11.412751] systemd[1]: Starting systemd-journald.service... [ 11.420980] systemd[1]: Starting systemd-modules-load.service... [ 11.426928] systemd[1]: Starting systemd-network-generator.service... [ 11.432538] systemd[1]: Starting systemd-remount-fs.service... [ 11.438801] systemd[1]: Starting systemd-udev-trigger.service... [ 11.442779] systemd[1]: verity-setup.service: Deactivated successfully. [ 11.445178] systemd[1]: Stopped verity-setup.service. [ 11.448224] systemd[1]: xenserver-pv-version.service was skipped because of an unmet condition check (ConditionVirtualization=xen). [ 11.457278] systemd[1]: Mounted dev-hugepages.mount. [ 11.460074] systemd[1]: Mounted dev-mqueue.mount. [ 11.466671] systemd[1]: Mounted media.mount. [ 11.471022] systemd[1]: Mounted sys-kernel-debug.mount. [ 11.475510] systemd[1]: Mounted sys-kernel-tracing.mount. [ 11.479754] systemd[1]: Mounted tmp.mount. [ 11.482946] systemd[1]: Finished kmod-static-nodes.service. [ 11.488394] systemd[1]: Started systemd-journald.service. [ 11.557838] systemd-journald[1411]: Received client request to flush runtime journal. [ 12.389389] input: Power Button as /devices/LNXSYSTM:00/LNXPWRBN:00/input/input2 [ 12.399430] ACPI: button: Power Button [PWRF] [ 12.401695] input: Sleep Button as /devices/LNXSYSTM:00/LNXSLPBN:00/input/input3 [ 12.412979] input: ImPS/2 Generic Wheel Mouse as /devices/platform/i8042/serio1/input/input4 [ 12.414355] ACPI: button: Sleep Button [SLPF] [ 12.439449] piix4_smbus 0000:00:01.3: SMBus base address uninitialized - upgrade BIOS or use force_addr=0xaddr [ 12.475248] mousedev: PS/2 mouse device common for all mice [ 12.506289] IPv6: ADDRCONF(NETDEV_CHANGE): eth0: link becomes ready [ 12.791169] loop0: detected capacity change from 0 to 219144 [ 13.066345] squashfs: version 4.0 (2009/01/31) Phillip Lougher [ 13.110618] loop1: detected capacity change from 0 to 219144 [ 14.454459] EXT4-fs (nvme0n1p9): resizing filesystem from 553472 to 3587067 blocks [ 14.673543] EXT4-fs (nvme0n1p9): resized filesystem to 3587067 2025/11/01 00:44:37Z: Amazon SSM Agent v2.3.1319.0 is running 2025/11/01 00:44:37Z: OsProductName: Flatcar Container Linux by Kinvolk 2025/11/01 00:44:37Z: OsVersion: 3510.3.8 This is ip-172-31-16-197 (Linux x86_64 5.15.192-flatcar) 00:44:40 SSH host key: SHA256:Q/A27Bd2obLcj5HVutGctm1iUyGIHSBX2gnbtk0gOVs (ED25519) SSH host key: SHA256:DF1viABGxARhmFow2crkw9f1vvT4yPpp29tQUN2tBMo (RSA) SSH host key: SHA256:0s6P+0Nb3JuiDYXnuEyrZn6gq+r5JgVAgt2Ne+V9FUM (ECDSA) eth0: 172.31.16.197 fe80::487:f5ff:fecf:a919 ip-172-31-16-197 login: [ 26.209723] kauditd_printk_skb: 233 callbacks suppressed [ 26.209727] audit: type=1305 audit(1761957888.895:212): auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 op=remove_rule key=(null) list=5 res=1 [ 26.215710] audit: type=1300 audit(1761957888.895:212): arch=c000003e syscall=44 success=yes exit=1056 a0=3 a1=7ffec032cc10 a2=420 a3=0 items=0 ppid=1 pid=1982 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="auditctl" exe="/usr/sbin/auditctl" subj=system_u:system_r:kernel_t:s0 key=(null) [ 26.222497] audit: type=1327 audit(1761957888.895:212): proctitle=2F7362696E2F617564697463746C002D44 [ 26.224714] audit: type=1131 audit(1761957888.896:213): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='unit=audit-rules comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success' [ 26.242406] audit: type=1130 audit(1761957888.927:214): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='unit=audit-rules comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success' [ 26.246473] audit: type=1106 audit(1761957888.928:215): pid=1978 uid=500 auid=500 ses=6 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_close grantors=pam_limits,pam_env,pam_unix,pam_permit,pam_systemd acct="root" exe="/usr/bin/sudo" hostname=? addr=? terminal=? res=success' [ 