vme0n1p9 [ 25.226514] extend-filesystems[1795]: resize2fs 1.46.5 (30-Dec-2021) [ 25.559144] EXT4-fs (nvme0n1p9): resizing filesystem from 553472 to 1489915 blocks [ OK ] Started update-engine.service. [ OK ] Started locksmithd.service. [ 25.708790] EXT4-fs (nvme0n1p9): resized filesystem to 1489915 [ OK ] Finished extend-filesystems.service. [ 25.412891] extend-filesystems[1795]: Filesystem at /dev/nvme0n1p9 is mounted on /; on-line resizing required [ 25.415242] extend-filesystems[1795]: old_desc_blocks = 1, new_desc_blocks = 1 [ 25.418064] extend-filesystems[1795]: The filesystem on /dev/nvme0n1p9 is now 1489915 (4k) blocks long. [ OK ] Finished update-ssh-keys-after-ignition.service. [ 25.424066] extend-filesystems[1731]: Resized filesystem in /dev/nvme0n1p9 [ OK ] Started systemd-logind.service. [ OK ] Started containerd.service. [ OK ] Started systemd-hostnamed.service. Starting polkit.service... [ OK ] Started polkit.service. [ OK ] Finished coreos-metadata-sshkeys@core.service. 2024/12/13 02:16:25Z: Amazon SSM Agent v2.3.1319.0 is running 2024/12/13 02:16:25Z: OsProductName: Flatcar Container Linux by Kinvolk 2024/12/13 02:16:25Z: OsVersion: 3510.3.6 [ OK ] Finished prepare-helm.service. [ OK ] Started kubelet.service. [ OK ] Finished sshd-keygen.service. Starting issuegen.service... [ OK ] Finished issuegen.service. Starting systemd-user-sessions.service... [ OK ] Finished systemd-user-sessions.service. [ OK ] Started getty@tty1.service. [ OK ] Started serial-getty@ttyS0.service. [ OK ] Reached target getty.target. [ OK ] Reached target multi-user.target. Starting systemd-update-utmp-runlevel.service... [ OK ] Finished systemd-update-utmp-runlevel.service. This is ip-172-31-16-209 (Linux x86_64 5.15.173-flatcar) 02:16:28 SSH host key: SHA256:zDdaJ+pI2NY/hCSJeD119wnOS3vhE1eD7NshvB2dNWE (RSA) SSH host key: SHA256:CXAeoCUFw4n0DIi55/r4qHchJfx+xpcEtUcqKVdmUmw (ED25519) SSH host key: SHA256:MH2/FyszVxEIG/3L6gV7Ikg754Zk5wXVHSDp5+RQ54o (ECDSA) eth0: 172.31.16.209 fe80::4ba:3cff:fe96:b67f ip-172-31-16-209 login: [ 35.329822] kauditd_printk_skb: 175 callbacks suppressed [ 35.329826] audit: type=1305 audit(1734056194.010:152): auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 op=remove_rule key=(null) list=5 res=1 [ 35.333021] audit: type=1300 audit(1734056194.010:152): arch=c000003e syscall=44 success=yes exit=1056 a0=3 a1=7ffe61f12600 a2=420 a3=0 items=0 ppid=1 pid=2035 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="auditctl" exe="/usr/sbin/auditctl" subj=system_u:system_r:kernel_t:s0 key=(null) [ 35.345969] audit: type=1327 audit(1734056194.010:152): proctitle=2F7362696E2F617564697463746C002D44 [ 35.347448] audit: type=1131 audit(1734056194.013:153): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='unit=audit-rules comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success' [ 35.372412] audit: type=1130 audit(1734056194.053:154): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='unit=audit-rules comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success' [ 35.376050] audit: type=1106 audit(1734056194.054:155): pid=2031 uid=500 auid=500 ses=6 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_close grantors=pam_limits,pam_env,pam_unix,pam_permit,pam_systemd acct="root" exe="/usr/bin/sudo" hostname=? addr=? terminal=? res=success' [ 35.383898] audit: type=1104 audit(1734056194.054:156): pid=2031 uid=500 auid=500 ses=6 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="root" exe="/usr/bin/sudo" hostname=? addr=? terminal=? res=success' [ 35.402041] audit: type=1106 audit(1734056194.083:157): pid=2027 uid=0 auid=500 ses=6 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_close grantors=pam_loginuid,pam_env,pam_lastlog,pam_limits,pam_env,pam_unix,pam_permit,pam_systemd,pam_mail acct="core" exe="/usr/sbin/sshd" hostname=139.178.68.195 addr=139.178.68.195 terminal=ssh res=success' [ 35.413223] audit: type=1104 audit(1734056194.083:158): pid=2027 uid=0 auid=500 ses=6 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=139.178.68.195 addr=139.178.68.195 terminal=ssh res=success' [ 35.417573] audit: type=1131 audit(1734056194.090:159): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='unit=sshd@5-172.31.16.209:22-139.178.68.195:47142 comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success' [ 37.215410] Initializing XFRM netlink socket This is ip-172-31-16-209 (Linux x86_64 5.15.173-flatcar) 02:16:36 SSH host key: SHA256:zDdaJ+pI2NY/hCSJeD119wnOS3vhE1eD7NshvB2dNWE (RSA) SSH host key: SHA256:CXAeoCUFw4n0DIi55/r4qHchJfx+xpcEtUcqKVdmUmw (ED25519) SSH host key: SHA256:MH2/FyszVxEIG/3L6gV7Ikg754Zk5wXVHSDp5+RQ54o (ECDSA) eth0: 172.31.16.209 fe80::4ba:3cff:fe96:b67f ip-172-31-16-209 login: [ 49.773345] kauditd_printk_skb: 88 callbacks suppressed [ 49.773349] audit: type=1130 audit(1734056208.451:198): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='unit=kubelet comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success' [ 49.778888] audit: type=1131 audit(1734056208.451:199): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='unit=kubelet comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success' [ 50.360494] audit: type=1130 audit(1734056209.038:200): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='unit=kubelet comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success' [ 50.510527] audit: type=1131 audit(1734056209.188:201): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='unit=kubelet comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=failed' [ 56.443118] audit: type=1131 audit(1734056215.119:202): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='unit=systemd-hostnamed comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success' [ 60.747687] audit: type=1130 audit(1734056219.420:203): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='unit=kubelet comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success' [ 60.765215] audit: type=1131 audit(1734056219.420:204): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='unit=kubelet comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success' [ 62.311222] audit: type=1130 audit(1734056220.983:205): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='unit=kubelet comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success' [ 62.442919] audit: type=1131 audit(1734056221.117:206): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='unit=kubelet comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=failed' [ 62.633632] audit: type=1130 audit(1734056221.309:207): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='unit=kubelet comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success' [ 62.646220] audit: type=1131 audit(1734056221.321:208): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='unit=kubelet comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success' [ 63.619165] audit: type=1130 audit(1734056222.295:209): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='unit=kubelet comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success' [ 63.632845] audit: type=1131 audit(1734056222.309:210): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='unit=kubelet comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success' [ 64.377374] audit: type=1130 audit(1734056223.052:211): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='unit=kubelet comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success' [ 65.725194] audit: type=1400 audit(1734056224.401:212): avc: denied { mac_admin } for pid=2450 comm="kubelet" capability=33 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 65.734355] audit: type=1401 audit(1734056224.401:212): op=setxattr invalid_context="system_u:object_r:container_file_t:s0" [ 65.740503] audit: