8.89.65 addr=139.178.89.65 terminal=ssh res=success'
[ 98.568680] audit: type=1131 audit(1712946133.551:979): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='unit=sshd@6-172.31.30.133:22-139.178.89.65:46912 comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success'
[ 101.371620] audit: type=1400 audit(1712946136.365:980): avc: denied { watch } for pid=2597 comm="kube-controller" path="/opt/libexec/kubernetes/kubelet-plugins/volume/exec" dev="nvme0n1p9" ino=521026 scontext=system_u:system_r:svirt_lxc_net_t:s0:c219,c819 tcontext=system_u:object_r:usr_t:s0 tclass=dir permissive=0
[ 101.383121] audit: type=1300 audit(1712946136.365:980): arch=c00000b7 syscall=27 success=no exit=-13 a0=9 a1=4000f4b2c0 a2=fc6 a3=0 items=0 ppid=2443 pid=2597 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="kube-controller" exe="/usr/local/bin/kube-controller-manager" subj=system_u:system_r:svirt_lxc_net_t:s0:c219,c819 key=(null)
[ 101.398738] audit: type=1327 audit(1712946136.365:980): proctitle=6B7562652D636F6E74726F6C6C65722D6D616E61676572002D2D616C6C6F636174652D6E6F64652D63696472733D74727565002D2D61757468656E7469636174696F6E2D6B756265636F6E6669673D2F6574632F6B756265726E657465732F636F6E74726F6C6C65722D6D616E616765722E636F6E66002D2D617574686F7269
[ 104.508347] audit: type=1400 audit(1712946139.502:981): avc: denied { bpf } for pid=1 comm="systemd" capability=39 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0
[ 104.516591] audit: type=1400 audit(1712946139.502:982): avc: denied { bpf } for pid=1 comm="systemd" capability=39 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0
[ 104.523877] audit: type=1400 audit(1712946139.502:983): avc: denied { bpf } for pid=1 comm="systemd" capability=39 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0
[ 104.531126] audit: type=1400 audit(1712946139.502:984): avc: denied { perfmon } for pid=1 comm="systemd" capability=38 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0
[ 104.538470] audit: type=1400 audit(1712946139.502:985): avc: denied { perfmon } for pid=1 comm="systemd" capability=38 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0
[ 104.545950] audit: type=1400 audit(1712946139.502:986): avc: denied { perfmon } for pid=1 comm="systemd" capability=38 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0
[ 104.553462] audit: type=1400 audit(1712946139.502:987): avc: denied { perfmon } for pid=1 comm="systemd" capability=38 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0
[ 104.560844] audit: type=1400 audit(1712946139.502:988): avc: denied { perfmon } for pid=1 comm="systemd" capability=38 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0
[ 104.568325] audit: type=1400 audit(1712946139.502:989): avc: denied { bpf } for pid=1 comm="systemd" capability=39 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0
[ 104.575792] audit: type=1400 audit(1712946139.502:990): avc: denied { bpf } for pid=1 comm="systemd" capability=39 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0
[ 112.505400] kauditd_printk_skb: 357 callbacks suppressed
[ 112.505405] audit: type=1325 audit(1712946147.498:1092): table=filter:89 family=2 entries=15 op=nft_register_rule pid=3175 subj=system_u:system_r:kernel_t:s0 comm="iptables-restor"
[ 112.515065] audit: type=1300 audit(1712946147.498:1092): arch=c00000b7 syscall=211 success=yes exit=5908 a0=3 a1=ffffdf8f8a50 a2=0 a3=1 items=0 ppid=2954 pid=3175 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="iptables-restor" exe="/usr/sbin/xtables-nft-multi" subj=system_u:system_r:kernel_t:s0 key=(null)
[ 112.526691] audit: type=1327 audit(1712946147.498:1092): proctitle=69707461626C65732D726573746F7265002D770035002D5700313030303030002D2D6E6F666C757368002D2D636F756E74657273
[ 112.532382] audit: type=1325 audit(1712946147.519:1093): table=nat:90 family=2 entries=12 op=nft_register_rule pid=3175 subj=system_u:system_r:kernel_t:s0 comm="iptables-restor"
[ 112.538467] audit: type=1300 audit(1712946147.519:1093): arch=c00000b7 syscall=211 success=yes exit=2700 a0=3 a1=ffffdf8f8a50 a2=0 a3=1 items=0 ppid=2954 pid=3175 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="iptables-restor" exe="/usr/sbin/xtables-nft-multi" subj=system_u:system_r:kernel_t:s0 key=(null)
[ 112.552240] audit: type=1327 audit(1712946147.519:1093): proctitle=69707461626C65732D726573746F7265002D770035002D5700313030303030002D2D6E6F666C757368002D2D636F756E74657273
[ 112.558451] audit: type=1325 audit(1712946147.552:1094): table=filter:91 family=2 entries=16 op=nft_register_rule pid=3177 subj=system_u:system_r:kernel_t:s0 comm="iptables-restor"
[ 112.564295] audit: type=1300 audit(1712946147.552:1094): arch=c00000b7 syscall=211 success=yes exit=5908 a0=3 a1=fffffb45bf80 a2=0 a3=1 items=0 ppid=2954 pid=3177 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="iptables-restor" exe="/usr/sbin/xtables-nft-multi" subj=system_u:system_r:kernel_t:s0 key=(null)
[ 112.575826] audit: type=1327 audit(1712946147.552:1094): proctitle=69707461626C65732D726573746F7265002D770035002D5700313030303030002D2D6E6F666C757368002D2D636F756E74657273
[ 112.581331] audit: type=1325 audit(1712946147.552:1095): table=nat:92 family=2 entries=12 op=nft_register_rule pid=3177 subj=system_u:system_r:kernel_t:s0 comm="iptables-restor"
[ 117.773215] kauditd_printk_skb: 122 callbacks suppressed
[ 117.773219] audit: type=1400 audit(1712946152.767:1134): avc: denied { bpf } for pid=1 comm="systemd" capability=39 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0
[ 117.783031] audit: type=1400 audit(1712946152.776:1135): avc: denied { bpf } for pid=1 comm="systemd" capability=39 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0
[ 117.792936] audit: type=1400 audit(1712946152.776:1136): avc: denied { bpf } for pid=1 comm="systemd" capability=39 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0
[ 117.800523] audit: type=1400 audit(1712946152.776:1137): avc: denied { perfmon } for pid=1 comm="systemd" capability=38 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0
[ 117.809673] audit: type=1400 audit(1712946152.776:1138): avc: denied { perfmon } for pid=1 comm="systemd" capability=38 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0
[ 117.818831] audit: type=1400 audit(1712946152.776:1139): avc: denied { perfmon } for pid=1 comm="systemd" capability=38 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0
[ 117.830202] audit: type=1400 audit(1712946152.776:1140): avc: denied { perfmon } for pid=1 comm="systemd" capability=38 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0
[ 117.838924] audit: type=1400 audit(1712946152.776:1141): avc: denied { perfmon } for pid=1 comm="systemd" capability=38 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0
[ 117.849247] audit: type=1400 audit(1712946152.776:1142): avc: denied { bpf } for pid=1 comm="systemd" capability=39 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0
[ 117.856836] audit: type=1400 audit(1712946152.784:1143): avc: denied { bpf } for pid=1 comm="systemd" capability=39 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0
