tmp/hsperfdata_iotuser/\* 0600
+file read/write/unlink/truncate /tmp/hsperfdata_iotuser/\*
+file read /usr/lib/jvm/jdk-8-oracle-arm32-vfp-hflt/jre/lib/arm/libzip.so
+file read /usr/lib/jvm/jdk-8-oracle-arm32-vfp-hflt/jre/lib/meta-index
+file read /usr/lib/jvm/jdk-8-oracle-arm32-vfp-hflt/jre/lib/rt.jar
+file read /sys/devices/system/cpu/online
+file read /usr/lib/locale/locale-archive
+file read /usr/lib/jvm/jdk-8-oracle-arm32-vfp-hflt/jre/lib/ext/meta-index
+file write/truncate /home/iotuser/.oracle_jre_usage/81970c018e7540cf.timestamp
+file read /usr/share/java/servlet-api-2.5.jar
+file read /usr/share/java/asm-all-5.0.3.jar
+file read /usr/share/java/BoofCV-WebcamCapture-0.21.jar
+file read /usr/share/java/core-0.28.jar
+file read /usr/share/java/jurt-4.3.3.jar
+file read /usr/share/java/ridl-4.3.3.jar
+file read /usr/share/java/unoloader.jar
+file read /usr/share/java/BoofCV-xuggler-0.21-sources.jar
+file read /usr/share/java/xpp3_min-1.1.4c.jar
+file read /usr/share/java/simple-0.29.jar
+file read /usr/share/java/BoofCV-recognition-0.21-sources.jar
+file read /usr/share/java/BoofCV-feature-0.21.jar
+file read /usr/share/java/jsp-api-2.1.jar
+file read /usr/share/java/mysql-connector-java-5.1.39.jar
+file read /usr/share/java/BoofCV-jcodec-0.21-sources.jar
+file read /usr/share/java/BoofCV-visualize-0.21-sources.jar
+file read /usr/share/java/BoofCV-WebcamCapture-0.21-sources.jar
+file read /usr/share/java/GeoRegression-georegression-0.9-sources.jar
+file read /usr/share/java/el-api-2.1.jar
+file read /usr/share/java/unoil-4.3.3.jar
+file read /usr/share/java/GeoRegression-experimental-0.9-sources.jar
+file read /usr/share/java/xmlpull-1.1.3.1.jar
+file read /usr/share/java/georegression-0.10.jar
+file read /usr/share/java/BoofCV-android-0.21.jar
+file read /usr/share/java/BoofCV-ip-0.21.jar
+file read /usr/share/java/BoofCV-android-0.21-sources.jar
+file read /usr/share/java/hsqldb1.8.0-1.8.0.10+dfsg.jar
+file read /usr/share/java/BoofCV-sfm-0.21.jar
+file read /usr/share/java/BoofCV-visualize-0.21.jar
+file read /usr/share/java/BoofCV-geo-0.21-sources.jar
+file read /usr/share/java/core-0.29.jar
+file read /usr/share/java/libintl.jar
+file read /usr/share/java/BoofCV-io-0.21-sources.jar
+file read /usr/share/java/BoofCV-io-0.21.jar
+file read /usr/share/java/hsqldbutil1.8.0-1.8.0.10+dfsg.jar
+file read /usr/share/java/dense64-0.28.jar
+file read /usr/share/java/BoofCV-xuggler-0.21.jar
+file read /usr/share/java/BoofCV-learning-0.21.jar
+file read /usr/share/java/BoofCV-sfm-0.21-sources.jar
+file read /usr/share/java/zip4j_1.3.2.jar
+file read /usr/share/java/ddogleg-0.8-SNAPSHOT.jar
+file read /usr/share/java/BoofCV-openkinect-0.21.jar
+file read /usr/share/java/dense64-0.29.jar
+file read /usr/share/java/juh-4.3.3.jar
+file read /usr/share/java/jl1.0.1.jar
+file read /usr/share/java/BoofCV-jcodec-0.21.jar
+file read /usr/share/java/BoofCV-ip-0.21-sources.jar
+file read /usr/share/java/GeoRegression-experimental-0.9.jar
+file read /usr/share/java/GeoRegression-georegression-0.9.jar
+file read /usr/share/java/java-json.jar
+file read /usr/share/java/ddogleg-0.9.jar
+file read /usr/share/java/xstream-1.4.7.jar
+file read /usr/share/java/BoofCV-geo-0.21.jar
+file read /usr/share/java/java_uno.jar
+file read /usr/share/java/BoofCV-calibration-0.21.jar
+file read /usr/share/java/javac.jar
+file read /usr/share/java/BoofCV-recognition-0.21.jar
+file read /usr/share/java/checker.jar
+file read /usr/share/java/BoofCV-feature-0.21-sources.jar
+file read /usr/share/java/BoofCV-openkinect-0.21-sources.jar
+file read /usr/share/java/equation-0.29.jar
+file read /usr/share/java/simple-0.28.jar
+file read /usr/share/java/BoofCV-learning-0.21-sources.jar
+file read /usr/share/java/equation-0.28.jar
+file read /usr/share/java/BoofCV-calibration-0.21-sources.jar
+file read /home/iotuser/iot2/iotjava/iotruntime/slave/IoTSlave.class
+file read /home/iotuser/iot2/iotjava/iotruntime/IoTSlave.config
+file read /usr/lib/jvm/jdk-8-oracle-arm32-vfp-hflt/jre/lib/arm/libnet.so
+file read /usr/lib/jvm/jdk-8-oracle-arm32-vfp-hflt/jre/lib/net.properties
+network inet stream connect ::ffff:<master-ip-address> <master-com-port>