type=1300 audit(1734056224.401:212): arch=c000003e syscall=188 success=no exit=-22 a0=c0006f4240 a1=c000c7d530 a2=c0006f4150 a3=25 items=0 ppid=1 pid=2450 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="kubelet" exe="/usr/bin/kubelet" subj=system_u:system_r:kernel_t:s0 key=(null) [ 75.285397] kauditd_printk_skb: 45 callbacks suppressed [ 75.285399] audit: type=1131 audit(1734056233.961:227): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='unit=kubelet comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success' [ 77.271799] audit: type=1130 audit(1734056235.947:228): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='unit=kubelet comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success' [ 77.651566] audit: type=1400 audit(1734056236.327:229): avc: denied { mac_admin } for pid=2903 comm="kubelet" capability=33 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 77.656346] audit: type=1401 audit(1734056236.327:229): op=setxattr invalid_context="system_u:object_r:container_file_t:s0" [ 77.659230] audit: type=1300 audit(1734056236.327:229): arch=c000003e syscall=188 success=no exit=-22 a0=c000c408d0 a1=c00087ca68 a2=c000c408a0 a3=25 items=0 ppid=1 pid=2903 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="kubelet" exe="/usr/bin/kubelet" subj=system_u:system_r:kernel_t:s0 key=(null) [ 77.666296] audit: type=1327 audit(1734056236.327:229): proctitle=2F7573722F62696E2F6B7562656C6574002D2D626F6F7473747261702D6B756265636F6E6669673D2F6574632F6B756265726E657465732F626F6F7473747261702D6B7562656C65742E636F6E66002D2D6B756265636F6E6669673D2F6574632F6B756265726E657465732F6B7562656C65742E636F6E66002D2D636F6E6669 [ 77.674935] audit: type=1400 audit(1734056236.335:230): avc: denied { mac_admin } for pid=2903 comm="kubelet" capability=33 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 77.678906] audit: type=1401 audit(1734056236.335:230): op=setxattr invalid_context="system_u:object_r:container_file_t:s0" [ 77.680884] audit: type=1300 audit(1734056236.335:230): arch=c000003e syscall=188 success=no exit=-22 a0=c0009ca100 a1=c0002a0780 a2=c00099e750 a3=25 items=0 ppid=1 pid=2903 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="kubelet" exe="/usr/bin/kubelet" subj=system_u:system_r:kernel_t:s0 key=(null) [ 77.686144] audit: type=1327 audit(1734056236.335:230): proctitle=2F7573722F62696E2F6B7562656C6574002D2D626F6F7473747261702D6B756265636F6E6669673D2F6574632F6B756265726E657465732F626F6F7473747261702D6B7562656C65742E636F6E66002D2D6B756265636F6E6669673D2F6574632F6B756265726E657465732F6B7562656C65742E636F6E66002D2D636F6E6669 [ 84.144805] kauditd_printk_skb: 4 callbacks suppressed [ 84.144809] audit: type=1106 audit(1734056242.820:232): pid=2064 uid=500 auid=500 ses=7 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_close grantors=pam_limits,pam_env,pam_unix,pam_permit,pam_systemd acct="root" exe="/usr/bin/sudo" hostname=? addr=? terminal=? res=success' [ 84.150260] audit: type=1104 audit(1734056242.820:233): pid=2064 uid=500 auid=500 ses=7 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="root" exe="/usr/bin/sudo" hostname=? addr=? terminal=? res=success' [ 84.175487] audit: type=1106 audit(1734056242.851:234): pid=2060 uid=0 auid=500 ses=7 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_close grantors=pam_loginuid,pam_env,pam_lastlog,pam_limits,pam_env,pam_unix,pam_permit,pam_systemd,pam_mail acct="core" exe="/usr/sbin/sshd" hostname=139.178.68.195 addr=139.178.68.195 terminal=ssh res=success' [ 84.182253] audit: type=1104 audit(1734056242.851:235): pid=2060 uid=0 auid=500 ses=7 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=139.178.68.195 addr=139.178.68.195 terminal=ssh res=success' [ 84.187335] audit: type=1131 audit(1734056242.854:236): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='unit=sshd@6-172.31.16.209:22-139.178.68.195:47144 comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success' [ 89.667876] audit: type=1325 audit(1734056248.343:237): table=mangle:38 family=2 entries=1 op=nft_register_chain pid=3122 subj=system_u:system_r:kernel_t:s0 comm="iptables" [ 89.670587] audit: type=1325 audit(1734056248.344:238): table=mangle:39 family=10 entries=1 op=nft_register_chain pid=3123 subj=system_u:system_r:kernel_t:s0 comm="ip6tables" [ 89.673273] audit: type=1300 audit(1734056248.344:238): arch=c000003e syscall=46 success=yes exit=104 a0=3 a1=7ffd227c4750 a2=0 a3=7ffd227c473c items=0 ppid=3039 pid=3123 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="ip6tables" exe="/usr/sbin/xtables-nft-multi" subj=system_u:system_r:kernel_t:s0 key=(null) [ 89.678746] audit: type=1327 audit(1734056248.344:238): proctitle=6970367461626C6573002D770035002D5700313030303030002D4E004B5542452D50524F58592D43414E415259002D74006D616E676C65 [ 89.682069] audit: type=1325 audit(1734056248.347:239): table=nat:40 family=10 entries=1 op=nft_register_chain pid=3125 subj=system_u:system_r:kernel_t:s0 comm="ip6tables" [ 89.684819] audit: type=1300 audit(1734056248.347:239): arch=c000003e syscall=46 success=yes exit=100 a0=3 a1=7ffeedfc5b20 a2=0 a3=7ffeedfc5b0c items=0 ppid=3039 pid=3125 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="ip6tables" exe="/usr/sbin/xtables-nft-multi" subj=system_u:system_r:kernel_t:s0 key=(null) [ 89.690844] audit: type=1327 audit(1734056248.347:239): proctitle=6970367461626C6573002D770035002D5700313030303030002D4E004B5542452D50524F58592D43414E415259002D74006E6174 [ 89.693440] audit: type=1325 audit(1734056248.348:240): table=filter:41 family=10 entries=1 op=nft_register_chain pid=3126 subj=system_u:system_r:kernel_t:s0 comm="ip6tables" [ 89.696009] audit: type=1300 audit(1734056248.348:240): arch=c000003e syscall=46 success=yes exit=104 a0=3 a1=7ffc050c5c40 a2=0 a3=7ffc050c5c2c items=0 ppid=3039 pid=3126 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="ip6tables" exe="/usr/sbin/xtables-nft-multi" subj=system_u:system_r:kernel_t:s0 key=(null) [ 89.701184] audit: type=1327 audit(1734056248.348:240): proctitle=6970367461626C6573002D770035002D5700313030303030002D4E004B5542452D50524F58592D43414E415259002D740066696C746572 [ 96.254397] kauditd_printk_skb: 143 callbacks suppressed [ 96.254400] audit: type=1325 audit(1734056254.930:288): table=filter:89 family=2 entries=15 op=nft_register_rule pid=3259 subj=system_u:system_r:kernel_t:s0 comm="iptables-restor" [ 96.258000] audit: type=1300 audit(1734056254.930:288): arch=c000003e syscall=46 success=yes exit=5908 a0=3 a1=7ffdacbe7f70 a2=0 a3=7ffdacbe7f5c items=0 ppid=3039 pid=3259 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="iptables-restor" exe="/usr/sbin/xtables-nft-multi" subj=system_u:system_r:kernel_t:s0 key=(null) [ 96.263496] audit: type=1327 audit(1734056254.930:288): proctitle=69707461626C65732D726573746F7265002D770035002D5700313030303030002D2D6E6F666C757368002D2D636F756E74657273 [ 96.265794] audit: type=1325 audit(1734056254.934:289): table=nat:90 family=2 entries=12 op=nft_register_rule pid=3259 subj=system_u:system_r:kernel_t:s0 comm="iptables-restor" [ 96.268290] audit: type=1300 audit(1734056254.934:289): arch=c000003e syscall=46 success=yes exit=2700 a0=3 a1=7ffdacbe7f70 a2=0 a3=0 items=0 ppid=3039 pid=3259 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="iptables-restor" exe="/usr/sbin/xtables-nft-multi" subj=system_u:system_r:kernel_t:s0 key=(null) [ 96.272910] audit: type=1327 audit(1734056254.934:289): proctitle=69707461626C65732D726573746F7265002D770035002D5700313030303030002D2D6E6F666C757368002D2D636F756E74657273 [ 96.280547] audit: type=1325 audit(1734056254.956:290): table=filter:91 family=2 entries=16 op=nft_register_rule pid=3261 subj=system_u:system_r:kernel_t:s0 comm="iptables-restor" [ 96.283309] audit: type=1300 audit(1734056254.956:290): arch=c000003e