[ 126.399819] kauditd_printk_skb: 91 callbacks suppressed
[ 126.399824] audit: type=1400 audit(1712946161.394:1159): avc: denied { perfmon } for pid=3534 comm="runc" capability=38 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0
[ 126.409116] audit: type=1300 audit(1712946161.394:1159): arch=c00000b7 syscall=280 success=yes exit=15 a0=0 a1=40001955a0 a2=3c a3=0 items=0 ppid=3358 pid=3534 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="runc" exe="/run/torcx/unpack/docker/bin/runc" subj=system_u:system_r:kernel_t:s0 key=(null)
[ 126.422486] audit: type=1327 audit(1712946161.394:1159): proctitle=72756E63002D2D726F6F74002F72756E2F636F6E7461696E6572642F72756E632F6B38732E696F002D2D6C6F67002F72756E2F636F6E7461696E6572642F696F2E636F6E7461696E6572642E72756E74696D652E76322E7461736B2F6B38732E696F2F3630646162666165633337313565373837306435303264303831356264
[ 126.437005] audit: type=1400 audit(1712946161.394:1160): avc: denied { bpf } for pid=3534 comm="runc" capability=39 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0
[ 126.445001] audit: type=1400 audit(1712946161.394:1160): avc: denied { bpf } for pid=3534 comm="runc" capability=39 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0
[ 126.454138] audit: type=1400 audit(1712946161.394:1160): avc: denied { bpf } for pid=3534 comm="runc" capability=39 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0
[ 126.462198] audit: type=1400 audit(1712946161.394:1160): avc: denied { perfmon } for pid=3534 comm="runc" capability=38 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0
[ 126.470351] audit: type=1400 audit(1712946161.394:1160): avc: denied { perfmon } for pid=3534 comm="runc" capability=38 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0
[ 126.478604] audit: type=1400 audit(1712946161.394:1160): avc: denied { perfmon } for pid=3534 comm="runc" capability=38 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0
[ 126.487180] audit: type=1400 audit(1712946161.394:1160): avc: denied { perfmon } for pid=3534 comm="runc" capability=38 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0
[ 135.901127] kauditd_printk_skb: 34 callbacks suppressed
[ 135.901132] audit: type=1325 audit(1712946170.896:1166): table=filter:95 family=2 entries=15 op=nft_register_rule pid=3799 subj=system_u:system_r:kernel_t:s0 comm="iptables-restor"
[ 135.912198] audit: type=1300 audit(1712946170.896:1166): arch=c00000b7 syscall=211 success=yes exit=5164 a0=3 a1=fffff76d7450 a2=0 a3=1 items=0 ppid=2954 pid=3799 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="iptables-restor" exe="/usr/sbin/xtables-nft-multi" subj=system_u:system_r:kernel_t:s0 key=(null)
[ 135.925143] audit: type=1327 audit(1712946170.896:1166): proctitle=69707461626C65732D726573746F7265002D770035002D5700313030303030002D2D6E6F666C757368002D2D636F756E74657273
[ 135.931487] audit: type=1325 audit(1712946170.907:1167): table=nat:96 family=2 entries=19 op=nft_register_chain pid=3799 subj=system_u:system_r:kernel_t:s0 comm="iptables-restor"
[ 135.940938] audit: type=1300 audit(1712946170.907:1167): arch=c00000b7 syscall=211 success=yes exit=6276 a0=3 a1=fffff76d7450 a2=0 a3=1 items=0 ppid=2954 pid=3799 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="iptables-restor" exe="/usr/sbin/xtables-nft-multi" subj=system_u:system_r:kernel_t:s0 key=(null)
[ 135.954713] audit: type=1327 audit(1712946170.907:1167): proctitle=69707461626C65732D726573746F7265002D770035002D5700313030303030002D2D6E6F666C757368002D2D636F756E74657273
[ 138.451463] audit: type=1400 audit(1712946173.446:1168): avc: denied { perfmon } for pid=3810 comm="runc" capability=38 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0
[ 138.460325] audit: type=1300 audit(1712946173.446:1168): arch=c00000b7 syscall=280 success=yes exit=15 a0=0 a1=40002155a0 a2=3c a3=0 items=0 ppid=3358 pid=3810 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="runc" exe="/run/torcx/unpack/docker/bin/runc" subj=system_u:system_r:kernel_t:s0 key=(null)
[ 138.471989] audit: type=1327 audit(1712946173.446:1168): proctitle=72756E63002D2D726F6F74002F72756E2F636F6E7461696E6572642F72756E632F6B38732E696F002D2D6C6F67002F72756E2F636F6E7461696E6572642F696F2E636F6E7461696E6572642E72756E74696D652E76322E7461736B2F6B38732E696F2F6338333831616632363266623633373932623536353333613662653939
[ 138.483618] audit: type=1400 audit(1712946173.446:1169): avc: denied { bpf } for pid=3810 comm="runc" capability=39 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0
[ 138.740617] wireguard: WireGuard 1.0.0 loaded. See www.wireguard.com for information.
[ 138.743443] wireguard: Copyright (C) 2015-2019 Jason A. Donenfeld <Jason@zx2c4.com>. All Rights Reserved.
[ 141.259414] kauditd_printk_skb: 74 callbacks suppressed
[ 141.259419] audit: type=1400 audit(1712946176.253:1181): avc: denied { bpf } for pid=4016 comm="bpftool" capability=39 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0
[ 141.260188] audit: audit_backlog=65 > audit_backlog_limit=64
[ 141.261392] audit: type=1400 audit(1712946176.253:1181): avc: denied { bpf } for pid=4016 comm="bpftool" capability=39 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0
[ 141.268822] audit: audit_lost=10 audit_rate_limit=0 audit_backlog_limit=64
[ 141.271741] audit: type=1400 audit(1712946176.253:1181): avc: denied { perfmon } for pid=4016 comm="bpftool" capability=38 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0
[ 141.277995] audit: backlog limit exceeded
[ 141.281080] audit: type=1400 audit(1712946176.253:1181): avc: denied { perfmon } for pid=4016 comm="bpftool" capability=38 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0
[ 141.296767] audit: audit_backlog=65 > audit_backlog_limit=64
[ 141.299187] audit: audit_lost=11 audit_rate_limit=0 audit_backlog_limit=64
[ 141.302313] audit: backlog limit exceeded
This is ip-172-31-30-133 (Linux aarch64 5.15.154-flatcar) 18:22:58
SSH host key: SHA256:dn7ikfOY4nqLgtqLIXRIp9zkFASKNtcUZHqDeoFUIJs (ED25519)
SSH host key: SHA256:enErRrtQqbMktuSSTo0gys6n35EzPLyDtbszlYM5akY (RSA)
SSH host key: SHA256:UiY8Hyzn+NrptGVnD90SU8ng06rdjLzsz6K7Y0LU2EA (ECDSA)
eth0: 172.31.30.133 fe80::424:61ff:fefd:1c97
ip-172-31-30-133 login: [ 143.376961] IPv6: ADDRCONF(NETDEV_CHANGE): eth0: link becomes ready
[ 143.379309] IPv6: ADDRCONF(NETDEV_CHANGE): calif0ca4128ec3: link becomes ready
[ 143.484200] IPv6: ADDRCONF(NETDEV_CHANGE): calid18c80e65e6: link becomes ready
This is ip-172-31-30-133 (Linux aarch64 5.15.154-flatcar) 18:22:59
SSH host key: SHA256:dn7ikfOY4nqLgtqLIXRIp9zkFASKNtcUZHqDeoFUIJs (ED25519)
SSH host key: SHA256:enErRrtQqbMktuSSTo0gys6n35EzPLyDtbszlYM5akY (RSA)
SSH host key: SHA256:UiY8Hyzn+NrptGVnD90SU8ng06rdjLzsz6K7Y0LU2EA (ECDSA)
eth0: 172.31.30.133 fe80::424:61ff:fefd:1c97
ip-172-31-30-133 login: [ 144.861148] IPv6: ADDRCONF(NETDEV_CHANGE): eth0: link becomes ready
[ 144.863605] IPv6: ADDRCONF(NETDEV_CHANGE): cali755be393546: link becomes ready
[ 145.080418] IPv6: ADDRCONF(NETDEV_CHANGE): cali5d9ab163743: link becomes ready