+file read /home/iotuser/iot2/iotjava/iotruntime/master/RuntimeOutput.class
+file read /home/iotuser/iot2/iotjava/iotruntime/messages/MessageSendFile.class
+file read /home/iotuser/iot2/iotjava/iotruntime/messages/Message.class
+file read /home/iotuser/iot2/iotjava/iotruntime/messages/IoTCommCode.class
+file read /usr/lib/jvm/jdk-8-oracle-arm32-vfp-hflt/jre/lib/security/java.security
+file read /usr/lib/jvm/jdk-8-oracle-arm32-vfp-hflt/jre/lib/jsse.jar
+file read /dev/random
+file read /dev/urandom
+file read /home/iotuser/iot2/iotjava/iotruntime/slave/IoTSlave$3.class
+file read /home/iotuser/iot2/iotjava/iotruntime/messages/MessageSimple.class
+file create /home/iotuser/iot2/iotjava/iotruntime/AmcrestCamera.jar 0666
+file read/write /home/iotuser/iot2/iotjava/iotruntime/AmcrestCamera.jar
+file read /home/iotuser/iot2/iotjava/iotruntime/messages/MessageCreateObject.class
+file read /home/iotuser/iot2/iotjava/iotrmi/Java/IoTRMIComm.class
+file read /home/iotuser/iot2/iotjava/iotrmi/Java/IoTRMICommServer.class
+file read /home/iotuser/iot2/iotjava/iotruntime/slave/IoTSlave$1.class
+file read /home/iotuser/iot2/iotjava/iotrmi/Java/IoTRMIComm$1.class
+file read /home/iotuser/iot2/iotjava/iotrmi/Java/IoTRMIComm$2.class
+file read /home/iotuser/iot2/iotjava/iotrmi/Java/IoTRMICommServer$1.class
+file read /home/iotuser/iot2/iotjava/iotrmi/Java/IoTRMICommServer$2.class
+file read /home/iotuser/iot2/iotjava/iotrmi/Java/IoTRMICommServer$3.class
+file read /home/iotuser/iot2/iotjava/iotrmi/Java/IoTRMIUtil.class
+file read /home/iotuser/iot2/iotjava/iotruntime/messages/MessageCreateSetRelation.class
+file read /home/iotuser/iot2/iotjava/iotruntime/slave/ISet.class
+file read /home/iotuser/iot2/iotjava/iotrmi/Java/IoTRMITypes.class
+file read /home/iotuser/iot2/iotjava/iotrmi/Java/IoTSocketServer.class
+file read /home/iotuser/iot2/iotjava/iotrmi/Java/IoTSocket.class
+file read /home/iotuser/iot2/iotjava/iotruntime/messages/MessageGetDeviceObject.class
+file read /home/iotuser/iot2/iotjava/iotruntime/slave/IoTDeviceAddress.class
+file read /home/iotuser/iot2/iotjava/iotruntime/slave/IoTAddress.class
+file read /home/iotuser/iot2/iotjava/iotruntime/slave/IoTSet.class
+file ioctl socket:[family=10:type=1:protocol=6] 0x541B
+file read /home/iotuser/iot2/iotjava/iotruntime/IoTHTTP.class
+file read /home/iotuser/iot2/iotjava/iotrmi/Java/IoTRMICommClient.class
+file read /usr/lib/jvm/jdk-8-oracle-arm32-vfp-hflt/jre/lib/charsets.jar
+file read /usr/lib/jvm/jdk-8-oracle-arm32-vfp-hflt/jre/lib/arm/libawt.so
+file read /usr/lib/jvm/jdk-8-oracle-arm32-vfp-hflt/jre/lib/arm/libawt_headless.so
+file read /usr/share/locale/en_GB/LC_MESSAGES/libc.mo
+file read /usr/lib/jvm/jdk-8-oracle-arm32-vfp-hflt/jre/lib/arm/libnio.so
+file read /usr/lib/jvm/jdk-8-oracle-arm32-vfp-hflt/jre/lib/arm/libjpeg.so
+file create /tmp/imageio\*.tmp 0600
+file read/write/unlink /tmp/imageio\*.tmp
+network inet stream bind/listen :: <rmi-stub-port>
+network inet stream bind/listen :: <rmi-reg-port>
+network inet stream connect ::ffff:<device-ip-address> 80
diff --git a/localconfig/tomoyo/LabRoom.tomoyo.pol b/localconfig/tomoyo/LabRoom.tomoyo.pol
new file mode 100644
index 0000000..2267a14
--- /dev/null
+++ b/localconfig/tomoyo/LabRoom.tomoyo.pol
@@ -0,0 +1,138 @@
+<kernel> /usr/sbin/sshd /bin/bash /home/iotuser/iot2/iotjava/iotruntime/LabRoom<object-id>.sh /usr/bin/java
+use_profile 3
+use_group 0
+
+misc env MAIL
+misc env SSH_CLIENT
+misc env USER
+misc env SHLVL
+misc env HOME
+misc env OLDPWD
+misc env LOGNAME
+misc env _
+misc env XDG_SESSION_ID
+misc env PATH
+misc env XDG_RUNTIME_DIR
+misc env LANG
+misc env SHELL
+misc env PWD
+misc env SSH_CONNECTION
+file read /etc/ld.so.preload
+file read /usr/lib/jvm/jdk-8-oracle-arm32-vfp-hflt/jre/lib/arm/jli/libjli.so
+file read /usr/lib/jvm/jdk-8-oracle-arm32-vfp-hflt/jre/lib/arm/jvm.cfg
+file read /usr/lib/jvm/jdk-8-oracle-arm32-vfp-hflt/jre/lib/arm/client/libjvm.so
+file read /usr/lib/jvm/jdk-8-oracle-arm32-vfp-hflt/jre/lib/arm/libverify.so
+file read /usr/lib/jvm/jdk-8-oracle-arm32-vfp-hflt/jre/lib/arm/libjava.so