syscall=46 success=yes exit=5908 a0=3 a1=7ffc433b6b00 a2=0 a3=7ffc433b6aec items=0 ppid=3039 pid=3261 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="iptables-restor" exe="/usr/sbin/xtables-nft-multi" subj=system_u:system_r:kernel_t:s0 key=(null) [ 96.288368] audit: type=1327 audit(1734056254.956:290): proctitle=69707461626C65732D726573746F7265002D770035002D5700313030303030002D2D6E6F666C757368002D2D636F756E74657273 [ 96.295228] audit: type=1325 audit(1734056254.970:291): table=nat:92 family=2 entries=12 op=nft_register_rule pid=3261 subj=system_u:system_r:kernel_t:s0 comm="iptables-restor" [ 107.303530] kauditd_printk_skb: 8 callbacks suppressed [ 107.303542] audit: type=1325 audit(1734056265.979:294): table=filter:95 family=2 entries=17 op=nft_register_rule pid=3617 subj=system_u:system_r:kernel_t:s0 comm="iptables-restor" [ 107.307993] audit: type=1300 audit(1734056265.979:294): arch=c000003e syscall=46 success=yes exit=5908 a0=3 a1=7ffde0486910 a2=0 a3=7ffde04868fc items=0 ppid=3039 pid=3617 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="iptables-restor" exe="/usr/sbin/xtables-nft-multi" subj=system_u:system_r:kernel_t:s0 key=(null) [ 107.315659] audit: type=1327 audit(1734056265.979:294): proctitle=69707461626C65732D726573746F7265002D770035002D5700313030303030002D2D6E6F666C757368002D2D636F756E74657273 [ 107.318836] audit: type=1325 audit(1734056265.992:295): table=nat:96 family=2 entries=19 op=nft_register_chain pid=3617 subj=system_u:system_r:kernel_t:s0 comm="iptables-restor" [ 107.322167] audit: type=1300 audit(1734056265.992:295): arch=c000003e syscall=46 success=yes exit=6276 a0=3 a1=7ffde0486910 a2=0 a3=7ffde04868fc items=0 ppid=3039 pid=3617 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="iptables-restor" exe="/usr/sbin/xtables-nft-multi" subj=system_u:system_r:kernel_t:s0 key=(null) [ 107.330161] audit: type=1327 audit(1734056265.992:295): proctitle=69707461626C65732D726573746F7265002D770035002D5700313030303030002D2D6E6F666C757368002D2D636F756E74657273 [ 117.501743] wireguard: WireGuard 1.0.0 loaded. See www.wireguard.com for information. [ 117.502909] wireguard: Copyright (C) 2015-2019 Jason A. Donenfeld . All Rights Reserved. [ 119.677786] audit: type=1400 audit(1734056278.353:296): avc: denied { write } for pid=4148 comm="tee" name="fd" dev="proc" ino=25505 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=dir permissive=0 [ 119.682222] audit: type=1300 audit(1734056278.353:296): arch=c000003e syscall=257 success=yes exit=3 a0=ffffff9c a1=7ffdcde3ea0d a2=241 a3=1b6 items=1 ppid=4116 pid=4148 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="tee" exe="/usr/bin/coreutils" subj=system_u:system_r:kernel_t:s0 key=(null) [ 119.700907] audit: type=1307 audit(1734056278.353:296): cwd="/etc/service/enabled/node-status-reporter/log" [ 119.705647] audit: type=1302 audit(1734056278.353:296): item=0 name="/dev/fd/63" inode=24545 dev=00:0c mode=010600 ouid=0 ogid=0 rdev=00:00 obj=system_u:system_r:kernel_t:s0 nametype=NORMAL cap_fp=0 cap_fi=0 cap_fe=0 cap_fver=0 cap_frootid=0 [ 119.711658] audit: type=1327 audit(1734056278.353:296): proctitle=2F7573722F62696E2F636F72657574696C73002D2D636F72657574696C732D70726F672D73686562616E673D746565002F7573722F62696E2F746565002F6465762F66642F3633 [ 119.766377] audit: type=1400 audit(1734056278.442:297): avc: denied { write } for pid=4187 comm="tee" name="fd" dev="proc" ino=24571 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=dir permissive=0 [ 119.770047] audit: type=1400 audit(1734056278.443:298): avc: denied { write } for pid=4154 comm="tee" name="fd" dev="proc" ino=25528 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=dir permissive=0 [ 119.774237] audit: type=1300 audit(1734056278.443:298): arch=c000003e syscall=257 success=yes exit=3 a0=ffffff9c a1=7ffd60a62a1e a2=241 a3=1b6 items=1 ppid=4113 pid=4154 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="tee" exe="/usr/bin/coreutils" subj=system_u:system_r:kernel_t:s0 key=(null) [ 119.781770] audit: type=1307 audit(1734056278.443:298): cwd="/etc/service/enabled/cni/log" [ 119.783235] audit: type=1302 audit(1734056278.443:298): item=0 name="/dev/fd/63" inode=25510 dev=00:0c mode=010600 ouid=0 ogid=0 rdev=00:00 obj=system_u:system_r:kernel_t:s0 nametype=NORMAL cap_fp=0 cap_fi=0 cap_fe=0 cap_fver=0 cap_frootid=0 This is ip-172-31-16-209 (Linux x86_64 5.15.173-flatcar) 02:18:00 SSH host key: SHA256:zDdaJ+pI2NY/hCSJeD119wnOS3vhE1eD7NshvB2dNWE (RSA) SSH host key: SHA256:CXAeoCUFw4n0DIi55/r4qHchJfx+xpcEtUcqKVdmUmw (ED25519) SSH host key: SHA256:MH2/FyszVxEIG/3L6gV7Ikg754Zk5wXVHSDp5+RQ54o (ECDSA) eth0: 172.31.16.209 fe80::4ba:3cff:fe96:b67f ip-172-31-16-209 login: [ 121.663063] IPv6: ADDRCONF(NETDEV_CHANGE): calid4a4b98fb31: link becomes ready [ 121.737665] IPv6: ADDRCONF(NETDEV_CHANGE): eth0: link becomes ready [ 121.738942] IPv6: ADDRCONF(NETDEV_CHANGE): cali8c746bda383: link becomes ready [ 122.444355] IPv6: ADDRCONF(NETDEV_CHANGE): calic443e646030: link becomes ready This is ip-172-31-16-209 (Linux x86_64 5.15.173-flatcar) 02:18:02 SSH host key: SHA256:zDdaJ+pI2NY/hCSJeD119wnOS3vhE1eD7NshvB2dNWE (RSA) SSH host key: SHA256:CXAeoCUFw4n0DIi55/r4qHchJfx+xpcEtUcqKVdmUmw (ED25519) SSH host key: SHA256:MH2/FyszVxEIG/3L6gV7Ikg754Zk5wXVHSDp5+RQ54o (ECDSA) eth0: 172.31.16.209 fe80::4ba:3cff:fe96:b67f ip-172-31-16-209 login: This is ip-172-31-16-209 (Linux x86_64 5.15.173-flatcar) 02:18:03 SSH host key: SHA256:zDdaJ+pI2NY/hCSJeD119wnOS3vhE1eD7NshvB2dNWE (RSA) SSH host key: SHA256:CXAeoCUFw4n0DIi55/r4qHchJfx+xpcEtUcqKVdmUmw (ED25519) SSH host key: SHA256:MH2/FyszVxEIG/3L6gV7Ikg754Zk5wXVHSDp5+RQ54o (ECDSA) eth0: 172.31.16.209 fe80::4ba:3cff:fe96:b67f ip-172-31-16-209 login: [ 124.835301] IPv6: ADDRCONF(NETDEV_CHANGE): eth0: link becomes ready [ 124.836811] IPv6: ADDRCONF(NETDEV_CHANGE): cali6f6f1590cdd: link becomes ready [ 124.900084] kauditd_printk_skb: 520 callbacks suppressed [ 124.900089] audit: type=1325 audit(1734056283.575:403): table=filter:106 family=2 entries=42 op=nft_register_chain pid=4714 subj=system_u:system_r:kernel_t:s0 comm="iptables-nft-re" [ 124.913279] audit: type=1300 audit(1734056283.575:403): arch=c000003e syscall=46 success=yes exit=21016 a0=3 a1=7ffd59bedba0 a2=0 a3=7ffd59bedb8c items=0 ppid=4123 pid=4714 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="iptables-nft-re" exe="/usr/sbin/xtables-nft-multi" subj=system_u:system_r:kernel_t:s0 key=(null) [ 124.932578] audit: type=1327 audit(1734056283.575:403): proctitle=69707461626C65732D6E66742D726573746F7265002D2D6E6F666C757368002D2D766572626F7365002D2D77616974003130002D2D776169742D696E74657276616C003530303030 [ 125.250444] audit: type=1325 audit(1734056283.926:404): table=filter:107 family=2 entries=13 op=nft_register_rule pid=4763 subj=system_u:system_r:kernel_t:s0 comm="iptables-restor" [ 125.255913] audit: type=1300 audit(1734056283.926:404): arch=c000003e syscall=46 success=yes exit=3676 a0=3 a1=7ffc42958c20 a2=0 a3=7ffc42958c0c items=0 ppid=3039 pid=4763 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="iptables-restor" exe="/usr/sbin/xtables-nft-multi" subj=system_u:system_r:kernel_t:s0 key=(null) [ 125.267452] audit: type=1327 audit(1734056283.926:404): proctitle=69707461626C65732D726573746F7265002D770035002D5700313030303030002D2D6E6F666C757368002D2D636F756E74657273 [ 125.273338] audit: type=1325 audit(1734056283.940:405): table=nat:108 family=2 entries=35 op=nft_register_chain pid=4763 subj=system_u:system_r:kernel_t:s0 comm="iptables-restor" [ 125.279092] audit: type=1300 audit(1734056283.940:405): arch=c000003e syscall=46 success=yes exit=14196 a0=3 a1=7ffc42958c20 a2=0 a3=7ffc42958c0c items=0 ppid=3039 pid=4763 