This is ip-172-31-30-133 (Linux aarch64 5.15.154-flatcar) 18:23:00
SSH host key: SHA256:dn7ikfOY4nqLgtqLIXRIp9zkFASKNtcUZHqDeoFUIJs (ED25519)
SSH host key: SHA256:enErRrtQqbMktuSSTo0gys6n35EzPLyDtbszlYM5akY (RSA)
SSH host key: SHA256:UiY8Hyzn+NrptGVnD90SU8ng06rdjLzsz6K7Y0LU2EA (ECDSA)
eth0: 172.31.30.133 fe80::424:61ff:fefd:1c97
ip-172-31-30-133 login: [ 146.475070] kauditd_printk_skb: 478 callbacks suppressed
[ 146.475075] audit: type=1325 audit(1712946181.470:1328): table=filter:109 family=2 entries=8 op=nft_register_rule pid=4603 subj=system_u:system_r:kernel_t:s0 comm="iptables-restor"
[ 146.486562] audit: type=1300 audit(1712946181.470:1328): arch=c00000b7 syscall=211 success=yes exit=2932 a0=3 a1=fffff6597440 a2=0 a3=1 items=0 ppid=2954 pid=4603 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="iptables-restor" exe="/usr/sbin/xtables-nft-multi" subj=system_u:system_r:kernel_t:s0 key=(null)
[ 146.501480] audit: type=1327 audit(1712946181.470:1328): proctitle=69707461626C65732D726573746F7265002D770035002D5700313030303030002D2D6E6F666C757368002D2D636F756E74657273
[ 146.523522] audit: type=1325 audit(1712946181.518:1329): table=nat:110 family=2 entries=56 op=nft_register_chain pid=4603 subj=system_u:system_r:kernel_t:s0 comm="iptables-restor"
[ 146.529885] audit: type=1300 audit(1712946181.518:1329): arch=c00000b7 syscall=211 success=yes exit=19860 a0=3 a1=fffff6597440 a2=0 a3=1 items=0 ppid=2954 pid=4603 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="iptables-restor" exe="/usr/sbin/xtables-nft-multi" subj=system_u:system_r:kernel_t:s0 key=(null)
[ 146.544454] audit: type=1327 audit(1712946181.518:1329): proctitle=69707461626C65732D726573746F7265002D770035002D5700313030303030002D2D6E6F666C757368002D2D636F756E74657273
This is ip-172-31-30-133 (Linux aarch64 5.15.154-flatcar) 18:23:01
SSH host key: SHA256:dn7ikfOY4nqLgtqLIXRIp9zkFASKNtcUZHqDeoFUIJs (ED25519)
SSH host key: SHA256:enErRrtQqbMktuSSTo0gys6n35EzPLyDtbszlYM5akY (RSA)
SSH host key: SHA256:UiY8Hyzn+NrptGVnD90SU8ng06rdjLzsz6K7Y0LU2EA (ECDSA)
eth0: 172.31.30.133 fe80::424:61ff:fefd:1c97
ip-172-31-30-133 login: [ 147.312135] audit: type=1400 audit(1712946182.307:1330): avc: denied { watch } for pid=2574 comm="kube-apiserver" path="/etc/kubernetes/pki/front-proxy-ca.crt" dev="nvme0n1p9" ino=520999 scontext=system_u:system_r:svirt_lxc_net_t:s0:c9,c461 tcontext=system_u:object_r:etc_t:s0 tclass=file permissive=0
[ 147.328635] audit: type=1400 audit(1712946182.319:1331): avc: denied { watch } for pid=2574 comm="kube-apiserver" path="/etc/kubernetes/pki/apiserver.crt" dev="nvme0n1p9" ino=520995 scontext=system_u:system_r:svirt_lxc_net_t:s0:c9,c461 tcontext=system_u:object_r:etc_t:s0 tclass=file permissive=0
[ 147.348829] audit: type=1300 audit(1712946182.319:1331): arch=c00000b7 syscall=27 success=no exit=-13 a0=6c a1=400e733b30 a2=fc6 a3=0 items=0 ppid=2444 pid=2574 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="kube-apiserver" exe="/usr/local/bin/kube-apiserver" subj=system_u:system_r:svirt_lxc_net_t:s0:c9,c461 key=(null)
[ 147.371322] audit: type=1327 audit(1712946182.319:1331): proctitle=6B7562652D617069736572766572002D2D6164766572746973652D616464726573733D3137322E33312E33302E313333002D2D616C6C6F772D70726976696C656765643D74727565002D2D617574686F72697A6174696F6E2D6D6F64653D4E6F64652C52424143002D2D636C69656E742D63612D66696C653D2F6574632F6B75
This is ip-172-31-30-133 (Linux aarch64 5.15.154-flatcar) 18:23:02
SSH host key: SHA256:dn7ikfOY4nqLgtqLIXRIp9zkFASKNtcUZHqDeoFUIJs (ED25519)
SSH host key: SHA256:enErRrtQqbMktuSSTo0gys6n35EzPLyDtbszlYM5akY (RSA)
SSH host key: SHA256:UiY8Hyzn+NrptGVnD90SU8ng06rdjLzsz6K7Y0LU2EA (ECDSA)
eth0: 172.31.30.133 fe80::424:61ff:fefd:1c97
ip-172-31-30-133 login: [ 152.702688] kauditd_printk_skb: 137 callbacks suppressed
[ 152.702693] audit: type=1400 audit(1712946187.698:1373): avc: denied { perfmon } for pid=4852 comm="runc" capability=38 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0
[ 152.712059] audit: type=1300 audit(1712946187.698:1373): arch=c00000b7 syscall=280 success=yes exit=15 a0=0 a1=40001bd5a0 a2=3c a3=0 items=0 ppid=4482 pid=4852 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="runc" exe="/run/torcx/unpack/docker/bin/runc" subj=system_u:system_r:kernel_t:s0 key=(null)
[ 152.724386] audit: type=1327 audit(1712946187.698:1373): proctitle=72756E63002D2D726F6F74002F72756E2F636F6E7461696E6572642F72756E632F6B38732E696F002D2D6C6F67002F72756E2F636F6E7461696E6572642F696F2E636F6E7461696E6572642E72756E74696D652E76322E7461736B2F6B38732E696F2F3564323737313966323562643235323239363737623337343531343365
[ 152.736490] audit: type=1400 audit(1712946187.706:1374): avc: denied { bpf } for pid=4852 comm="runc" capability=39 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0
[ 152.746522] audit: type=1400 audit(1712946187.706:1374): avc: denied { bpf } for pid=4852 comm="runc" capability=39 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0
[ 152.757978] audit: type=1400 audit(1712946187.706:1374): avc: denied { bpf } for pid=4852 comm="runc" capability=39 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0
[ 152.765736] audit: type=1400 audit(1712946187.706:1374): avc: denied { perfmon } for pid=4852 comm="runc" capability=38 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0
[ 152.773272] audit: type=1400 audit(1712946187.706:1374): avc: denied { perfmon } for pid=4852 comm="runc" capability=38 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0
[ 152.781904] audit: type=1400 audit(1712946187.706:1374): avc: denied { perfmon } for pid=4852 comm="runc" capability=38 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0
[ 152.789840] audit: type=1400 audit(1712946187.706:1374): avc: denied { perfmon } for pid=4852 comm="runc" capability=38 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0
[ 161.709990] kauditd_printk_skb: 44 callbacks suppressed
[ 161.709995] audit: type=1130 audit(1712946196.705:1388): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='unit=sshd@10-172.31.30.133:22-139.178.89.65:60338 comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success'
[ 161.898281] audit: type=1101 audit(1712946196.893:1389): pid=5005 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:accounting grantors=pam_access,pam_unix,pam_faillock,pam_permit acct="core" exe="/usr/sbin/sshd" hostname=139.178.89.65 addr=139.178.89.65 terminal=ssh res=success'
[ 161.912493] audit: type=1103 audit(1712946196.904:1390): pid=5005 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=139.178.89.65 addr=139.178.89.65 terminal=ssh res=success'
[ 161.923097] audit: type=1006 audit(1712946196.905:1391): pid=5005 uid=0 subj=system_u:system_r:kernel_t:s0 old-auid=4294967295 auid=500 tty=(none) old-ses=4294967295 ses=11 res=1
[ 161.930118] audit: type=1300 audit(1712946196.905:1391): arch=c00000b7 syscall=64 success=yes exit=3 a0=5 a1=fffffc2791c0 a2=3 a3=1 items=0 ppid=1 pid=5005 auid=500 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=11 comm="sshd" exe="/usr/sbin/sshd" subj=system_u:system_r:kernel_t:s0 key=(null)