26.250539] audit: type=1104 audit(1761957888.928:216): pid=1978 uid=500 auid=500 ses=6 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="root" exe="/usr/bin/sudo" hostname=? addr=? terminal=? res=success' [ 26.265123] audit: type=1106 audit(1761957888.951:217): pid=1975 uid=0 auid=500 ses=6 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_close grantors=pam_loginuid,pam_env,pam_lastlog,pam_limits,pam_env,pam_unix,pam_permit,pam_systemd,pam_mail acct="core" exe="/usr/sbin/sshd" hostname=147.75.109.163 addr=147.75.109.163 terminal=ssh res=success' [ 26.269934] audit: type=1104 audit(1761957888.951:218): pid=1975 uid=0 auid=500 ses=6 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=147.75.109.163 addr=147.75.109.163 terminal=ssh res=success' [ 26.273683] audit: type=1131 audit(1761957888.952:219): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='unit=sshd@5-172.31.16.197:22-147.75.109.163:48422 comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success' [ 26.855638] Initializing XFRM netlink socket This is ip-172-31-16-197 (Linux x86_64 5.15.192-flatcar) 00:44:50 SSH host key: SHA256:Q/A27Bd2obLcj5HVutGctm1iUyGIHSBX2gnbtk0gOVs (ED25519) SSH host key: SHA256:DF1viABGxARhmFow2crkw9f1vvT4yPpp29tQUN2tBMo (RSA) SSH host key: SHA256:0s6P+0Nb3JuiDYXnuEyrZn6gq+r5JgVAgt2Ne+V9FUM (ECDSA) eth0: 172.31.16.197 fe80::487:f5ff:fecf:a919 ip-172-31-16-197 login: [ 38.276279] kauditd_printk_skb: 88 callbacks suppressed [ 38.276282] audit: type=1130 audit(1761957900.959:258): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='unit=kubelet comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success' [ 38.305374] audit: type=1131 audit(1761957900.959:259): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='unit=kubelet comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success' [ 39.219558] audit: type=1130 audit(1761957901.906:260): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='unit=kubelet comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success' [ 40.040781] audit: type=1131 audit(1761957902.727:261): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='unit=kubelet comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=failed' [ 45.075851] audit: type=1131 audit(1761957907.760:262): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='unit=systemd-hostnamed comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success' [ 45.094762] audit: type=1334 audit(1761957907.781:263): prog-id=43 op=UNLOAD [ 45.096296] audit: type=1334 audit(1761957907.781:264): prog-id=42 op=UNLOAD [ 45.097773] audit: type=1334 audit(1761957907.781:265): prog-id=41 op=UNLOAD [ 48.049188] audit: type=1130 audit(1761957910.735:266): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='unit=kubelet comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success' [ 48.053421] audit: type=1131 audit(1761957910.736:267): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='unit=kubelet comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success' [ 48.475946] audit: type=1400 audit(1761957911.162:268): avc: denied { bpf } for pid=1 comm="systemd" capability=39 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 48.479802] audit: type=1400 audit(1761957911.162:269): avc: denied { bpf } for pid=1 comm="systemd" capability=39 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 48.486096] audit: type=1400 audit(1761957911.162:270): avc: denied { bpf } for pid=1 comm="systemd" capability=39 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 48.492381] audit: type=1400 audit(1761957911.162:271): avc: denied { perfmon } for pid=1 comm="systemd" capability=38 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 50.358178] kauditd_printk_skb: 218 callbacks suppressed [ 50.358181] audit: type=1400 audit(1761957913.044:457): avc: denied { bpf } for