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="iptables-restor" exe="/usr/sbin/xtables-nft-multi" subj=system_u:system_r:kernel_t:s0 key=(null) [ 125.297057] audit: type=1327 audit(1734056283.940:405): proctitle=69707461626C65732D726573746F7265002D770035002D5700313030303030002D2D6E6F666C757368002D2D636F756E74657273 [ 125.683833] IPv6: ADDRCONF(NETDEV_CHANGE): calieee03326707: link becomes ready This is ip-172-31-16-209 (Linux x86_64 5.15.173-flatcar) 02:18:04 SSH host key: SHA256:zDdaJ+pI2NY/hCSJeD119wnOS3vhE1eD7NshvB2dNWE (RSA) SSH host key: SHA256:CXAeoCUFw4n0DIi55/r4qHchJfx+xpcEtUcqKVdmUmw (ED25519) SSH host key: SHA256:MH2/FyszVxEIG/3L6gV7Ikg754Zk5wXVHSDp5+RQ54o (ECDSA) eth0: 172.31.16.209 fe80::4ba:3cff:fe96:b67f ip-172-31-16-209 login: [ 125.778473] audit: type=1325 audit(1734056284.454:406): table=filter:109 family=2 entries=46 op=nft_register_chain pid=4806 subj=system_u:system_r:kernel_t:s0 comm="iptables-nft-re" [ 126.547096] IPv6: ADDRCONF(NETDEV_CHANGE): eth0: link becomes ready [ 126.548568] IPv6: ADDRCONF(NETDEV_CHANGE): cali6fc2d16e966: link becomes ready This is ip-172-31-16-209 (Linux x86_64 5.15.173-flatcar) 02:18:05 SSH host key: SHA256:zDdaJ+pI2NY/hCSJeD119wnOS3vhE1eD7NshvB2dNWE (RSA) SSH host key: SHA256:CXAeoCUFw4n0DIi55/r4qHchJfx+xpcEtUcqKVdmUmw (ED25519) SSH host key: SHA256:MH2/FyszVxEIG/3L6gV7Ikg754Zk5wXVHSDp5+RQ54o (ECDSA) eth0: 172.31.16.209 fe80::4ba:3cff:fe96:b67f ip-172-31-16-209 login: This is ip-172-31-16-209 (Linux x86_64 5.15.173-flatcar) 02:18:06 SSH host key: SHA256:zDdaJ+pI2NY/hCSJeD119wnOS3vhE1eD7NshvB2dNWE (RSA) SSH host key: SHA256:CXAeoCUFw4n0DIi55/r4qHchJfx+xpcEtUcqKVdmUmw (ED25519) SSH host key: SHA256:MH2/FyszVxEIG/3L6gV7Ikg754Zk5wXVHSDp5+RQ54o (ECDSA) eth0: 172.31.16.209 fe80::4ba:3cff:fe96:b67f ip-172-31-16-209 login: This is ip-172-31-16-209 (Linux x86_64 5.15.173-flatcar) 02:18:07 SSH host key: SHA256:zDdaJ+pI2NY/hCSJeD119wnOS3vhE1eD7NshvB2dNWE (RSA) SSH host key: SHA256:CXAeoCUFw4n0DIi55/r4qHchJfx+xpcEtUcqKVdmUmw (ED25519) SSH host key: SHA256:MH2/FyszVxEIG/3L6gV7Ikg754Zk5wXVHSDp5+RQ54o (ECDSA) eth0: 172.31.16.209 fe80::4ba:3cff:fe96:b67f ip-172-31-16-209 login: [ 130.660236] kauditd_printk_skb: 31 callbacks suppressed [ 130.660240] audit: type=1106 audit(1734056289.333:420): pid=5036 uid=0 auid=500 ses=8 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_close grantors=pam_loginuid,pam_env,pam_lastlog,pam_limits,pam_env,pam_unix,pam_permit,pam_systemd,pam_mail acct="core" exe="/usr/sbin/sshd" hostname=139.178.68.195 addr=139.178.68.195 terminal=ssh res=success' [ 130.678057] audit: type=1104 audit(1734056289.334:421): pid=5036 uid=0 auid=500 ses=8 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=139.178.68.195 addr=139.178.68.195 terminal=ssh res=success' [ 130.682814] audit: type=1131 audit(1734056289.347:422): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='unit=sshd@7-172.31.16.209:22-139.178.68.195:54754 comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success' [ 134.296197] audit: type=1325 audit(1734056292.972:423): table=filter:117 family=2 entries=10 op=nft_register_rule pid=5183 subj=system_u:system_r:kernel_t:s0 comm="iptables-restor" [ 134.299434] audit: type=1300 audit(1734056292.972:423): arch=c000003e syscall=46 success=yes exit=3676 a0=3 a1=7ffd53c6e9d0 a2=0 a3=7ffd53c6e9bc items=0 ppid=3039 pid=5183 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="iptables-restor" exe="/usr/sbin/xtables-nft-multi" subj=system_u:system_r:kernel_t:s0 key=(null) [ 134.305374] audit: type=1327 audit(1734056292.972:423): proctitle=69707461626C65732D726573746F7265002D770035002D5700313030303030002D2D6E6F666C757368002D2D636F756E74657273 [ 134.353336] audit: type=1325 audit(1734056293.029:424): table=nat:118 family=2 entries=20 op=nft_register_rule pid=5183 subj=system_u:system_r:kernel_t:s0 comm="iptables-restor" [ 134.356965] audit: type=1300 audit(1734056293.029:424): arch=c000003e syscall=46 success=yes exit=5772 a0=3 a1=7ffd53c6e9d0 a2=0 a3=7ffd53c6e9bc items=0 ppid=3039 pid=5183 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="iptables-restor" exe="/usr/sbin/xtables-nft-multi" subj=system_u:system_r:kernel_t:s0 key=(null) [ 134.374820] audit: type=1327 audit(1734056293.029:424): proctitle=69707461626C65732D726573746F7265002D770035002D5700313030303030002D2D6E6F666C757368002D2D636F756E74657273 [ 135.355029] audit: type=1325 audit(1734056294.031:425): table=filter:119 family=2 entries=9 op=nft_register_rule pid=5222 subj=system_u:system_r:kernel_t:s0 comm="iptables-restor" [ 135.681416] kauditd_printk_skb: 5 callbacks suppressed [ 135.681420] audit: type=1130 audit(1734056294.357:427): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='unit=sshd@8-172.31.16.209:22-139.178.68.195:54760 comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success' [ 135.983150] audit: type=1101 audit(1734056294.659:428): pid=5223 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:accounting grantors=pam_access,pam_unix,pam_faillock,pam_permit acct="core" exe="/usr/sbin/sshd" hostname=139.178.68.195 addr=139.178.68.195 terminal=ssh res=success' [ 135.987705] audit: type=1103 audit(1734056294.659:429): pid=5223 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=139.178.68.195 addr=139.178.68.195 terminal=ssh res=success' [ 136.003703] audit: type=1006 audit(1734056294.659:430): pid=5223 uid=0 subj=system_u:system_r:kernel_t:s0 old-auid=4294967295 auid=500 tty=(none) old-ses=4294967295 ses=9 res=1 [ 136.014261] audit: type=1300 audit(1734056294.659:430): arch=c000003e syscall=1 success=yes exit=3 a0=5 a1=7ffddf8a1950 a2=3 a3=0 items=0 ppid=1 pid=5223 auid=500 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=9 comm="sshd" exe="/usr/sbin/sshd" subj=system_u:system_r:kernel_t:s0 key=(null) [ 136.029723] audit: type=1327 audit(1734056294.659:430): proctitle=737368643A20636F7265205B707269765D [ 136.035280] audit: type=1105 audit(1734056294.705:431): pid=5223 uid=0 auid=500 ses=9 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_open grantors=pam_loginuid,pam_env,pam_lastlog,pam_limits,pam_env,pam_unix,pam_permit,pam_systemd,pam_mail acct="core" exe="/usr/sbin/sshd" hostname=139.178.68.195 addr=139.178.68.195 terminal=ssh res=success' [ 136.042360] audit: type=1103 audit(1734056294.717:432): pid=5247 uid=0 auid=500 ses=9 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=139.178.68.195 addr=139.178.68.195 terminal=ssh res=success' [ 136.598546] audit: type=1325 audit(1734056295.274:433): table=filter:121 family=2 entries=8 op=nft_register_rule pid=5257 subj=system_u:system_r:kernel_t:s0 comm="iptables-restor" [ 136.602032] audit: type=1300 audit(1734056295.274:433): arch=c000003e syscall=46 success=yes exit=2932 a0=3 a1=7ffd2b708f50 a2=0 a3=7ffd2b708f3c items=0 ppid=3039 pid=5257 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="iptables-restor" exe="/usr/sbin/xtables-nft-multi" subj=system_u:system_r:kernel_t:s0 key=(null) [ 141.818470] kauditd_printk_skb: 7 callbacks suppressed [ 141.818473] audit: type=1130 audit(1734056300.494:438): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='unit=sshd@9-172.31.16.209:22-139.178.68.195:54822 comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success' [ 142.020453] audit: type=1101 audit(1734056300.696:439): pid=5589 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:accounting grantors=pam_access,pam_unix,pam_faillock,pam_permit acct="core" exe="/usr/sbin/sshd" hostname=139.178.68.195 addr=139.178.68.195 terminal=ssh res=success' [ 142.028215] audit: type=1103 audit(1734056300.704:440): pid=5589 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=139.178.68.195 addr=139.178.68.195 terminal=ssh res=success' [ 142.033417] audit: type=1006 audit(1734056300.704:441): pid=5589 uid=0 subj=system_u:system_r:kernel_t:s0 old-auid=4294967295 