[ 161.942039] audit: type=1327 audit(1712946196.905:1391): proctitle=737368643A20636F7265205B707269765D
[ 161.966717] audit: type=1105 audit(1712946196.962:1392): pid=5005 uid=0 auid=500 ses=11 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_open grantors=pam_loginuid,pam_env,pam_lastlog,pam_limits,pam_env,pam_unix,pam_permit,pam_systemd,pam_mail acct="core" exe="/usr/sbin/sshd" hostname=139.178.89.65 addr=139.178.89.65 terminal=ssh res=success'
[ 161.979736] audit: type=1103 audit(1712946196.975:1393): pid=5007 uid=0 auid=500 ses=11 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=139.178.89.65 addr=139.178.89.65 terminal=ssh res=success'
[ 162.311002] audit: type=1106 audit(1712946197.306:1394): pid=5005 uid=0 auid=500 ses=11 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_close grantors=pam_loginuid,pam_env,pam_lastlog,pam_limits,pam_env,pam_unix,pam_permit,pam_systemd,pam_mail acct="core" exe="/usr/sbin/sshd" hostname=139.178.89.65 addr=139.178.89.65 terminal=ssh res=success'
[ 162.341984] audit: type=1104 audit(1712946197.306:1395): pid=5005 uid=0 auid=500 ses=11 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=139.178.89.65 addr=139.178.89.65 terminal=ssh res=success'
[ 168.838936] kauditd_printk_skb: 23 callbacks suppressed
[ 168.838941] audit: type=1130 audit(1712946203.833:1415): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='unit=sshd@13-172.31.30.133:22-139.178.89.65:39308 comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success'
[ 169.009246] audit: type=1101 audit(1712946204.004:1416): pid=5053 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:accounting grantors=pam_access,pam_unix,pam_faillock,pam_permit acct="core" exe="/usr/sbin/sshd" hostname=139.178.89.65 addr=139.178.89.65 terminal=ssh res=success'
[ 169.023956] audit: type=1103 audit(1712946204.017:1417): pid=5053 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=139.178.89.65 addr=139.178.89.65 terminal=ssh res=success'
[ 169.034777] audit: type=1006 audit(1712946204.017:1418): pid=5053 uid=0 subj=system_u:system_r:kernel_t:s0 old-auid=4294967295 auid=500 tty=(none) old-ses=4294967295 ses=14 res=1
[ 169.041445] audit: type=1300 audit(1712946204.017:1418): arch=c00000b7 syscall=64 success=yes exit=3 a0=5 a1=ffffd0169980 a2=3 a3=1 items=0 ppid=1 pid=5053 auid=500 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=14 comm="sshd" exe="/usr/sbin/sshd" subj=system_u:system_r:kernel_t:s0 key=(null)
[ 169.055755] audit: type=1327 audit(1712946204.017:1418): proctitle=737368643A20636F7265205B707269765D
[ 169.079431] audit: type=1105 audit(1712946204.074:1419): pid=5053 uid=0 auid=500 ses=14 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_open grantors=pam_loginuid,pam_env,pam_lastlog,pam_limits,pam_env,pam_unix,pam_permit,pam_systemd,pam_mail acct="core" exe="/usr/sbin/sshd" hostname=139.178.89.65 addr=139.178.89.65 terminal=ssh res=success'
[ 169.092807] audit: type=1103 audit(1712946204.077:1420): pid=5055 uid=0 auid=500 ses=14 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=139.178.89.65 addr=139.178.89.65 terminal=ssh res=success'
[ 169.357523] audit: type=1106 audit(1712946204.351:1421): pid=5053 uid=0 auid=500 ses=14 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_close grantors=pam_loginuid,pam_env,pam_lastlog,pam_limits,pam_env,pam_unix,pam_permit,pam_systemd,pam_mail acct="core" exe="/usr/sbin/sshd" hostname=139.178.89.65 addr=139.178.89.65 terminal=ssh res=success'
[ 169.370743] audit: type=1104 audit(1712946204.352:1422): pid=5053 uid=0 auid=500 ses=14 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=139.178.89.65 addr=139.178.89.65 terminal=ssh res=success'
[ 174.388653] kauditd_printk_skb: 1 callbacks suppressed
[ 174.388658] audit: type=1130 audit(1712946209.383:1424): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='unit=sshd@14-172.31.30.133:22-139.178.89.65:51602 comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success'
[ 174.578133] audit: type=1101 audit(1712946209.572:1425): pid=5095 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:accounting grantors=pam_access,pam_unix,pam_faillock,pam_permit acct="core" exe="/usr/sbin/sshd" hostname=139.178.89.65 addr=139.178.89.65 terminal=ssh res=success'
[ 174.589332] audit: type=1103 audit(1712946209.584:1426): pid=5095 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=139.178.89.65 addr=139.178.89.65 terminal=ssh res=success'
[ 174.607282] audit: type=1006 audit(1712946209.584:1427): pid=5095 uid=0 subj=system_u:system_r:kernel_t:s0 old-auid=4294967295 auid=500 tty=(none) old-ses=4294967295 ses=15 res=1
[ 174.616421] audit: type=1300 audit(1712946209.584:1427): arch=c00000b7 syscall=64 success=yes exit=3 a0=5 a1=ffffd9078f90 a2=3 a3=1 items=0 ppid=1 pid=5095 auid=500 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=15 comm="sshd" exe="/usr/sbin/sshd" subj=system_u:system_r:kernel_t:s0 key=(null)
[ 174.626959] audit: type=1327 audit(1712946209.584:1427): proctitle=737368643A20636F7265205B707269765D
[ 174.646989] audit: type=1105 audit(1712946209.641:1428): pid=5095 uid=0 auid=500 ses=15 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_open grantors=pam_loginuid,pam_env,pam_lastlog,pam_limits,pam_env,pam_unix,pam_permit,pam_systemd,pam_mail acct="core" exe="/usr/sbin/sshd" hostname=139.178.89.65 addr=139.178.89.65 terminal=ssh res=success'
[ 174.660381] audit: type=1103 audit(1712946209.654:1429): pid=5097 uid=0 auid=500 ses=15 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=139.178.89.65 addr=139.178.89.65 terminal=ssh res=success'
[ 174.917272] audit: type=1106 audit(1712946209.912:1430): pid=5095 uid=0 auid=500 ses=15 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_close grantors=pam_loginuid,pam_env,pam_lastlog,pam_limits,pam_env,pam_unix,pam_permit,pam_systemd,pam_mail acct="core" exe="/usr/sbin/sshd" hostname=139.178.89.65 addr=139.178.89.65 terminal=ssh res=success'
[ 174.928878] audit: type=1104 audit(1712946209.912:1431): pid=5095 uid=0 auid=500 ses=15 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=139.178.89.65 addr=139.178.89.65 terminal=ssh res=success'
[ 179.946642] kauditd_printk_skb: 1 callbacks suppressed
[ 179.946647] audit: type=1130 audit(1712946214.941:1433): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='unit=sshd@15-172.31.30.133:22-139.178.89.65:51604 comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success'
[ 180.125768] audit: type=1101 audit(1712946215.120:1434): pid=5108 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:accounting grantors=pam_access,pam_unix,pam_faillock,pam_permit acct="core" exe="/usr/sbin/sshd" hostname=139.178.89.65 addr=139.178.89.65 terminal=ssh res=success'
[ 180.138338] audit: type=1103 audit(1712946215.123:1435): pid=5108 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=139.178.89.65 addr=139.178.89.65 terminal=ssh res=success'
[ 180.148338] audit: type=1006 audit(1712946215.123:1436): pid=5108 uid=0 subj=system_u:system_r:kernel_t:s0 old-auid=4294967295 auid=500 tty=(none) old-ses=4294967295 ses=16 res=1