+network unix stream connect /var/run/nscd/socket
+file read /etc/nsswitch.conf
+file read /etc/passwd
+file create /tmp/hsperfdata_iotuser/\* 0600
+file read/write/unlink/truncate /tmp/hsperfdata_iotuser/\*
+file read /usr/lib/jvm/jdk-8-oracle-arm32-vfp-hflt/jre/lib/arm/libzip.so
+file read /usr/lib/jvm/jdk-8-oracle-arm32-vfp-hflt/jre/lib/meta-index
+file read /usr/lib/jvm/jdk-8-oracle-arm32-vfp-hflt/jre/lib/rt.jar
+file read /sys/devices/system/cpu/online
+file read /usr/lib/locale/locale-archive
+file read /usr/lib/jvm/jdk-8-oracle-arm32-vfp-hflt/jre/lib/ext/meta-index
+file write/truncate /home/iotuser/.oracle_jre_usage/81970c018e7540cf.timestamp
+file read /usr/share/java/servlet-api-2.5.jar
+file read /usr/share/java/asm-all-5.0.3.jar
+file read /usr/share/java/BoofCV-WebcamCapture-0.21.jar
+file read /usr/share/java/core-0.28.jar
+file read /usr/share/java/jurt-4.3.3.jar
+file read /usr/share/java/ridl-4.3.3.jar
+file read /usr/share/java/unoloader.jar
+file read /usr/share/java/BoofCV-xuggler-0.21-sources.jar
+file read /usr/share/java/xpp3_min-1.1.4c.jar
+file read /usr/share/java/simple-0.29.jar
+file read /usr/share/java/BoofCV-recognition-0.21-sources.jar
+file read /usr/share/java/BoofCV-feature-0.21.jar
+file read /usr/share/java/jsp-api-2.1.jar
+file read /usr/share/java/mysql-connector-java-5.1.39.jar
+file read /usr/share/java/BoofCV-jcodec-0.21-sources.jar
+file read /usr/share/java/BoofCV-visualize-0.21-sources.jar
+file read /usr/share/java/BoofCV-WebcamCapture-0.21-sources.jar
+file read /usr/share/java/GeoRegression-georegression-0.9-sources.jar
+file read /usr/share/java/el-api-2.1.jar
+file read /usr/share/java/unoil-4.3.3.jar
+file read /usr/share/java/GeoRegression-experimental-0.9-sources.jar
+file read /usr/share/java/xmlpull-1.1.3.1.jar
+file read /usr/share/java/georegression-0.10.jar
+file read /usr/share/java/BoofCV-android-0.21.jar
+file read /usr/share/java/BoofCV-ip-0.21.jar
+file read /usr/share/java/BoofCV-android-0.21-sources.jar
+file read /usr/share/java/hsqldb1.8.0-1.8.0.10+dfsg.jar
+file read /usr/share/java/BoofCV-sfm-0.21.jar
+file read /usr/share/java/BoofCV-visualize-0.21.jar
+file read /usr/share/java/BoofCV-geo-0.21-sources.jar
+file read /usr/share/java/core-0.29.jar
+file read /usr/share/java/libintl.jar
+file read /usr/share/java/BoofCV-io-0.21-sources.jar
+file read /usr/share/java/BoofCV-io-0.21.jar
+file read /usr/share/java/hsqldbutil1.8.0-1.8.0.10+dfsg.jar
+file read /usr/share/java/dense64-0.28.jar
+file read /usr/share/java/BoofCV-xuggler-0.21.jar
+file read /usr/share/java/BoofCV-learning-0.21.jar
+file read /usr/share/java/BoofCV-sfm-0.21-sources.jar
+file read /usr/share/java/zip4j_1.3.2.jar
+file read /usr/share/java/ddogleg-0.8-SNAPSHOT.jar
+file read /usr/share/java/BoofCV-openkinect-0.21.jar
+file read /usr/share/java/dense64-0.29.jar
+file read /usr/share/java/juh-4.3.3.jar
+file read /usr/share/java/jl1.0.1.jar
+file read /usr/share/java/BoofCV-jcodec-0.21.jar
+file read /usr/share/java/BoofCV-ip-0.21-sources.jar
+file read /usr/share/java/GeoRegression-experimental-0.9.jar
+file read /usr/share/java/GeoRegression-georegression-0.9.jar
+file read /usr/share/java/java-json.jar
+file read /usr/share/java/ddogleg-0.9.jar
+file read /usr/share/java/xstream-1.4.7.jar
+file read /usr/share/java/BoofCV-geo-0.21.jar
+file read /usr/share/java/java_uno.jar
+file read /usr/share/java/BoofCV-calibration-0.21.jar
+file read /usr/share/java/javac.jar
+file read /usr/share/java/BoofCV-recognition-0.21.jar
+file read /usr/share/java/checker.jar
+file read /usr/share/java/BoofCV-feature-0.21-sources.jar
+file read /usr/share/java/BoofCV-openkinect-0.21-sources.jar
+file read /usr/share/java/equation-0.29.jar
+file read /usr/share/java/simple-0.28.jar
+file read /usr/share/java/BoofCV-learning-0.21-sources.jar
+file read /usr/share/java/equation-0.28.jar
+file read /usr/share/java/BoofCV-calibration-0.21-sources.jar
+file read /home/iotuser/iot2/iotjava/iotruntime/slave/IoTSlave.class
+file read /home/iotuser/iot2/iotjava/iotruntime/IoTSlave.config
+file read /usr/lib/jvm/jdk-8-oracle-arm32-vfp-hflt/jre/lib/arm/libnet.so