auid=500 tty=(none) old-ses=4294967295 ses=10 res=1 [ 142.039918] audit: type=1300 audit(1734056300.704:441): arch=c000003e syscall=1 success=yes exit=3 a0=5 a1=7ffd740b5ac0 a2=3 a3=0 items=0 ppid=1 pid=5589 auid=500 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=10 comm="sshd" exe="/usr/sbin/sshd" subj=system_u:system_r:kernel_t:s0 key=(null) [ 142.047531] audit: type=1327 audit(1734056300.704:441): proctitle=737368643A20636F7265205B707269765D [ 142.062414] audit: type=1105 audit(1734056300.738:442): pid=5589 uid=0 auid=500 ses=10 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_open grantors=pam_loginuid,pam_env,pam_lastlog,pam_limits,pam_env,pam_unix,pam_permit,pam_systemd,pam_mail acct="core" exe="/usr/sbin/sshd" hostname=139.178.68.195 addr=139.178.68.195 terminal=ssh res=success' [ 142.068417] audit: type=1103 audit(1734056300.744:443): pid=5592 uid=0 auid=500 ses=10 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=139.178.68.195 addr=139.178.68.195 terminal=ssh res=success' [ 142.407247] audit: type=1106 audit(1734056301.083:444): pid=5589 uid=0 auid=500 ses=10 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_close grantors=pam_loginuid,pam_env,pam_lastlog,pam_limits,pam_env,pam_unix,pam_permit,pam_systemd,pam_mail acct="core" exe="/usr/sbin/sshd" hostname=139.178.68.195 addr=139.178.68.195 terminal=ssh res=success' [ 142.421940] audit: type=1104 audit(1734056301.084:445): pid=5589 uid=0 auid=500 ses=10 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=139.178.68.195 addr=139.178.68.195 terminal=ssh res=success' [ 148.466655] kauditd_printk_skb: 23 callbacks suppressed [ 148.466658] audit: type=1130 audit(1734056307.143:465): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='unit=sshd@12-172.31.16.209:22-139.178.68.195:44930 comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success' [ 148.724482] audit: type=1101 audit(1734056307.400:466): pid=5628 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:accounting grantors=pam_access,pam_unix,pam_faillock,pam_permit acct="core" exe="/usr/sbin/sshd" hostname=139.178.68.195 addr=139.178.68.195 terminal=ssh res=success' [ 148.729162] audit: type=1103 audit(1734056307.405:467): pid=5628 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=139.178.68.195 addr=139.178.68.195 terminal=ssh res=success' [ 148.741508] audit: type=1006 audit(1734056307.405:468): pid=5628 uid=0 subj=system_u:system_r:kernel_t:s0 old-auid=4294967295 auid=500 tty=(none) old-ses=4294967295 ses=13 res=1 [ 148.746934] audit: type=1300 audit(1734056307.405:468): arch=c000003e syscall=1 success=yes exit=3 a0=5 a1=7fff8c665dd0 a2=3 a3=0 items=0 ppid=1 pid=5628 auid=500 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=13 comm="sshd" exe="/usr/sbin/sshd" subj=system_u:system_r:kernel_t:s0 key=(null) [ 148.754768] audit: type=1327 audit(1734056307.405:468): proctitle=737368643A20636F7265205B707269765D [ 148.764859] audit: type=1105 audit(1734056307.441:469): pid=5628 uid=0 auid=500 ses=13 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_open grantors=pam_loginuid,pam_env,pam_lastlog,pam_limits,pam_env,pam_unix,pam_permit,pam_systemd,pam_mail acct="core" exe="/usr/sbin/sshd" hostname=139.178.68.195 addr=139.178.68.195 terminal=ssh res=success' [ 148.771800] audit: type=1103 audit(1734056307.445:470): pid=5631 uid=0 auid=500 ses=13 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=139.178.68.195 addr=139.178.68.195 terminal=ssh res=success' [ 149.107215] audit: type=1106 audit(1734056307.783:471): pid=5628 uid=0 auid=500 ses=13 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_close grantors=pam_loginuid,pam_env,pam_lastlog,pam_limits,pam_env,pam_unix,pam_permit,pam_systemd,pam_mail acct="core" exe="/usr/sbin/sshd" hostname=139.178.68.195 addr=139.178.68.195 terminal=ssh res=success' [ 149.112707] audit: type=1104 audit(1734056307.789:472): pid=5628 uid=0 auid=500 ses=13 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=139.178.68.195 addr=139.178.68.195 terminal=ssh res=success' [ 154.130036] kauditd_printk_skb: 1 callbacks suppressed [ 154.130039] audit: type=1130 audit(1734056312.805:474): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='unit=sshd@13-172.31.16.209:22-139.178.68.195:44932 comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success' [ 154.315274] audit: type=1101 audit(1734056312.991:475): pid=5647 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:accounting grantors=pam_access,pam_unix,pam_faillock,pam_permit acct="core" exe="/usr/sbin/sshd" hostname=139.178.68.195 addr=139.178.68.195 terminal=ssh res=success' [ 154.322297] audit: type=1103 audit(1734056312.996:476): pid=5647 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=139.178.68.195 addr=139.178.68.195 terminal=ssh res=success' [ 154.327889] audit: type=1006 audit(1734056312.996:477): pid=5647 uid=0 subj=system_u:system_r:kernel_t:s0 old-auid=4294967295 auid=500 tty=(none) old-ses=4294967295 ses=14 res=1 [ 154.330962] audit: type=1300 audit(1734056312.996:477): arch=c000003e syscall=1 success=yes exit=3 a0=5 a1=7fff9331a170 a2=3 a3=0 items=0 ppid=1 pid=5647 auid=500 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=14 comm="sshd" exe="/usr/sbin/sshd" subj=system_u:system_r:kernel_t:s0 key=(null) [ 154.338575] audit: type=1327 audit(1734056312.996:477): proctitle=737368643A20636F7265205B707269765D [ 154.345718] audit: type=1105 audit(1734056313.022:478): pid=5647 uid=0 auid=500 ses=14 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_open grantors=pam_loginuid,pam_env,pam_lastlog,pam_limits,pam_env,pam_unix,pam_permit,pam_systemd,pam_mail acct="core" exe="/usr/sbin/sshd" hostname=139.178.68.195 addr=139.178.68.195 terminal=ssh res=success' [ 154.352841] audit: type=1103 audit(1734056313.029:479): pid=5650 uid=0 auid=500 ses=14 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=139.178.68.195 addr=139.178.68.195 terminal=ssh res=success' [ 154.568762] audit: type=1106 audit(1734056313.245:480): pid=5647 uid=0 auid=500 ses=14 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_close grantors=pam_loginuid,pam_env,pam_lastlog,pam_limits,pam_env,pam_unix,pam_permit,pam_systemd,pam_mail acct="core" exe="/usr/sbin/sshd" hostname=139.178.68.195 addr=139.178.68.195 terminal=ssh res=success' [ 154.574503] audit: type=1104 audit(1734056313.246:481): pid=5647 uid=0 auid=500 ses=14 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=139.178.68.195 addr=139.178.68.195 terminal=ssh res=success' [ 159.593177] kauditd_printk_skb: 1 callbacks suppressed [ 159.593181] audit: type=1130 audit(1734056318.269:483): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='unit=sshd@14-172.31.16.209:22-139.178.68.195:33554 comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success' [ 159.836544] audit: type=1101 audit(1734056318.512:484): pid=5660 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:accounting grantors=pam_access,pam_unix,pam_faillock,pam_permit acct="core" exe="/usr/sbin/sshd" hostname=139.178.68.195 addr=139.178.68.195 terminal=ssh res=success' [ 159.842570] audit: type=1103 audit(1734056318.518:485): pid=5660 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=139.178.68.195 addr=139.178.68.195 terminal=ssh res=success' [ 159.847703] audit: type=1006 audit(1734056318.518:486): pid=5660 uid=0 subj=system_u:system_r:kernel_t:s0 old-auid=4294967295 auid=500 tty=(none) old-ses=4294967295 ses=15 res=1 [ 159.850155] audit: type=1300 audit(1734056318.518:486): arch=c000003e syscall=1 success=yes exit=3 a0=5 a1=7ffdd1620e90 a2=3 a3=0 items=0 ppid=1 pid=5660 auid=500 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=15 comm="sshd" exe="/usr/sbin/sshd" subj=system_u:system_r:kernel_t:s0 key=(null) [ 159.858180] audit: type=1327 