[ 180.155939] audit: type=1300 audit(1712946215.123:1436): arch=c00000b7 syscall=64 success=yes exit=3 a0=5 a1=fffffc455090 a2=3 a3=1 items=0 ppid=1 pid=5108 auid=500 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=16 comm="sshd" exe="/usr/sbin/sshd" subj=system_u:system_r:kernel_t:s0 key=(null)
[ 180.167793] audit: type=1327 audit(1712946215.123:1436): proctitle=737368643A20636F7265205B707269765D
[ 180.177213] audit: type=1105 audit(1712946215.170:1437): pid=5108 uid=0 auid=500 ses=16 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_open grantors=pam_loginuid,pam_env,pam_lastlog,pam_limits,pam_env,pam_unix,pam_permit,pam_systemd,pam_mail acct="core" exe="/usr/sbin/sshd" hostname=139.178.89.65 addr=139.178.89.65 terminal=ssh res=success'
[ 180.189915] audit: type=1103 audit(1712946215.184:1438): pid=5110 uid=0 auid=500 ses=16 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=139.178.89.65 addr=139.178.89.65 terminal=ssh res=success'
[ 180.462233] audit: type=1106 audit(1712946215.457:1439): pid=5108 uid=0 auid=500 ses=16 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_close grantors=pam_loginuid,pam_env,pam_lastlog,pam_limits,pam_env,pam_unix,pam_permit,pam_systemd,pam_mail acct="core" exe="/usr/sbin/sshd" hostname=139.178.89.65 addr=139.178.89.65 terminal=ssh res=success'
[ 180.473650] audit: type=1104 audit(1712946215.457:1440): pid=5108 uid=0 auid=500 ses=16 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=139.178.89.65 addr=139.178.89.65 terminal=ssh res=success'
[ 185.493961] kauditd_printk_skb: 1 callbacks suppressed
[ 185.493966] audit: type=1130 audit(1712946220.488:1442): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='unit=sshd@16-172.31.30.133:22-139.178.89.65:49216 comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success'
[ 185.669798] audit: type=1101 audit(1712946220.664:1443): pid=5149 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:accounting grantors=pam_access,pam_unix,pam_faillock,pam_permit acct="core" exe="/usr/sbin/sshd" hostname=139.178.89.65 addr=139.178.89.65 terminal=ssh res=success'
[ 185.683968] audit: type=1103 audit(1712946220.678:1444): pid=5149 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=139.178.89.65 addr=139.178.89.65 terminal=ssh res=success'
[ 185.693956] audit: type=1006 audit(1712946220.679:1445): pid=5149 uid=0 subj=system_u:system_r:kernel_t:s0 old-auid=4294967295 auid=500 tty=(none) old-ses=4294967295 ses=17 res=1
[ 185.700567] audit: type=1300 audit(1712946220.679:1445): arch=c00000b7 syscall=64 success=yes exit=3 a0=5 a1=fffff141b860 a2=3 a3=1 items=0 ppid=1 pid=5149 auid=500 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=17 comm="sshd" exe="/usr/sbin/sshd" subj=system_u:system_r:kernel_t:s0 key=(null)
[ 185.711677] audit: type=1327 audit(1712946220.679:1445): proctitle=737368643A20636F7265205B707269765D
[ 185.735759] audit: type=1105 audit(1712946220.730:1446): pid=5149 uid=0 auid=500 ses=17 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_open grantors=pam_loginuid,pam_env,pam_lastlog,pam_limits,pam_env,pam_unix,pam_permit,pam_systemd,pam_mail acct="core" exe="/usr/sbin/sshd" hostname=139.178.89.65 addr=139.178.89.65 terminal=ssh res=success'
[ 185.748348] audit: type=1103 audit(1712946220.743:1447): pid=5151 uid=0 auid=500 ses=17 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=139.178.89.65 addr=139.178.89.65 terminal=ssh res=success'
[ 185.993954] audit: type=1106 audit(1712946220.988:1448): pid=5149 uid=0 auid=500 ses=17 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_close grantors=pam_loginuid,pam_env,pam_lastlog,pam_limits,pam_env,pam_unix,pam_permit,pam_systemd,pam_mail acct="core" exe="/usr/sbin/sshd" hostname=139.178.89.65 addr=139.178.89.65 terminal=ssh res=success'
[ 186.005672] audit: type=1104 audit(1712946220.989:1449): pid=5149 uid=0 auid=500 ses=17 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=139.178.89.65 addr=139.178.89.65 terminal=ssh res=success'
[ 191.022653] kauditd_printk_skb: 1 callbacks suppressed
[ 191.022658] audit: type=1130 audit(1712946226.017:1451): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='unit=sshd@17-172.31.30.133:22-139.178.89.65:49220 comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success'
[ 191.202775] audit: type=1101 audit(1712946226.197:1452): pid=5182 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:accounting grantors=pam_access,pam_unix,pam_faillock,pam_permit acct="core" exe="/usr/sbin/sshd" hostname=139.178.89.65 addr=139.178.89.65 terminal=ssh res=success'
[ 191.216677] audit: type=1103 audit(1712946226.210:1453): pid=5182 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=139.178.89.65 addr=139.178.89.65 terminal=ssh res=success'
[ 191.226915] audit: type=1006 audit(1712946226.210:1454): pid=5182 uid=0 subj=system_u:system_r:kernel_t:s0 old-auid=4294967295 auid=500 tty=(none) old-ses=4294967295 ses=18 res=1
[ 191.233494] audit: type=1300 audit(1712946226.210:1454): arch=c00000b7 syscall=64 success=yes exit=3 a0=5 a1=ffffce025f10 a2=3 a3=1 items=0 ppid=1 pid=5182 auid=500 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=18 comm="sshd" exe="/usr/sbin/sshd" subj=system_u:system_r:kernel_t:s0 key=(null)
[ 191.248649] audit: type=1327 audit(1712946226.210:1454): proctitle=737368643A20636F7265205B707269765D
[ 191.257327] audit: type=1105 audit(1712946226.252:1455): pid=5182 uid=0 auid=500 ses=18 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_open grantors=pam_loginuid,pam_env,pam_lastlog,pam_limits,pam_env,pam_unix,pam_permit,pam_systemd,pam_mail acct="core" exe="/usr/sbin/sshd" hostname=139.178.89.65 addr=139.178.89.65 terminal=ssh res=success'
[ 191.270529] audit: type=1103 audit(1712946226.264:1456): pid=5184 uid=0 auid=500 ses=18 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=139.178.89.65 addr=139.178.89.65 terminal=ssh res=success'
[ 191.522298] audit: type=1106 audit(1712946226.517:1457): pid=5182 uid=0 auid=500 ses=18 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_close grantors=pam_loginuid,pam_env,pam_lastlog,pam_limits,pam_env,pam_unix,pam_permit,pam_systemd,pam_mail acct="core" exe="/usr/sbin/sshd" hostname=139.178.89.65 addr=139.178.89.65 terminal=ssh res=success'
[ 191.534755] audit: type=1104 audit(1712946226.517:1458): pid=5182 uid=0 auid=500 ses=18 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=139.178.89.65 addr=139.178.89.65 terminal=ssh res=success'
[ 200.566893] kauditd_printk_skb: 57 callbacks suppressed
[ 200.566898] audit: type=1130 audit(1712946235.561:1500): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='unit=sshd@22-172.31.30.133:22-139.178.89.65:36364 comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success'
[ 200.742270] audit: type=1101 audit(1712946235.737:1501): pid=5251 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:accounting grantors=pam_access,pam_unix,pam_faillock,pam_permit acct="core" exe="/usr/sbin/sshd" hostname=139.178.89.65 addr=139.178.89.65 terminal=ssh res=success'