+file read /usr/lib/jvm/jdk-8-oracle-arm32-vfp-hflt/jre/lib/net.properties
+network inet stream connect ::ffff:<master-ip-address> <master-com-port>
+file read /home/iotuser/iot2/iotjava/iotruntime/master/RuntimeOutput.class
+file read /home/iotuser/iot2/iotjava/iotruntime/messages/MessageSendFile.class
+file read /home/iotuser/iot2/iotjava/iotruntime/messages/Message.class
+file read /home/iotuser/iot2/iotjava/iotruntime/messages/IoTCommCode.class
+file read /usr/lib/jvm/jdk-8-oracle-arm32-vfp-hflt/jre/lib/security/java.security
+file read /usr/lib/jvm/jdk-8-oracle-arm32-vfp-hflt/jre/lib/jsse.jar
+file read /dev/random
+file read /dev/urandom
+file read /home/iotuser/iot2/iotjava/iotruntime/slave/IoTSlave$3.class
+file read /home/iotuser/iot2/iotjava/iotruntime/messages/MessageSimple.class
+file create /home/iotuser/iot2/iotjava/iotruntime/LabRoom.jar 0666
+file read/write /home/iotuser/iot2/iotjava/iotruntime/LabRoom.jar
+file read /home/iotuser/iot2/iotjava/iotruntime/messages/MessageCreateObject.class
+file read /home/iotuser/iot2/iotjava/iotcode/LabRoom/LabRoom.class
+file read /home/iotuser/iot2/iotjava/iotcode/LabRoom/Room_Skeleton.class
+file read /home/iotuser/iot2/iotjava/iotrmi/Java/IoTRMIComm.class
+file read /home/iotuser/iot2/iotjava/iotrmi/Java/IoTRMICommServer.class
+file read /home/iotuser/iot2/iotjava/iotcode/LabRoom/Room_Skeleton$1.class
+file read /home/iotuser/iot2/iotjava/iotruntime/slave/IoTSlave$1.class
+file read /home/iotuser/iot2/iotjava/iotrmi/Java/IoTRMIComm$1.class
+file read /home/iotuser/iot2/iotjava/iotrmi/Java/IoTRMIComm$2.class
+file read /home/iotuser/iot2/iotjava/iotrmi/Java/IoTRMICommServer$1.class
+file read /home/iotuser/iot2/iotjava/iotrmi/Java/IoTRMICommServer$2.class
+file read /home/iotuser/iot2/iotjava/iotrmi/Java/IoTRMICommServer$3.class
+file read /home/iotuser/iot2/iotjava/iotrmi/Java/IoTRMIUtil.class
+file read /home/iotuser/iot2/iotjava/iotrmi/Java/IoTRMITypes.class
+file read /home/iotuser/iot2/iotjava/iotrmi/Java/IoTSocketServer.class
+file read /home/iotuser/iot2/iotjava/iotrmi/Java/IoTSocket.class
+network inet stream bind/listen :: <rmi-stub-port>
+network inet stream bind/listen :: <rmi-reg-port>
+file ioctl socket:[family=10:type=1:protocol=6] 0x541B
diff --git a/localconfig/tomoyo/LifxLightBulb.tomoyo.pol b/localconfig/tomoyo/LifxLightBulb.tomoyo.pol
new file mode 100644
index 0000000..9e4e2f7
--- /dev/null
+++ b/localconfig/tomoyo/LifxLightBulb.tomoyo.pol
@@ -0,0 +1,154 @@
+<kernel> /usr/sbin/sshd /bin/bash /home/iotuser/iot2/iotjava/iotruntime/LifxLightBulb<object-id>.sh /usr/bin/java
+use_profile 3
+use_group 0
+
+misc env MAIL
+misc env SSH_CLIENT
+misc env USER
+misc env SHLVL
+misc env HOME
+misc env OLDPWD
+misc env LOGNAME
+misc env _
+misc env XDG_SESSION_ID
+misc env PATH
+misc env XDG_RUNTIME_DIR
+misc env LANG
+misc env SHELL
+misc env PWD
+misc env SSH_CONNECTION
+file read /etc/ld.so.preload
+file read /usr/lib/jvm/jdk-8-oracle-arm32-vfp-hflt/jre/lib/arm/jli/libjli.so
+file read /usr/lib/jvm/jdk-8-oracle-arm32-vfp-hflt/jre/lib/arm/jvm.cfg
+file read /usr/lib/jvm/jdk-8-oracle-arm32-vfp-hflt/jre/lib/arm/client/libjvm.so
+file read /usr/lib/jvm/jdk-8-oracle-arm32-vfp-hflt/jre/lib/arm/libverify.so
+file read /usr/lib/jvm/jdk-8-oracle-arm32-vfp-hflt/jre/lib/arm/libjava.so
+network unix stream connect /var/run/nscd/socket
+file read /etc/nsswitch.conf
+file read /etc/passwd
+file create /tmp/hsperfdata_iotuser/\* 0600
+file read/write/unlink/truncate /tmp/hsperfdata_iotuser/\*
+file read /usr/lib/jvm/jdk-8-oracle-arm32-vfp-hflt/jre/lib/arm/libzip.so
+file read /usr/lib/jvm/jdk-8-oracle-arm32-vfp-hflt/jre/lib/meta-index
+file read /usr/lib/jvm/jdk-8-oracle-arm32-vfp-hflt/jre/lib/rt.jar
+file read /sys/devices/system/cpu/online
+file read /usr/lib/locale/locale-archive
+file read /usr/lib/jvm/jdk-8-oracle-arm32-vfp-hflt/jre/lib/ext/meta-index
+file write/truncate /home/iotuser/.oracle_jre_usage/81970c018e7540cf.timestamp
+file read /usr/share/java/servlet-api-2.5.jar
+file read /usr/share/java/asm-all-5.0.3.jar
+file read /usr/share/java/BoofCV-WebcamCapture-0.21.jar
+file read /usr/share/java/core-0.28.jar