audit(1734056318.518:486): proctitle=737368643A20636F7265205B707269765D [ 159.885789] audit: type=1105 audit(1734056318.561:487): pid=5660 uid=0 auid=500 ses=15 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_open grantors=pam_loginuid,pam_env,pam_lastlog,pam_limits,pam_env,pam_unix,pam_permit,pam_systemd,pam_mail acct="core" exe="/usr/sbin/sshd" hostname=139.178.68.195 addr=139.178.68.195 terminal=ssh res=success' [ 159.906032] audit: type=1103 audit(1734056318.579:488): pid=5663 uid=0 auid=500 ses=15 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=139.178.68.195 addr=139.178.68.195 terminal=ssh res=success' [ 160.383655] audit: type=1106 audit(1734056319.059:489): pid=5660 uid=0 auid=500 ses=15 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_close grantors=pam_loginuid,pam_env,pam_lastlog,pam_limits,pam_env,pam_unix,pam_permit,pam_systemd,pam_mail acct="core" exe="/usr/sbin/sshd" hostname=139.178.68.195 addr=139.178.68.195 terminal=ssh res=success' [ 160.405303] audit: type=1104 audit(1734056319.060:490): pid=5660 uid=0 auid=500 ses=15 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=139.178.68.195 addr=139.178.68.195 terminal=ssh res=success' [ 165.412465] kauditd_printk_skb: 1 callbacks suppressed [ 165.412468] audit: type=1130 audit(1734056324.088:492): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='unit=sshd@15-172.31.16.209:22-139.178.68.195:33560 comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success' [ 165.598461] audit: type=1101 audit(1734056324.274:493): pid=5678 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:accounting grantors=pam_access,pam_unix,pam_faillock,pam_permit acct="core" exe="/usr/sbin/sshd" hostname=139.178.68.195 addr=139.178.68.195 terminal=ssh res=success' [ 165.607014] audit: type=1103 audit(1734056324.282:494): pid=5678 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=139.178.68.195 addr=139.178.68.195 terminal=ssh res=success' [ 165.614775] audit: type=1006 audit(1734056324.283:495): pid=5678 uid=0 subj=system_u:system_r:kernel_t:s0 old-auid=4294967295 auid=500 tty=(none) old-ses=4294967295 ses=16 res=1 [ 165.619877] audit: type=1300 audit(1734056324.283:495): arch=c000003e syscall=1 success=yes exit=3 a0=5 a1=7ffc7ba31280 a2=3 a3=0 items=0 ppid=1 pid=5678 auid=500 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=16 comm="sshd" exe="/usr/sbin/sshd" subj=system_u:system_r:kernel_t:s0 key=(null) [ 165.625668] audit: type=1327 audit(1734056324.283:495): proctitle=737368643A20636F7265205B707269765D [ 165.654317] audit: type=1105 audit(1734056324.330:496): pid=5678 uid=0 auid=500 ses=16 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_open grantors=pam_loginuid,pam_env,pam_lastlog,pam_limits,pam_env,pam_unix,pam_permit,pam_systemd,pam_mail acct="core" exe="/usr/sbin/sshd" hostname=139.178.68.195 addr=139.178.68.195 terminal=ssh res=success' [ 165.660596] audit: type=1103 audit(1734056324.334:497): pid=5681 uid=0 auid=500 ses=16 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=139.178.68.195 addr=139.178.68.195 terminal=ssh res=success' [ 166.046798] audit: type=1106 audit(1734056324.723:498): pid=5678 uid=0 auid=500 ses=16 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_close grantors=pam_loginuid,pam_env,pam_lastlog,pam_limits,pam_env,pam_unix,pam_permit,pam_systemd,pam_mail acct="core" exe="/usr/sbin/sshd" hostname=139.178.68.195 addr=139.178.68.195 terminal=ssh res=success' [ 166.057613] audit: type=1104 audit(1734056324.733:499): pid=5678 uid=0 auid=500 ses=16 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=139.178.68.195 addr=139.178.68.195 terminal=ssh res=success' [ 170.439980] kauditd_printk_skb: 20 callbacks suppressed [ 170.439984] audit: type=1325 audit(1734056329.115:516): table=filter:123 family=2 entries=8 op=nft_register_rule pid=5777 subj=system_u:system_r:kernel_t:s0 comm="iptables-restor" [ 170.443454] audit: type=1300 audit(1734056329.115:516): arch=c000003e syscall=46 success=yes exit=2932 a0=3 a1=7ffcacf95b90 a2=0 a3=7ffcacf95b7c items=0 ppid=3039 pid=5777 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="iptables-restor" exe="/usr/sbin/xtables-nft-multi" subj=system_u:system_r:kernel_t:s0 key=(null) [ 170.450473] audit: type=1327 audit(1734056329.115:516): proctitle=69707461626C65732D726573746F7265002D770035002D5700313030303030002D2D6E6F666C757368002D2D636F756E74657273 [ 170.453761] audit: type=1325 audit(1734056329.128:517): table=nat:124 family=2 entries=22 op=nft_register_rule pid=5777 subj=system_u:system_r:kernel_t:s0 comm="iptables-restor" [ 170.456601] audit: type=1300 audit(1734056329.128:517): arch=c000003e syscall=46 success=yes exit=6540 a0=3 a1=7ffcacf95b90 a2=0 a3=7ffcacf95b7c items=0 ppid=3039 pid=5777 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="iptables-restor" exe="/usr/sbin/xtables-nft-multi" subj=system_u:system_r:kernel_t:s0 key=(null) [ 170.463883] audit: type=1327 audit(1734056329.128:517): proctitle=69707461626C65732D726573746F7265002D770035002D5700313030303030002D2D6E6F666C757368002D2D636F756E74657273 [ 170.470686] audit: type=1106 audit(1734056329.146:518): pid=5724 uid=0 auid=500 ses=18 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_close grantors=pam_loginuid,pam_env,pam_lastlog,pam_limits,pam_env,pam_unix,pam_permit,pam_systemd,pam_mail acct="core" exe="/usr/sbin/sshd" hostname=139.178.68.195 addr=139.178.68.195 terminal=ssh res=success' [ 170.476345] audit: type=1104 audit(1734056329.146:519): pid=5724 uid=0 auid=500 ses=18 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=139.178.68.195 addr=139.178.68.195 terminal=ssh res=success' [ 170.484233] audit: type=1131 audit(1734056329.159:520): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='unit=sshd@17-172.31.16.209:22-139.178.68.195:33586 comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success' [ 170.490252] audit: type=1130 audit(1734056329.163:521): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='unit=sshd@18-172.31.16.209:22-139.178.68.195:56104 comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success' [ 177.269761] kauditd_printk_skb: 27 callbacks suppressed [ 177.269764] audit: type=1130 audit(1734056335.946:541): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='unit=sshd@20-172.31.16.209:22-139.178.68.195:56116 comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success' [ 177.454296] audit: type=1101 audit(1734056336.130:542): pid=5805 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:accounting grantors=pam_access,pam_unix,pam_faillock,pam_permit acct="core" exe="/usr/sbin/sshd" hostname=139.178.68.195 addr=139.178.68.195 terminal=ssh res=success' [ 177.462576] audit: type=1103 audit(1734056336.138:543): pid=5805 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=139.178.68.195 addr=139.178.68.195 terminal=ssh res=success' [ 177.475067] audit: type=1006 audit(1734056336.138:544): pid=5805 uid=0 subj=system_u:system_r:kernel_t:s0 old-auid=4294967295 auid=500 tty=(none) old-ses=4294967295 ses=21 res=1 [ 177.477727] audit: type=1300 audit(1734056336.138:544): arch=c000003e syscall=1 success=yes exit=3 a0=5 a1=7fffb732bef0 a2=3 a3=0 items=0 ppid=1 pid=5805 auid=500 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=21 comm="sshd" exe="/usr/sbin/sshd" subj=system_u:system_r:kernel_t:s0 key=(null) [ 177.485649] audit: type=1327 audit(1734056336.138:544): proctitle=737368643A20636F7265205B707269765D [ 177.493040] audit: type=1105 audit(1734056336.168:545): pid=5805 uid=0 auid=500 ses=21 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_open grantors=pam_loginuid,pam_env,pam_lastlog,pam_limits,pam_env,pam_unix,pam_permit,pam_systemd,pam_mail acct="core" exe="/usr/sbin/sshd" hostname=139.178.68.195 addr=139.178.68.195 terminal=ssh