[ 200.754734] audit: type=1103 audit(1712946235.737:1502): pid=5251 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=139.178.89.65 addr=139.178.89.65 terminal=ssh res=success'
[ 200.765723] audit: type=1006 audit(1712946235.737:1503): pid=5251 uid=0 subj=system_u:system_r:kernel_t:s0 old-auid=4294967295 auid=500 tty=(none) old-ses=4294967295 ses=23 res=1
[ 200.779481] audit: type=1300 audit(1712946235.737:1503): arch=c00000b7 syscall=64 success=yes exit=3 a0=5 a1=ffffe2951940 a2=3 a3=1 items=0 ppid=1 pid=5251 auid=500 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=23 comm="sshd" exe="/usr/sbin/sshd" subj=system_u:system_r:kernel_t:s0 key=(null)
[ 200.790483] audit: type=1327 audit(1712946235.737:1503): proctitle=737368643A20636F7265205B707269765D
[ 200.799669] audit: type=1105 audit(1712946235.794:1504): pid=5251 uid=0 auid=500 ses=23 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_open grantors=pam_loginuid,pam_env,pam_lastlog,pam_limits,pam_env,pam_unix,pam_permit,pam_systemd,pam_mail acct="core" exe="/usr/sbin/sshd" hostname=139.178.89.65 addr=139.178.89.65 terminal=ssh res=success'
[ 200.814232] audit: type=1103 audit(1712946235.808:1505): pid=5253 uid=0 auid=500 ses=23 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=139.178.89.65 addr=139.178.89.65 terminal=ssh res=success'
[ 201.102962] audit: type=1106 audit(1712946236.098:1506): pid=5251 uid=0 auid=500 ses=23 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_close grantors=pam_loginuid,pam_env,pam_lastlog,pam_limits,pam_env,pam_unix,pam_permit,pam_systemd,pam_mail acct="core" exe="/usr/sbin/sshd" hostname=139.178.89.65 addr=139.178.89.65 terminal=ssh res=success'
[ 201.116284] audit: type=1104 audit(1712946236.098:1507): pid=5251 uid=0 auid=500 ses=23 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=139.178.89.65 addr=139.178.89.65 terminal=ssh res=success'
[ 203.799864] IPv6: ADDRCONF(NETDEV_CHANGE): eth0: link becomes ready
[ 203.802230] IPv6: ADDRCONF(NETDEV_CHANGE): cali18099eba872: link becomes ready
[ 205.794305] kauditd_printk_skb: 79 callbacks suppressed
[ 205.794310] audit: type=1400 audit(1712946240.790:1534): avc: denied { watch } for pid=2597 comm="kube-controller" path="/etc/kubernetes/pki/front-proxy-ca.crt" dev="nvme0n1p9" ino=520999 scontext=system_u:system_r:svirt_lxc_net_t:s0:c219,c819 tcontext=system_u:object_r:etc_t:s0 tclass=file permissive=0
[ 205.811328] audit: type=1300 audit(1712946240.790:1534): arch=c00000b7 syscall=27 success=no exit=-13 a0=a a1=4000eb9440 a2=fc6 a3=0 items=0 ppid=2443 pid=2597 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="kube-controller" exe="/usr/local/bin/kube-controller-manager" subj=system_u:system_r:svirt_lxc_net_t:s0:c219,c819 key=(null)
[ 205.833463] audit: type=1327 audit(1712946240.790:1534): proctitle=6B7562652D636F6E74726F6C6C65722D6D616E61676572002D2D616C6C6F636174652D6E6F64652D63696472733D74727565002D2D61757468656E7469636174696F6E2D6B756265636F6E6669673D2F6574632F6B756265726E657465732F636F6E74726F6C6C65722D6D616E616765722E636F6E66002D2D617574686F7269
[ 205.845772] audit: type=1400 audit(1712946240.790:1535): avc: denied { watch } for pid=2597 comm="kube-controller" path="/etc/kubernetes/pki/ca.crt" dev="nvme0n1p9" ino=520984 scontext=system_u:system_r:svirt_lxc_net_t:s0:c219,c819 tcontext=system_u:object_r:etc_t:s0 tclass=file permissive=0
[ 205.859964] audit: type=1300 audit(1712946240.790:1535): arch=c00000b7 syscall=27 success=no exit=-13 a0=a a1=4000c31fc0 a2=fc6 a3=0 items=0 ppid=2443 pid=2597 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="kube-controller" exe="/usr/local/bin/kube-controller-manager" subj=system_u:system_r:svirt_lxc_net_t:s0:c219,c819 key=(null)
[ 205.873330] audit: type=1327 audit(1712946240.790:1535): proctitle=6B7562652D636F6E74726F6C6C65722D6D616E61676572002D2D616C6C6F636174652D6E6F64652D63696472733D74727565002D2D61757468656E7469636174696F6E2D6B756265636F6E6669673D2F6574632F6B756265726E657465732F636F6E74726F6C6C65722D6D616E616765722E636F6E66002D2D617574686F7269
[ 206.130703] audit: type=1130 audit(1712946241.127:1536): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='unit=sshd@23-172.31.30.133:22-139.178.89.65:39146 comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success'
This is ip-172-31-30-133 (Linux aarch64 5.15.154-flatcar) 18:24:01
SSH host key: SHA256:dn7ikfOY4nqLgtqLIXRIp9zkFASKNtcUZHqDeoFUIJs (ED25519)
SSH host key: SHA256:enErRrtQqbMktuSSTo0gys6n35EzPLyDtbszlYM5akY (RSA)
SSH host key: SHA256:UiY8Hyzn+NrptGVnD90SU8ng06rdjLzsz6K7Y0LU2EA (ECDSA)
eth0: 172.31.30.133 fe80::424:61ff:fefd:1c97
ip-172-31-30-133 login: [ 206.346905] audit: type=1101 audit(1712946241.343:1537): pid=5376 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:accounting grantors=pam_access,pam_unix,pam_faillock,pam_permit acct="core" exe="/usr/sbin/sshd" hostname=139.178.89.65 addr=139.178.89.65 terminal=ssh res=success'
[ 206.360046] audit: type=1103 audit(1712946241.356:1538): pid=5376 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=139.178.89.65 addr=139.178.89.65 terminal=ssh res=success'
[ 206.371637] audit: type=1006 audit(1712946241.356:1539): pid=5376 uid=0 subj=system_u:system_r:kernel_t:s0 old-auid=4294967295 auid=500 tty=(none) old-ses=4294967295 ses=24 res=1
[ 210.827078] kauditd_printk_skb: 97 callbacks suppressed
[ 210.827082] audit: type=1400 audit(1712946245.823:1574): avc: denied { watch } for pid=2597 comm="kube-controller" path="/etc/kubernetes/pki/ca.crt" dev="nvme0n1p9" ino=520984 scontext=system_u:system_r:svirt_lxc_net_t:s0:c219,c819 tcontext=system_u:object_r:etc_t:s0 tclass=file permissive=0
[ 210.838655] audit: type=1300 audit(1712946245.823:1574): arch=c00000b7 syscall=27 success=no exit=-13 a0=a a1=4000f6ae00 a2=fc6 a3=0 items=0 ppid=2443 pid=2597 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="kube-controller" exe="/usr/local/bin/kube-controller-manager" subj=system_u:system_r:svirt_lxc_net_t:s0:c219,c819 key=(null)
[ 210.853416] audit: type=1327 audit(1712946245.823:1574): proctitle=6B7562652D636F6E74726F6C6C65722D6D616E61676572002D2D616C6C6F636174652D6E6F64652D63696472733D74727565002D2D61757468656E7469636174696F6E2D6B756265636F6E6669673D2F6574632F6B756265726E657465732F636F6E74726F6C6C65722D6D616E616765722E636F6E66002D2D617574686F7269
[ 210.863498] audit: type=1400 audit(1712946245.840:1575): avc: denied { watch } for pid=2597 comm="kube-controller" path="/etc/kubernetes/pki/ca.crt" dev="nvme0n1p9" ino=520984 scontext=system_u:system_r:svirt_lxc_net_t:s0:c219,c819 tcontext=system_u:object_r:etc_t:s0 tclass=file permissive=0
[ 210.873019] audit: type=1300 audit(1712946245.840:1575): arch=c00000b7 syscall=27 success=no exit=-13 a0=a a1=4000f01680 a2=fc6 a3=0 items=0 ppid=2443 pid=2597 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="kube-controller" exe="/usr/local/bin/kube-controller-manager" subj=system_u:system_r:svirt_lxc_net_t:s0:c219,c819 key=(null)
[ 210.885571] audit: type=1327 audit(1712946245.840:1575): proctitle=6B7562652D636F6E74726F6C6C65722D6D616E61676572002D2D616C6C6F636174652D6E6F64652D63696472733D74727565002D2D61757468656E7469636174696F6E2D6B756265636F6E6669673D2F6574632F6B756265726E657465732F636F6E74726F6C6C65722D6D616E616765722E636F6E66002D2D617574686F7269