+file read /usr/share/java/jurt-4.3.3.jar
+file read /usr/share/java/ridl-4.3.3.jar
+file read /usr/share/java/unoloader.jar
+file read /usr/share/java/BoofCV-xuggler-0.21-sources.jar
+file read /usr/share/java/xpp3_min-1.1.4c.jar
+file read /usr/share/java/simple-0.29.jar
+file read /usr/share/java/BoofCV-recognition-0.21-sources.jar
+file read /usr/share/java/BoofCV-feature-0.21.jar
+file read /usr/share/java/jsp-api-2.1.jar
+file read /usr/share/java/mysql-connector-java-5.1.39.jar
+file read /usr/share/java/BoofCV-jcodec-0.21-sources.jar
+file read /usr/share/java/BoofCV-visualize-0.21-sources.jar
+file read /usr/share/java/BoofCV-WebcamCapture-0.21-sources.jar
+file read /usr/share/java/GeoRegression-georegression-0.9-sources.jar
+file read /usr/share/java/el-api-2.1.jar
+file read /usr/share/java/unoil-4.3.3.jar
+file read /usr/share/java/GeoRegression-experimental-0.9-sources.jar
+file read /usr/share/java/xmlpull-1.1.3.1.jar
+file read /usr/share/java/georegression-0.10.jar
+file read /usr/share/java/BoofCV-android-0.21.jar
+file read /usr/share/java/BoofCV-ip-0.21.jar
+file read /usr/share/java/BoofCV-android-0.21-sources.jar
+file read /usr/share/java/hsqldb1.8.0-1.8.0.10+dfsg.jar
+file read /usr/share/java/BoofCV-sfm-0.21.jar
+file read /usr/share/java/BoofCV-visualize-0.21.jar
+file read /usr/share/java/BoofCV-geo-0.21-sources.jar
+file read /usr/share/java/core-0.29.jar
+file read /usr/share/java/libintl.jar
+file read /usr/share/java/BoofCV-io-0.21-sources.jar
+file read /usr/share/java/BoofCV-io-0.21.jar
+file read /usr/share/java/hsqldbutil1.8.0-1.8.0.10+dfsg.jar
+file read /usr/share/java/dense64-0.28.jar
+file read /usr/share/java/BoofCV-xuggler-0.21.jar
+file read /usr/share/java/BoofCV-learning-0.21.jar
+file read /usr/share/java/BoofCV-sfm-0.21-sources.jar
+file read /usr/share/java/zip4j_1.3.2.jar
+file read /usr/share/java/ddogleg-0.8-SNAPSHOT.jar
+file read /usr/share/java/BoofCV-openkinect-0.21.jar
+file read /usr/share/java/dense64-0.29.jar
+file read /usr/share/java/juh-4.3.3.jar
+file read /usr/share/java/jl1.0.1.jar
+file read /usr/share/java/BoofCV-jcodec-0.21.jar
+file read /usr/share/java/BoofCV-ip-0.21-sources.jar
+file read /usr/share/java/GeoRegression-experimental-0.9.jar
+file read /usr/share/java/GeoRegression-georegression-0.9.jar
+file read /usr/share/java/java-json.jar
+file read /usr/share/java/ddogleg-0.9.jar
+file read /usr/share/java/xstream-1.4.7.jar
+file read /usr/share/java/BoofCV-geo-0.21.jar
+file read /usr/share/java/java_uno.jar
+file read /usr/share/java/BoofCV-calibration-0.21.jar
+file read /usr/share/java/javac.jar
+file read /usr/share/java/BoofCV-recognition-0.21.jar
+file read /usr/share/java/checker.jar
+file read /usr/share/java/BoofCV-feature-0.21-sources.jar
+file read /usr/share/java/BoofCV-openkinect-0.21-sources.jar
+file read /usr/share/java/equation-0.29.jar
+file read /usr/share/java/simple-0.28.jar
+file read /usr/share/java/BoofCV-learning-0.21-sources.jar
+file read /usr/share/java/equation-0.28.jar
+file read /usr/share/java/BoofCV-calibration-0.21-sources.jar
+file read /home/iotuser/iot2/iotjava/iotruntime/slave/IoTSlave.class
+file read /home/iotuser/iot2/iotjava/iotruntime/IoTSlave.config
+file read /usr/lib/jvm/jdk-8-oracle-arm32-vfp-hflt/jre/lib/arm/libnet.so
+file read /usr/lib/jvm/jdk-8-oracle-arm32-vfp-hflt/jre/lib/net.properties
+network inet stream connect ::ffff:192.168.2.108 <master-com-port>
+file read /home/iotuser/iot2/iotjava/iotruntime/master/RuntimeOutput.class
+file read /home/iotuser/iot2/iotjava/iotruntime/messages/MessageSendFile.class
+file read /home/iotuser/iot2/iotjava/iotruntime/messages/Message.class
+file read /home/iotuser/iot2/iotjava/iotruntime/messages/IoTCommCode.class
+file read /usr/lib/jvm/jdk-8-oracle-arm32-vfp-hflt/jre/lib/security/java.security
+file read /usr/lib/jvm/jdk-8-oracle-arm32-vfp-hflt/jre/lib/jsse.jar
+file read /dev/random
+file read /dev/urandom
+file read /home/iotuser/iot2/iotjava/iotruntime/slave/IoTSlave$3.class
+file read /home/iotuser/iot2/iotjava/iotruntime/messages/MessageSimple.class
+file create /home/iotuser/iot2/iotjava/iotruntime/LifxLightBulb.jar 0666