res=success' [ 177.498760] audit: type=1103 audit(1734056336.175:546): pid=5808 uid=0 auid=500 ses=21 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=139.178.68.195 addr=139.178.68.195 terminal=ssh res=success' [ 177.716343] audit: type=1106 audit(1734056336.392:547): pid=5805 uid=0 auid=500 ses=21 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_close grantors=pam_loginuid,pam_env,pam_lastlog,pam_limits,pam_env,pam_unix,pam_permit,pam_systemd,pam_mail acct="core" exe="/usr/sbin/sshd" hostname=139.178.68.195 addr=139.178.68.195 terminal=ssh res=success' [ 177.740905] audit: type=1104 audit(1734056336.392:548): pid=5805 uid=0 auid=500 ses=21 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=139.178.68.195 addr=139.178.68.195 terminal=ssh res=success' [ 182.744921] kauditd_printk_skb: 7 callbacks suppressed [ 182.744925] audit: type=1130 audit(1734056341.421:552): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='unit=sshd@21-172.31.16.209:22-139.178.68.195:53276 comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success' [ 183.111740] audit: type=1101 audit(1734056341.785:553): pid=5822 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:accounting grantors=pam_access,pam_unix,pam_faillock,pam_permit acct="core" exe="/usr/sbin/sshd" hostname=139.178.68.195 addr=139.178.68.195 terminal=ssh res=success' [ 183.150585] audit: type=1103 audit(1734056341.826:554): pid=5822 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=139.178.68.195 addr=139.178.68.195 terminal=ssh res=success' [ 183.192335] audit: type=1006 audit(1734056341.826:555): pid=5822 uid=0 subj=system_u:system_r:kernel_t:s0 old-auid=4294967295 auid=500 tty=(none) old-ses=4294967295 ses=22 res=1 [ 183.201979] audit: type=1300 audit(1734056341.826:555): arch=c000003e syscall=1 success=yes exit=3 a0=5 a1=7ffd1b651300 a2=3 a3=0 items=0 ppid=1 pid=5822 auid=500 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=22 comm="sshd" exe="/usr/sbin/sshd" subj=system_u:system_r:kernel_t:s0 key=(null) [ 183.271199] audit: type=1327 audit(1734056341.826:555): proctitle=737368643A20636F7265205B707269765D [ 183.315669] audit: type=1105 audit(1734056341.992:556): pid=5822 uid=0 auid=500 ses=22 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_open grantors=pam_loginuid,pam_env,pam_lastlog,pam_limits,pam_env,pam_unix,pam_permit,pam_systemd,pam_mail acct="core" exe="/usr/sbin/sshd" hostname=139.178.68.195 addr=139.178.68.195 terminal=ssh res=success' [ 183.336717] audit: type=1103 audit(1734056342.013:557): pid=5825 uid=0 auid=500 ses=22 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=139.178.68.195 addr=139.178.68.195 terminal=ssh res=success' [ 183.957347] audit: type=1106 audit(1734056342.633:558): pid=5822 uid=0 auid=500 ses=22 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_close grantors=pam_loginuid,pam_env,pam_lastlog,pam_limits,pam_env,pam_unix,pam_permit,pam_systemd,pam_mail acct="core" exe="/usr/sbin/sshd" hostname=139.178.68.195 addr=139.178.68.195 terminal=ssh res=success' [ 183.973106] audit: type=1104 audit(1734056342.641:559): pid=5822 uid=0 auid=500 ses=22 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=139.178.68.195 addr=139.178.68.195 terminal=ssh res=success' [ 188.982583] kauditd_printk_skb: 1 callbacks suppressed [ 188.982588] audit: type=1130 audit(1734056347.658:561): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='unit=sshd@22-172.31.16.209:22-139.178.68.195:42582 comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success' [ 189.213659] audit: type=1101 audit(1734056347.890:562): pid=5835 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:accounting grantors=pam_access,pam_unix,pam_faillock,pam_permit acct="core" exe="/usr/sbin/sshd" hostname=139.178.68.195 addr=139.178.68.195 terminal=ssh res=success' [ 189.218540] audit: type=1103 audit(1734056347.894:563): pid=5835 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=139.178.68.195 addr=139.178.68.195 terminal=ssh res=success' [ 189.226983] audit: type=1006 audit(1734056347.894:564): pid=5835 uid=0 subj=system_u:system_r:kernel_t:s0 old-auid=4294967295 auid=500 tty=(none) old-ses=4294967295 ses=23 res=1 [ 189.229682] audit: type=1300 audit(1734056347.894:564): arch=c000003e syscall=1 success=yes exit=3 a0=5 a1=7ffdc7cfd580 a2=3 a3=0 items=0 ppid=1 pid=5835 auid=500 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=23 comm="sshd" exe="/usr/sbin/sshd" subj=system_u:system_r:kernel_t:s0 key=(null) [ 189.242808] audit: type=1327 audit(1734056347.894:564): proctitle=737368643A20636F7265205B707269765D [ 189.259863] audit: type=1105 audit(1734056347.936:565): pid=5835 uid=0 auid=500 ses=23 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_open grantors=pam_loginuid,pam_env,pam_lastlog,pam_limits,pam_env,pam_unix,pam_permit,pam_systemd,pam_mail acct="core" exe="/usr/sbin/sshd" hostname=139.178.68.195 addr=139.178.68.195 terminal=ssh res=success' [ 189.265804] audit: type=1103 audit(1734056347.942:566): pid=5838 uid=0 auid=500 ses=23 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=139.178.68.195 addr=139.178.68.195 terminal=ssh res=success' [ 189.538764] audit: type=1106 audit(1734056348.215:567): pid=5835 uid=0 auid=500 ses=23 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_close grantors=pam_loginuid,pam_env,pam_lastlog,pam_limits,pam_env,pam_unix,pam_permit,pam_systemd,pam_mail acct="core" exe="/usr/sbin/sshd" hostname=139.178.68.195 addr=139.178.68.195 terminal=ssh res=success' [ 189.543750] audit: type=1104 audit(1734056348.215:568): pid=5835 uid=0 auid=500 ses=23 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=139.178.68.195 addr=139.178.68.195 terminal=ssh res=success' [ 194.564041] kauditd_printk_skb: 1 callbacks suppressed [ 194.564044] audit: type=1130 audit(1734056353.240:570): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='unit=sshd@23-172.31.16.209:22-139.178.68.195:42586 comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success' [ 194.741657] audit: type=1101 audit(1734056353.418:571): pid=5847 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:accounting grantors=pam_access,pam_unix,pam_faillock,pam_permit acct="core" exe="/usr/sbin/sshd" hostname=139.178.68.195 addr=139.178.68.195 terminal=ssh res=success' [ 194.747532] audit: type=1103 audit(1734056353.423:572): pid=5847 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=139.178.68.195 addr=139.178.68.195 terminal=ssh res=success' [ 194.753944] audit: type=1006 audit(1734056353.424:573): pid=5847 uid=0 subj=system_u:system_r:kernel_t:s0 old-auid=4294967295 auid=500 tty=(none) old-ses=4294967295 ses=24 res=1 [ 194.757864] audit: type=1300 audit(1734056353.424:573): arch=c000003e syscall=1 success=yes exit=3 a0=5 a1=7ffd7fc8b200 a2=3 a3=0 items=0 ppid=1 pid=5847 auid=500 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=24 comm="sshd" exe="/usr/sbin/sshd" subj=system_u:system_r:kernel_t:s0 key=(null) [ 194.765273] audit: type=1327 audit(1734056353.424:573): proctitle=737368643A20636F7265205B707269765D [ 194.782058] audit: type=1105 audit(1734056353.457:574): pid=5847 uid=0 auid=500 ses=24 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_open grantors=pam_loginuid,pam_env,pam_lastlog,pam_limits,pam_env,pam_unix,pam_permit,pam_systemd,pam_mail acct="core" exe="/usr/sbin/sshd" hostname=139.178.68.195 addr=139.178.68.195 terminal=ssh res=success' [ 194.789976] audit: type=1103 audit(1734056353.466:575): pid=5850 uid=0 auid=500 ses=24 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=139.178.68.195 addr=139.178.68.195 terminal=ssh res=success' [ 195.010679] audit: type=1106 audit(1734056353.687:576): pid=5847 uid=0 auid=500 ses=24 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_close