pid=1 comm="systemd" capability=39 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 50.369465] audit: type=1400 audit(1761957913.044:458): avc: denied { bpf } for pid=1 comm="systemd" capability=39 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 50.376135] audit: type=1400 audit(1761957913.044:459): avc: denied { bpf } for pid=1 comm="systemd" capability=39 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 50.384038] audit: type=1400 audit(1761957913.044:460): avc: denied { perfmon } for pid=1 comm="systemd" capability=38 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 50.390596] audit: type=1400 audit(1761957913.044:461): avc: denied { perfmon } for pid=1 comm="systemd" capability=38 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 50.399990] audit: type=1400 audit(1761957913.044:462): avc: denied { perfmon } for pid=1 comm="systemd" capability=38 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 50.409681] audit: type=1400 audit(1761957913.044:463): avc: denied { perfmon } for pid=1 comm="systemd" capability=38 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 50.417954] audit: type=1400 audit(1761957913.044:464): avc: denied { perfmon } for pid=1 comm="systemd" capability=38 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 50.435744] audit: type=1400 audit(1761957913.044:465): avc: denied { bpf } for pid=1 comm="systemd" capability=39 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 50.450659] audit: type=1400 audit(1761957913.053:466): avc: denied { bpf } for pid=1 comm="systemd" capability=39 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 57.118277] kauditd_printk_skb: 356 callbacks suppressed [ 57.118280] audit: type=1400 audit(1761957919.804:573): avc: denied { bpf } for pid=1 comm="systemd" capability=39 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 57.127686] audit: type=1400 audit(1761957919.804:574): avc: denied { bpf } for pid=1 comm="systemd" capability=39 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 57.136372] audit: type=1400 audit(1761957919.804:575): avc: denied { bpf } for pid=1 comm="systemd" capability=39 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 57.143532] audit: type=1400 audit(1761957919.804:576): avc: denied { perfmon } for pid=1 comm="systemd" capability=38 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 57.151043] audit: type=1400 audit(1761957919.804:577): avc: denied { perfmon } for pid=1 comm="systemd" capability=38 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 57.157983] audit: type=1400 audit(1761957919.804:578): avc: denied { perfmon } for pid=1 comm="systemd" capability=38 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 57.165949] audit: audit_backlog=65 > audit_backlog_limit=64 [ 57.165999] audit: type=1400 audit(1761957919.804:579): avc: denied { perfmon } for pid=1 comm="systemd" capability=38 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 57.168063] audit: audit_lost=1 audit_rate_limit=0 audit_backlog_limit=64 [ 57.174999] audit: type=1400 audit(1761957919.804:580): avc: denied { perfmon } for pid=1 comm="systemd" capability=38 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 62.379835] kauditd_printk_skb: 260 callbacks suppressed [ 62.379839] audit: type=1400 audit(1761957925.066:816): avc: denied { watch } for pid=2497 comm="kube-controller" path="/opt/libexec/kubernetes/kubelet-plugins/volume/exec" dev="nvme0n1p9" ino=521088 scontext=system_u:system_r:svirt_lxc_net_t:s0:c632,c769 tcontext=system_u:object_r:usr_t:s0 tclass=dir permissive=0 [ 62.393468] audit: type=1300 audit(1761957925.066:816): arch=c000003e syscall=254 success=no exit=-13 a0=8 a1=c0007d1ac0 a2=fc6 a3=0 items=0 ppid=2345 pid=2497 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="kube-controller" exe="/usr/local/bin/kube-controller-manager" subj=system_u:system_r:svirt_lxc_net_t:s0:c632,c769 