+file read/write /home/iotuser/iot2/iotjava/iotruntime/LifxLightBulb.jar
+file read /home/iotuser/iot2/iotjava/iotruntime/messages/MessageCreateObject.class
+file read /home/iotuser/iot2/iotjava/iotcode/LifxLightBulb/LifxLightBulb.class
+file read /home/iotuser/iot2/iotjava/iotcode/LifxLightBulb/LightBulb_Skeleton.class
+file read /home/iotuser/iot2/iotjava/iotrmi/Java/IoTRMIComm.class
+file read /home/iotuser/iot2/iotjava/iotrmi/Java/IoTRMICommServer.class
+file read /home/iotuser/iot2/iotjava/iotcode/LifxLightBulb/LightBulb_Skeleton$1.class
+file read /home/iotuser/iot2/iotjava/iotruntime/slave/IoTSlave$1.class
+file read /home/iotuser/iot2/iotjava/iotrmi/Java/IoTRMIComm$1.class
+file read /home/iotuser/iot2/iotjava/iotrmi/Java/IoTRMIComm$2.class
+file read /home/iotuser/iot2/iotjava/iotruntime/messages/MessageCreateSetRelation.class
+file read /home/iotuser/iot2/iotjava/iotrmi/Java/IoTRMICommServer$1.class
+file read /home/iotuser/iot2/iotjava/iotrmi/Java/IoTRMICommServer$2.class
+file read /home/iotuser/iot2/iotjava/iotruntime/slave/ISet.class
+file read /home/iotuser/iot2/iotjava/iotrmi/Java/IoTRMICommServer$3.class
+file read /home/iotuser/iot2/iotjava/iotrmi/Java/IoTRMIUtil.class
+file read /home/iotuser/iot2/iotjava/iotruntime/messages/MessageGetDeviceObject.class
+file read /home/iotuser/iot2/iotjava/iotrmi/Java/IoTRMITypes.class
+file read /home/iotuser/iot2/iotjava/iotruntime/slave/IoTDeviceAddress.class
+file read /home/iotuser/iot2/iotjava/iotruntime/slave/IoTAddress.class
+file read /home/iotuser/iot2/iotjava/iotrmi/Java/IoTSocketServer.class
+file read /home/iotuser/iot2/iotjava/iotrmi/Java/IoTSocket.class
+file read /home/iotuser/iot2/iotjava/iotruntime/slave/IoTSet.class
+file read /home/iotuser/iot2/iotjava/iotruntime/IoTUDP.class
+network inet stream bind/listen :: <rmi-stub-port>
+network inet stream bind/listen :: <rmi-reg-port>
+file ioctl socket:[family=10:type=1:protocol=6] 0x541B
+file read /home/iotuser/iot2/iotjava/iotcode/LifxLightBulb/LightBulb_Skeleton$2.class
+network inet dgram bind :: <device-com-port>
+file read /home/iotuser/iot2/iotjava/iotcode/LifxLightBulb/LifxLightBulb$1.class
+file read /home/iotuser/iot2/iotjava/iotcode/LifxLightBulb/LifxHeader.class
+network inet dgram send ::ffff:<device-ip-address> 56700
+file read /home/iotuser/iot2/iotjava/iotcode/LifxLightBulb/DeviceStateVersion.class
+file read /home/iotuser/iot2/iotjava/iotcode/LifxLightBulb/BulbColor.class
+file read /home/iotuser/iot2/iotjava/iotcode/LifxLightBulb/LightState.class
+file read /home/iotuser/iot2/iotjava/iotcode/LifxLightBulb/LightBulb_Skeleton$5.class
diff --git a/localconfig/tomoyo/SmartLightsController.tomoyo.pol b/localconfig/tomoyo/SmartLightsController.tomoyo.pol
new file mode 100644
index 0000000..b9a712a
--- /dev/null
+++ b/localconfig/tomoyo/SmartLightsController.tomoyo.pol
@@ -0,0 +1,173 @@
+<kernel> /usr/sbin/sshd /bin/bash /home/iotuser/iot2/iotjava/iotruntime/SmartLightsController.sh /usr/bin/java
+use_profile 3
+use_group 0
+
+misc env MAIL
+misc env SSH_CLIENT
+misc env USER
+misc env SHLVL
+misc env HOME
+misc env OLDPWD
+misc env LOGNAME
+misc env _
+misc env XDG_SESSION_ID
+misc env PATH
+misc env XDG_RUNTIME_DIR
+misc env LANG
+misc env SHELL
+misc env PWD
+misc env SSH_CONNECTION
+file read /etc/ld.so.preload
+file read /usr/lib/jvm/jdk-8-oracle-arm32-vfp-hflt/jre/lib/arm/jli/libjli.so
+file read /usr/lib/jvm/jdk-8-oracle-arm32-vfp-hflt/jre/lib/arm/jvm.cfg
+file read /usr/lib/jvm/jdk-8-oracle-arm32-vfp-hflt/jre/lib/arm/client/libjvm.so
+file read /usr/lib/jvm/jdk-8-oracle-arm32-vfp-hflt/jre/lib/arm/libverify.so
+file read /usr/lib/jvm/jdk-8-oracle-arm32-vfp-hflt/jre/lib/arm/libjava.so
+network unix stream connect /var/run/nscd/socket
+file read /etc/nsswitch.conf
+file read /etc/passwd
+file create /tmp/hsperfdata_iotuser/\* 0600
+file read/write/unlink/truncate /tmp/hsperfdata_iotuser/\*
+file read /usr/lib/jvm/jdk-8-oracle-arm32-vfp-hflt/jre/lib/arm/libzip.so
+file read /usr/lib/jvm/jdk-8-oracle-arm32-vfp-hflt/jre/lib/meta-index
+file read /usr/lib/jvm/jdk-8-oracle-arm32-vfp-hflt/jre/lib/rt.jar
+file read /sys/devices/system/cpu/online