[ 210.896241] audit: type=1400 audit(1712946245.847:1576): avc: denied { watch } for pid=2597 comm="kube-controller" path="/etc/kubernetes/pki/ca.crt" dev="nvme0n1p9" ino=520984 scontext=system_u:system_r:svirt_lxc_net_t:s0:c219,c819 tcontext=system_u:object_r:etc_t:s0 tclass=file permissive=0
[ 210.905714] audit: type=1300 audit(1712946245.847:1576): arch=c00000b7 syscall=27 success=no exit=-13 a0=a a1=4000f6b0e0 a2=fc6 a3=0 items=0 ppid=2443 pid=2597 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="kube-controller" exe="/usr/local/bin/kube-controller-manager" subj=system_u:system_r:svirt_lxc_net_t:s0:c219,c819 key=(null)
[ 210.919003] audit: type=1327 audit(1712946245.847:1576): proctitle=6B7562652D636F6E74726F6C6C65722D6D616E61676572002D2D616C6C6F636174652D6E6F64652D63696472733D74727565002D2D61757468656E7469636174696F6E2D6B756265636F6E6669673D2F6574632F6B756265726E657465732F636F6E74726F6C6C65722D6D616E616765722E636F6E66002D2D617574686F7269
[ 210.929099] audit: type=1400 audit(1712946245.847:1577): avc: denied { watch } for pid=2597 comm="kube-controller" path="/etc/kubernetes/pki/ca.crt" dev="nvme0n1p9" ino=520984 scontext=system_u:system_r:svirt_lxc_net_t:s0:c219,c819 tcontext=system_u:object_r:etc_t:s0 tclass=file permissive=0
[ 217.392160] kauditd_printk_skb: 13 callbacks suppressed
[ 217.392165] audit: type=1130 audit(1712946252.388:1587): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='unit=sshd@25-172.31.30.133:22-139.178.89.65:46258 comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success'
[ 217.568126] audit: type=1101 audit(1712946252.564:1588): pid=5452 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:accounting grantors=pam_access,pam_unix,pam_faillock,pam_permit acct="core" exe="/usr/sbin/sshd" hostname=139.178.89.65 addr=139.178.89.65 terminal=ssh res=success'
[ 217.581643] audit: type=1103 audit(1712946252.577:1589): pid=5452 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=139.178.89.65 addr=139.178.89.65 terminal=ssh res=success'
[ 217.592051] audit: type=1006 audit(1712946252.577:1590): pid=5452 uid=0 subj=system_u:system_r:kernel_t:s0 old-auid=4294967295 auid=500 tty=(none) old-ses=4294967295 ses=26 res=1
[ 217.598648] audit: type=1300 audit(1712946252.577:1590): arch=c00000b7 syscall=64 success=yes exit=3 a0=5 a1=ffffe4bbaf20 a2=3 a3=1 items=0 ppid=1 pid=5452 auid=500 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=26 comm="sshd" exe="/usr/sbin/sshd" subj=system_u:system_r:kernel_t:s0 key=(null)
[ 217.609748] audit: type=1327 audit(1712946252.577:1590): proctitle=737368643A20636F7265205B707269765D
[ 217.626163] audit: type=1105 audit(1712946252.622:1591): pid=5452 uid=0 auid=500 ses=26 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_open grantors=pam_loginuid,pam_env,pam_lastlog,pam_limits,pam_env,pam_unix,pam_permit,pam_systemd,pam_mail acct="core" exe="/usr/sbin/sshd" hostname=139.178.89.65 addr=139.178.89.65 terminal=ssh res=success'
[ 217.637854] audit: type=1103 audit(1712946252.625:1592): pid=5454 uid=0 auid=500 ses=26 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=139.178.89.65 addr=139.178.89.65 terminal=ssh res=success'
[ 217.920173] audit: type=1106 audit(1712946252.916:1593): pid=5452 uid=0 auid=500 ses=26 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_close grantors=pam_loginuid,pam_env,pam_lastlog,pam_limits,pam_env,pam_unix,pam_permit,pam_systemd,pam_mail acct="core" exe="/usr/sbin/sshd" hostname=139.178.89.65 addr=139.178.89.65 terminal=ssh res=success'
[ 217.932772] audit: type=1104 audit(1712946252.918:1594): pid=5452 uid=0 auid=500 ses=26 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=139.178.89.65 addr=139.178.89.65 terminal=ssh res=success'
[ 222.948869] kauditd_printk_skb: 1 callbacks suppressed
[ 222.948874] audit: type=1130 audit(1712946257.945:1596): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='unit=sshd@26-172.31.30.133:22-139.178.89.65:44270 comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success'
[ 223.134819] audit: type=1101 audit(1712946258.131:1597): pid=5492 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:accounting grantors=pam_access,pam_unix,pam_faillock,pam_permit acct="core" exe="/usr/sbin/sshd" hostname=139.178.89.65 addr=139.178.89.65 terminal=ssh res=success'
[ 223.145939] audit: type=1103 audit(1712946258.133:1598): pid=5492 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=139.178.89.65 addr=139.178.89.65 terminal=ssh res=success'
[ 223.155726] audit: type=1006 audit(1712946258.133:1599): pid=5492 uid=0 subj=system_u:system_r:kernel_t:s0 old-auid=4294967295 auid=500 tty=(none) old-ses=4294967295 ses=27 res=1
[ 223.161649] audit: type=1300 audit(1712946258.133:1599): arch=c00000b7 syscall=64 success=yes exit=3 a0=5 a1=fffff6800860 a2=3 a3=1 items=0 ppid=1 pid=5492 auid=500 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=27 comm="sshd" exe="/usr/sbin/sshd" subj=system_u:system_r:kernel_t:s0 key=(null)
[ 223.172813] audit: type=1327 audit(1712946258.133:1599): proctitle=737368643A20636F7265205B707269765D
[ 223.191970] audit: type=1105 audit(1712946258.188:1600): pid=5492 uid=0 auid=500 ses=27 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_open grantors=pam_loginuid,pam_env,pam_lastlog,pam_limits,pam_env,pam_unix,pam_permit,pam_systemd,pam_mail acct="core" exe="/usr/sbin/sshd" hostname=139.178.89.65 addr=139.178.89.65 terminal=ssh res=success'
[ 223.204299] audit: type=1103 audit(1712946258.191:1601): pid=5494 uid=0 auid=500 ses=27 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=139.178.89.65 addr=139.178.89.65 terminal=ssh res=success'
[ 223.442340] audit: type=1106 audit(1712946258.439:1602): pid=5492 uid=0 auid=500 ses=27 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_close grantors=pam_loginuid,pam_env,pam_lastlog,pam_limits,pam_env,pam_unix,pam_permit,pam_systemd,pam_mail acct="core" exe="/usr/sbin/sshd" hostname=139.178.89.65 addr=139.178.89.65 terminal=ssh res=success'
[ 223.454410] audit: type=1104 audit(1712946258.439:1603): pid=5492 uid=0 auid=500 ses=27 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=139.178.89.65 addr=139.178.89.65 terminal=ssh res=success'
[ 228.478265] kauditd_printk_skb: 1 callbacks suppressed
[ 228.478271] audit: type=1130 audit(1712946263.473:1605): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='unit=sshd@27-172.31.30.133:22-139.178.89.65:44284 comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success'
[ 228.648434] audit: type=1101 audit(1712946263.645:1606): pid=5513 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:accounting grantors=pam_access,pam_unix,pam_faillock,pam_permit acct="core" exe="/usr/sbin/sshd" hostname=139.178.89.65 addr=139.178.89.65 terminal=ssh res=success'
[ 228.659081] audit: type=1103 audit(1712946263.648:1607): pid=5513 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=139.178.89.65 addr=139.178.89.65 terminal=ssh res=success'