grantors=pam_loginuid,pam_env,pam_lastlog,pam_limits,pam_env,pam_unix,pam_permit,pam_systemd,pam_mail acct="core" exe="/usr/sbin/sshd" hostname=139.178.68.195 addr=139.178.68.195 terminal=ssh res=success' [ 195.028380] audit: type=1104 audit(1734056353.687:577): pid=5847 uid=0 auid=500 ses=24 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=139.178.68.195 addr=139.178.68.195 terminal=ssh res=success' [ 200.038608] kauditd_printk_skb: 1 callbacks suppressed [ 200.038611] audit: type=1130 audit(1734056358.715:579): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='unit=sshd@24-172.31.16.209:22-139.178.68.195:45684 comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success' [ 200.271623] audit: type=1101 audit(1734056358.948:580): pid=5904 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:accounting grantors=pam_access,pam_unix,pam_faillock,pam_permit acct="core" exe="/usr/sbin/sshd" hostname=139.178.68.195 addr=139.178.68.195 terminal=ssh res=success' [ 200.277397] audit: type=1103 audit(1734056358.953:581): pid=5904 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=139.178.68.195 addr=139.178.68.195 terminal=ssh res=success' [ 200.283287] audit: type=1006 audit(1734056358.953:582): pid=5904 uid=0 subj=system_u:system_r:kernel_t:s0 old-auid=4294967295 auid=500 tty=(none) old-ses=4294967295 ses=25 res=1 [ 200.287001] audit: type=1300 audit(1734056358.953:582): arch=c000003e syscall=1 success=yes exit=3 a0=5 a1=7ffca19634d0 a2=3 a3=0 items=0 ppid=1 pid=5904 auid=500 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=25 comm="sshd" exe="/usr/sbin/sshd" subj=system_u:system_r:kernel_t:s0 key=(null) [ 200.300630] audit: type=1327 audit(1734056358.953:582): proctitle=737368643A20636F7265205B707269765D [ 200.310953] audit: type=1105 audit(1734056358.987:583): pid=5904 uid=0 auid=500 ses=25 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_open grantors=pam_loginuid,pam_env,pam_lastlog,pam_limits,pam_env,pam_unix,pam_permit,pam_systemd,pam_mail acct="core" exe="/usr/sbin/sshd" hostname=139.178.68.195 addr=139.178.68.195 terminal=ssh res=success' [ 200.317052] audit: type=1103 audit(1734056358.987:584): pid=5907 uid=0 auid=500 ses=25 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=139.178.68.195 addr=139.178.68.195 terminal=ssh res=success' [ 200.554105] audit: type=1106 audit(1734056359.230:585): pid=5904 uid=0 auid=500 ses=25 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_close grantors=pam_loginuid,pam_env,pam_lastlog,pam_limits,pam_env,pam_unix,pam_permit,pam_systemd,pam_mail acct="core" exe="/usr/sbin/sshd" hostname=139.178.68.195 addr=139.178.68.195 terminal=ssh res=success' [ 200.564699] audit: type=1104 audit(1734056359.236:586): pid=5904 uid=0 auid=500 ses=25 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=139.178.68.195 addr=139.178.68.195 terminal=ssh res=success' [ 205.577350] kauditd_printk_skb: 1 callbacks suppressed [ 205.577353] audit: type=1130 audit(1734056364.253:588): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='unit=sshd@25-172.31.16.209:22-139.178.68.195:45698 comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success' [ 205.744465] audit: type=1101 audit(1734056364.420:589): pid=5923 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:accounting grantors=pam_access,pam_unix,pam_faillock,pam_permit acct="core" exe="/usr/sbin/sshd" hostname=139.178.68.195 addr=139.178.68.195 terminal=ssh res=success' [ 205.749313] audit: type=1103 audit(1734056364.425:590): pid=5923 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=139.178.68.195 addr=139.178.68.195 terminal=ssh res=success' [ 205.754050] audit: type=1006 audit(1734056364.426:591): pid=5923 uid=0 subj=system_u:system_r:kernel_t:s0 old-auid=4294967295 auid=500 tty=(none) old-ses=4294967295 ses=26 res=1 [ 205.758473] audit: type=1300 audit(1734056364.426:591): arch=c000003e syscall=1 success=yes exit=3 a0=5 a1=7fff13e2a2b0 a2=3 a3=0 items=0 ppid=1 pid=5923 auid=500 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=26 comm="sshd" exe="/usr/sbin/sshd" subj=system_u:system_r:kernel_t:s0 key=(null) [ 205.763789] audit: type=1327 audit(1734056364.426:591): proctitle=737368643A20636F7265205B707269765D [ 205.779616] audit: type=1105 audit(1734056364.456:592): pid=5923 uid=0 auid=500 ses=26 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_open grantors=pam_loginuid,pam_env,pam_lastlog,pam_limits,pam_env,pam_unix,pam_permit,pam_systemd,pam_mail acct="core" exe="/usr/sbin/sshd" hostname=139.178.68.195 addr=139.178.68.195 terminal=ssh res=success' [ 205.785065] audit: type=1103 audit(1734056364.458:593): pid=5926 uid=0 auid=500 ses=26 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=139.178.68.195 addr=139.178.68.195 terminal=ssh res=success' [ 206.049221] audit: type=1106 audit(1734056364.725:594): pid=5923 uid=0 auid=500 ses=26 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_close grantors=pam_loginuid,pam_env,pam_lastlog,pam_limits,pam_env,pam_unix,pam_permit,pam_systemd,pam_mail acct="core" exe="/usr/sbin/sshd" hostname=139.178.68.195 addr=139.178.68.195 terminal=ssh res=success' [ 206.056227] audit: type=1104 audit(1734056364.725:595): pid=5923 uid=0 auid=500 ses=26 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=139.178.68.195 addr=139.178.68.195 terminal=ssh res=success' [ 211.073911] kauditd_printk_skb: 1 callbacks suppressed [ 211.073914] audit: type=1130 audit(1734056369.749:597): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='unit=sshd@26-172.31.16.209:22-139.178.68.195:53710 comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success' [ 211.241030] audit: type=1101 audit(1734056369.917:598): pid=5942 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:accounting grantors=pam_access,pam_unix,pam_faillock,pam_permit acct="core" exe="/usr/sbin/sshd" hostname=139.178.68.195 addr=139.178.68.195 terminal=ssh res=success' [ 211.246840] audit: type=1103 audit(1734056369.923:599): pid=5942 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=139.178.68.195 addr=139.178.68.195 terminal=ssh res=success' [ 211.252445] audit: type=1006 audit(1734056369.923:600): pid=5942 uid=0 subj=system_u:system_r:kernel_t:s0 old-auid=4294967295 auid=500 tty=(none) old-ses=4294967295 ses=27 res=1 [ 211.256284] audit: type=1300 audit(1734056369.923:600): arch=c000003e syscall=1 success=yes exit=3 a0=5 a1=7fff15cea600 a2=3 a3=0 items=0 ppid=1 pid=5942 auid=500 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=27 comm="sshd" exe="/usr/sbin/sshd" subj=system_u:system_r:kernel_t:s0 key=(null) [ 211.262343] audit: type=1327 audit(1734056369.923:600): proctitle=737368643A20636F7265205B707269765D [ 211.279707] audit: type=1105 audit(1734056369.956:601): pid=5942 uid=0 auid=500 ses=27 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_open grantors=pam_loginuid,pam_env,pam_lastlog,pam_limits,pam_env,pam_unix,pam_permit,pam_systemd,pam_mail acct="core" exe="/usr/sbin/sshd" hostname=139.178.68.195 addr=139.178.68.195 terminal=ssh res=success' [ 211.285962] audit: type=1103 audit(1734056369.959:602): pid=5945 uid=0 auid=500 ses=27 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=139.178.68.195 addr=139.178.68.195 terminal=ssh res=success' [ 211.524862] audit: type=1106 audit(1734056370.201:603): pid=5942 uid=0 auid=500 ses=27 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_close grantors=pam_loginuid,pam_env,pam_lastlog,pam_limits,pam_env,pam_unix,pam_permit,pam_systemd,pam_mail acct="core" exe="/usr/sbin/sshd" hostname=139.178.68.195 addr=139.178.68.195 terminal=ssh res=success' [ 211.533853] audit: type=1104 audit(1734056370.201:604): pid=5942 uid=0 auid=500 ses=27 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=139.178.68.195 addr=139.178.68.195 terminal=ssh res=success'