+file read /usr/lib/locale/locale-archive
+file read /usr/lib/jvm/jdk-8-oracle-arm32-vfp-hflt/jre/lib/ext/meta-index
+file write/truncate /home/iotuser/.oracle_jre_usage/81970c018e7540cf.timestamp
+file read /usr/share/java/servlet-api-2.5.jar
+file read /usr/share/java/asm-all-5.0.3.jar
+file read /usr/share/java/BoofCV-WebcamCapture-0.21.jar
+file read /usr/share/java/core-0.28.jar
+file read /usr/share/java/jurt-4.3.3.jar
+file read /usr/share/java/ridl-4.3.3.jar
+file read /usr/share/java/unoloader.jar
+file read /usr/share/java/BoofCV-xuggler-0.21-sources.jar
+file read /usr/share/java/xpp3_min-1.1.4c.jar
+file read /usr/share/java/simple-0.29.jar
+file read /usr/share/java/BoofCV-recognition-0.21-sources.jar
+file read /usr/share/java/BoofCV-feature-0.21.jar
+file read /usr/share/java/jsp-api-2.1.jar
+file read /usr/share/java/mysql-connector-java-5.1.39.jar
+file read /usr/share/java/BoofCV-jcodec-0.21-sources.jar
+file read /usr/share/java/BoofCV-visualize-0.21-sources.jar
+file read /usr/share/java/BoofCV-WebcamCapture-0.21-sources.jar
+file read /usr/share/java/GeoRegression-georegression-0.9-sources.jar
+file read /usr/share/java/el-api-2.1.jar
+file read /usr/share/java/unoil-4.3.3.jar
+file read /usr/share/java/GeoRegression-experimental-0.9-sources.jar
+file read /usr/share/java/xmlpull-1.1.3.1.jar
+file read /usr/share/java/georegression-0.10.jar
+file read /usr/share/java/BoofCV-android-0.21.jar
+file read /usr/share/java/BoofCV-ip-0.21.jar
+file read /usr/share/java/BoofCV-android-0.21-sources.jar
+file read /usr/share/java/hsqldb1.8.0-1.8.0.10+dfsg.jar
+file read /usr/share/java/BoofCV-sfm-0.21.jar
+file read /usr/share/java/BoofCV-visualize-0.21.jar
+file read /usr/share/java/BoofCV-geo-0.21-sources.jar
+file read /usr/share/java/core-0.29.jar
+file read /usr/share/java/libintl.jar
+file read /usr/share/java/BoofCV-io-0.21-sources.jar
+file read /usr/share/java/BoofCV-io-0.21.jar
+file read /usr/share/java/hsqldbutil1.8.0-1.8.0.10+dfsg.jar
+file read /usr/share/java/dense64-0.28.jar
+file read /usr/share/java/BoofCV-xuggler-0.21.jar
+file read /usr/share/java/BoofCV-learning-0.21.jar
+file read /usr/share/java/BoofCV-sfm-0.21-sources.jar
+file read /usr/share/java/zip4j_1.3.2.jar
+file read /usr/share/java/ddogleg-0.8-SNAPSHOT.jar
+file read /usr/share/java/BoofCV-openkinect-0.21.jar
+file read /usr/share/java/dense64-0.29.jar
+file read /usr/share/java/juh-4.3.3.jar
+file read /usr/share/java/jl1.0.1.jar
+file read /usr/share/java/BoofCV-jcodec-0.21.jar
+file read /usr/share/java/BoofCV-ip-0.21-sources.jar
+file read /usr/share/java/GeoRegression-experimental-0.9.jar
+file read /usr/share/java/GeoRegression-georegression-0.9.jar
+file read /usr/share/java/java-json.jar
+file read /usr/share/java/ddogleg-0.9.jar
+file read /usr/share/java/xstream-1.4.7.jar
+file read /usr/share/java/BoofCV-geo-0.21.jar
+file read /usr/share/java/java_uno.jar
+file read /usr/share/java/BoofCV-calibration-0.21.jar
+file read /usr/share/java/javac.jar
+file read /usr/share/java/BoofCV-recognition-0.21.jar
+file read /usr/share/java/checker.jar
+file read /usr/share/java/BoofCV-feature-0.21-sources.jar
+file read /usr/share/java/BoofCV-openkinect-0.21-sources.jar
+file read /usr/share/java/equation-0.29.jar
+file read /usr/share/java/simple-0.28.jar
+file read /usr/share/java/BoofCV-learning-0.21-sources.jar
+file read /usr/share/java/equation-0.28.jar
+file read /usr/share/java/BoofCV-calibration-0.21-sources.jar
+file read /home/iotuser/iot2/iotjava/iotruntime/slave/IoTSlave.class
+file read /home/iotuser/iot2/iotjava/iotruntime/IoTSlave.config
+file read /usr/lib/jvm/jdk-8-oracle-arm32-vfp-hflt/jre/lib/arm/libnet.so
+file read /usr/lib/jvm/jdk-8-oracle-arm32-vfp-hflt/jre/lib/net.properties
+network inet stream connect ::ffff:<master-ip-address> <master-com-port>
+file read /home/iotuser/iot2/iotjava/iotruntime/master/RuntimeOutput.class
+file read /home/iotuser/iot2/iotjava/iotruntime/messages/MessageSendFile.class
+file read /home/iotuser/iot2/iotjava/iotruntime/messages/Message.class
+file read /home/iotuser/iot2/iotjava/iotruntime/messages/IoTCommCode.class