[ 228.669813] audit: type=1006 audit(1712946263.648:1608): pid=5513 uid=0 subj=system_u:system_r:kernel_t:s0 old-auid=4294967295 auid=500 tty=(none) old-ses=4294967295 ses=28 res=1
[ 228.676249] audit: type=1300 audit(1712946263.648:1608): arch=c00000b7 syscall=64 success=yes exit=3 a0=5 a1=fffffe7bbf50 a2=3 a3=1 items=0 ppid=1 pid=5513 auid=500 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=28 comm="sshd" exe="/usr/sbin/sshd" subj=system_u:system_r:kernel_t:s0 key=(null)
[ 228.687166] audit: type=1327 audit(1712946263.648:1608): proctitle=737368643A20636F7265205B707269765D
[ 228.692010] audit: type=1105 audit(1712946263.685:1609): pid=5513 uid=0 auid=500 ses=28 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_open grantors=pam_loginuid,pam_env,pam_lastlog,pam_limits,pam_env,pam_unix,pam_permit,pam_systemd,pam_mail acct="core" exe="/usr/sbin/sshd" hostname=139.178.89.65 addr=139.178.89.65 terminal=ssh res=success'
[ 228.704385] audit: type=1103 audit(1712946263.700:1610): pid=5516 uid=0 auid=500 ses=28 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=139.178.89.65 addr=139.178.89.65 terminal=ssh res=success'
[ 228.946663] audit: type=1106 audit(1712946263.943:1611): pid=5513 uid=0 auid=500 ses=28 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_close grantors=pam_loginuid,pam_env,pam_lastlog,pam_limits,pam_env,pam_unix,pam_permit,pam_systemd,pam_mail acct="core" exe="/usr/sbin/sshd" hostname=139.178.89.65 addr=139.178.89.65 terminal=ssh res=success'
[ 228.958449] audit: type=1104 audit(1712946263.943:1612): pid=5513 uid=0 auid=500 ses=28 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=139.178.89.65 addr=139.178.89.65 terminal=ssh res=success'
[ 233.715111] kauditd_printk_skb: 7 callbacks suppressed
[ 233.715116] audit: type=1325 audit(1712946268.711:1616): table=filter:128 family=2 entries=8 op=nft_register_rule pid=5547 subj=system_u:system_r:kernel_t:s0 comm="iptables-restor"
[ 233.723071] audit: type=1300 audit(1712946268.711:1616): arch=c00000b7 syscall=211 success=yes exit=2932 a0=3 a1=ffffe65cc420 a2=0 a3=1 items=0 ppid=2954 pid=5547 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="iptables-restor" exe="/usr/sbin/xtables-nft-multi" subj=system_u:system_r:kernel_t:s0 key=(null)
[ 233.734998] audit: type=1327 audit(1712946268.711:1616): proctitle=69707461626C65732D726573746F7265002D770035002D5700313030303030002D2D6E6F666C757368002D2D636F756E74657273
[ 233.740795] audit: type=1325 audit(1712946268.714:1617): table=nat:129 family=2 entries=58 op=nft_register_chain pid=5547 subj=system_u:system_r:kernel_t:s0 comm="iptables-restor"
[ 233.746791] audit: type=1300 audit(1712946268.714:1617): arch=c00000b7 syscall=211 success=yes exit=20452 a0=3 a1=ffffe65cc420 a2=0 a3=1 items=0 ppid=2954 pid=5547 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="iptables-restor" exe="/usr/sbin/xtables-nft-multi" subj=system_u:system_r:kernel_t:s0 key=(null)
[ 233.758107] audit: type=1327 audit(1712946268.714:1617): proctitle=69707461626C65732D726573746F7265002D770035002D5700313030303030002D2D6E6F666C757368002D2D636F756E74657273
[ 233.979645] audit: type=1130 audit(1712946268.976:1618): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='unit=sshd@28-172.31.30.133:22-139.178.89.65:33082 comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success'
[ 234.177167] audit: type=1101 audit(1712946269.174:1619): pid=5549 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:accounting grantors=pam_access,pam_unix,pam_faillock,pam_permit acct="core" exe="/usr/sbin/sshd" hostname=139.178.89.65 addr=139.178.89.65 terminal=ssh res=success'
[ 234.189078] audit: type=1103 audit(1712946269.185:1620): pid=5549 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=139.178.89.65 addr=139.178.89.65 terminal=ssh res=success'
[ 234.198798] audit: type=1006 audit(1712946269.186:1621): pid=5549 uid=0 subj=system_u:system_r:kernel_t:s0 old-auid=4294967295 auid=500 tty=(none) old-ses=4294967295 ses=29 res=1
[ 248.666798] kauditd_printk_skb: 7 callbacks suppressed
[ 248.666803] audit: type=1334 audit(1712946283.662:1627): prog-id=126 op=UNLOAD
[ 248.676797] audit: type=1334 audit(1712946283.671:1628): prog-id=129 op=UNLOAD
[ 249.064093] audit: type=1334 audit(1712946284.060:1629): prog-id=93 op=UNLOAD
[ 249.066838] audit: type=1334 audit(1712946284.060:1630): prog-id=114 op=UNLOAD
[ 249.548085] audit: type=1400 audit(1712946284.544:1631): avc: denied { bpf } for pid=1 comm="systemd" capability=39 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0
[ 249.556227] audit: type=1400 audit(1712946284.544:1632): avc: denied { bpf } for pid=1 comm="systemd" capability=39 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0
[ 249.564382] audit: type=1400 audit(1712946284.544:1633): avc: denied { bpf } for pid=1 comm="systemd" capability=39 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0
[ 249.571786] audit: type=1400 audit(1712946284.544:1634): avc: denied { perfmon } for pid=1 comm="systemd" capability=38 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0
[ 249.579658] audit: type=1400 audit(1712946284.544:1635): avc: denied { perfmon } for pid=1 comm="systemd" capability=38 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0
[ 249.587016] audit: type=1400 audit(1712946284.544:1636): avc: denied { perfmon } for pid=1 comm="systemd" capability=38 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0
[ 253.894095] kauditd_printk_skb: 114 callbacks suppressed
[ 253.894100] audit: type=1334 audit(1712946288.890:1669): prog-id=88 op=UNLOAD
[ 253.898742] audit: type=1334 audit(1712946288.890:1670): prog-id=99 op=UNLOAD
[ 254.537138] audit: type=1400 audit(1712946289.533:1671): avc: denied { bpf } for pid=1 comm="systemd" capability=39 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0
[ 254.544446] audit: type=1400 audit(1712946289.533:1672): avc: denied { bpf } for pid=1 comm="systemd" capability=39 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0
[ 254.553096] audit: type=1400 audit(1712946289.533:1673): avc: denied { bpf } for pid=1 comm="systemd" capability=39 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0
[ 254.560440] audit: type=1400 audit(1712946289.533:1674): avc: denied { perfmon } for pid=1 comm="systemd" capability=38 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0
[ 254.568088] audit: type=1400 audit(1712946289.533:1675): avc: denied { perfmon } for pid=1 comm="systemd" capability=38 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0
[ 254.576017] audit: type=1400 audit(1712946289.533:1676): avc: denied { perfmon } for pid=1 comm="systemd" capability=38 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0
[ 254.584067] audit: type=1400 audit(1712946289.533:1677): avc: denied { perfmon } for pid=1 comm="systemd" capability=38 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0
[ 254.592173] audit: type=1400 audit(1712946289.533:1678): avc: denied { perfmon } for pid=1 comm="systemd" capability=38 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0