+file read /usr/lib/jvm/jdk-8-oracle-arm32-vfp-hflt/jre/lib/security/java.security
+file read /usr/lib/jvm/jdk-8-oracle-arm32-vfp-hflt/jre/lib/jsse.jar
+file read /dev/random
+file read /dev/urandom
+file read /home/iotuser/iot2/iotjava/iotruntime/slave/IoTSlave$3.class
+file read /home/iotuser/iot2/iotjava/iotruntime/messages/MessageSimple.class
+file create /home/iotuser/iot2/iotjava/iotruntime/SmartLightsController.jar 0666
+file read/write /home/iotuser/iot2/iotjava/iotruntime/SmartLightsController.jar
+file read /home/iotuser/iot2/iotjava/iotruntime/messages/MessageCreateMainObject.class
+file read /home/iotuser/iot2/iotjava/SmartLightsController/SmartLightsController.class
+file read /home/iotuser/iot2/iotjava/iotruntime/messages/MessageCreateSetRelation.class
+file read /home/iotuser/iot2/iotjava/iotruntime/slave/ISet.class
+file read /home/iotuser/iot2/iotjava/iotruntime/messages/MessageGetObject.class
+file read /home/iotuser/iot2/iotjava/SmartLightsController/CameraSmart_Stub.class
+file read /home/iotuser/iot2/iotjava/SmartLightsController/CameraSmart_Stub$1.class
+file read /home/iotuser/iot2/iotjava/iotrmi/Java/IoTRMIComm.class
+file read /home/iotuser/iot2/iotjava/iotrmi/Java/IoTRMICommClient.class
+file read /home/iotuser/iot2/iotjava/iotrmi/Java/IoTRMIComm$1.class
+file read /home/iotuser/iot2/iotjava/iotrmi/Java/IoTRMIComm$2.class
+file read /home/iotuser/iot2/iotjava/iotrmi/Java/IoTRMICommClient$1.class
+file read /home/iotuser/iot2/iotjava/iotrmi/Java/IoTRMIUtil.class
+file read /home/iotuser/iot2/iotjava/iotrmi/Java/IoTRMITypes.class
+file read /home/iotuser/iot2/iotjava/iotrmi/Java/IoTSocketClient.class
+file read /home/iotuser/iot2/iotjava/iotrmi/Java/IoTSocket.class
+network inet stream connect ::ffff:192.168.2.191 54819
+network inet stream connect ::ffff:192.168.2.191 10563
+file ioctl socket:[family=10:type=1:protocol=6] 0x541B
+network inet stream connect ::ffff:192.168.2.108 56450
+network inet stream connect ::ffff:192.168.2.108 30935
+file read /home/iotuser/iot2/iotjava/iotruntime/slave/IoTSet.class
+file read /home/iotuser/iot2/iotjava/iotruntime/slave/IoTRelation.class
+file read /home/iotuser/iot2/iotjava/SmartLightsController/RoomSmart_Stub.class
+network inet stream connect ::ffff:192.168.2.191 22599
+network inet stream connect ::ffff:192.168.2.191 21891
+network inet stream connect ::ffff:192.168.2.108 39783
+network inet stream connect ::ffff:192.168.2.108 36375
+file read /home/iotuser/iot2/iotjava/iotruntime/slave/IRelation.class
+file read /home/iotuser/iot2/iotjava/SmartLightsController/LightBulbSmart_Stub.class
+network inet stream connect ::ffff:192.168.2.191 22255
+network inet stream connect ::ffff:192.168.2.191 12654
+network inet stream connect ::ffff:192.168.2.108 56613
+network inet stream connect ::ffff:192.168.2.108 42828
+file read /home/iotuser/iot2/iotjava/iotruntime/slave/IoTSlave$2.class
+file read /home/iotuser/iot2/iotjava/SmartLightsController/ColorTemperature.class
+file read /home/iotuser/iot2/iotjava/SmartLightsController/MotionDetection.class
+file read /home/iotuser/iot2/iotjava/SmartLightsController/MotionDetection$1.class
+file read /home/iotuser/iot2/iotjava/SmartLightsController/MotionDetection$2.class
+file read /home/iotuser/iot2/iotjava/SmartLightsController/CameraCallback_Skeleton.class
+file read /home/iotuser/iot2/iotjava/iotrmi/Java/IoTRMICommServer.class
+file read /home/iotuser/iot2/iotjava/SmartLightsController/CameraCallback_Skeleton$1.class
+file read /home/iotuser/iot2/iotjava/SmartLightsController/CameraCallback_Skeleton$2.class
+file read /etc/timezone
+file read /usr/lib/jvm/jdk-8-oracle-arm32-vfp-hflt/jre/lib/tzdb.dat
+file read /usr/lib/jvm/jdk-8-oracle-arm32-vfp-hflt/jre/lib/charsets.jar
+file read /usr/lib/jvm/jdk-8-oracle-arm32-vfp-hflt/jre/lib/arm/libawt.so
+file read /usr/lib/jvm/jdk-8-oracle-arm32-vfp-hflt/jre/lib/arm/libawt_headless.so
+file read /usr/share/locale/en_GB/LC_MESSAGES/libc.mo
+file read /usr/lib/jvm/jdk-8-oracle-arm32-vfp-hflt/jre/lib/arm/libnio.so
+file create /tmp/imageio\*.tmp 0600
+file read/write/unlink /tmp/imageio\*.tmp
+file read/write /tmp/imageio\*.tmp
+