key=(null) [ 62.404090] audit: type=1327 audit(1761957925.066:816): proctitle=6B7562652D636F6E74726F6C6C65722D6D616E61676572002D2D616C6C6F636174652D6E6F64652D63696472733D74727565002D2D61757468656E7469636174696F6E2D6B756265636F6E6669673D2F6574632F6B756265726E657465732F636F6E74726F6C6C65722D6D616E616765722E636F6E66002D2D617574686F7269 [ 62.721613] audit: type=1400 audit(1761957925.408:817): avc: denied { watch } for pid=2497 comm="kube-controller" path="/etc/kubernetes/pki/ca.crt" dev="nvme0n1p9" ino=521053 scontext=system_u:system_r:svirt_lxc_net_t:s0:c632,c769 tcontext=system_u:object_r:etc_t:s0 tclass=file permissive=0 [ 62.729858] audit: type=1400 audit(1761957925.410:818): avc: denied { watch } for pid=2497 comm="kube-controller" path="/etc/kubernetes/pki/ca.crt" dev="nvme0n1p9" ino=521053 scontext=system_u:system_r:svirt_lxc_net_t:s0:c632,c769 tcontext=system_u:object_r:etc_t:s0 tclass=file permissive=0 [ 62.736300] audit: type=1300 audit(1761957925.410:818): arch=c000003e syscall=254 success=no exit=-13 a0=a a1=c0012078a0 a2=fc6 a3=0 items=0 ppid=2345 pid=2497 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="kube-controller" exe="/usr/local/bin/kube-controller-manager" subj=system_u:system_r:svirt_lxc_net_t:s0:c632,c769 key=(null) [ 62.744342] audit: type=1327 audit(1761957925.410:818): proctitle=6B7562652D636F6E74726F6C6C65722D6D616E61676572002D2D616C6C6F636174652D6E6F64652D63696472733D74727565002D2D61757468656E7469636174696F6E2D6B756265636F6E6669673D2F6574632F6B756265726E657465732F636F6E74726F6C6C65722D6D616E616765722E636F6E66002D2D617574686F7269 [ 62.751444] audit: type=1400 audit(1761957925.411:819): avc: denied { watch } for pid=2497 comm="kube-controller" path="/etc/kubernetes/pki/ca.crt" dev="nvme0n1p9" ino=521053 scontext=system_u:system_r:svirt_lxc_net_t:s0:c632,c769 tcontext=system_u:object_r:etc_t:s0 tclass=file permissive=0 [ 62.757568] audit: type=1300 audit(1761957925.411:819): arch=c000003e syscall=254 success=no exit=-13 a0=a a1=c001207900 a2=fc6 a3=0 items=0 ppid=2345 pid=2497 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="kube-controller" exe="/usr/local/bin/kube-controller-manager" subj=system_u:system_r:svirt_lxc_net_t:s0:c632,c769 key=(null) [ 62.765493] audit: type=1327 audit(1761957925.411:819): proctitle=6B7562652D636F6E74726F6C6C65722D6D616E61676572002D2D616C6C6F636174652D6E6F64652D63696472733D74727565002D2D61757468656E7469636174696F6E2D6B756265636F6E6669673D2F6574632F6B756265726E657465732F636F6E74726F6C6C65722D6D616E616765722E636F6E66002D2D617574686F7269 [ 68.580541] kauditd_printk_skb: 315 callbacks suppressed [ 68.580544] audit: type=1400 audit(1761957931.267:914): avc: denied { bpf } for pid=1 comm="systemd" capability=39 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 68.589699] audit: type=1400 audit(1761957931.267:915): avc: denied { bpf } for pid=1 comm="systemd" capability=39 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 68.596992] audit: type=1400 audit(1761957931.267:916): avc: denied { bpf } for pid=1 comm="systemd" capability=39 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 68.604025] audit: type=1400 audit(1761957931.267:917): avc: denied { perfmon } for pid=1 comm="systemd" capability=38 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 68.611089] audit: type=1400 audit(1761957931.267:918): avc: denied { perfmon } for pid=1 comm="systemd" capability=38 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 68.618436] audit: type=1400 audit(1761957931.267:919): avc: denied { perfmon } for pid=1 comm="systemd" capability=38 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 68.624125] audit: type=1400 audit(1761957931.267:920): avc: denied { perfmon } for pid=1 comm="systemd" capability=38 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 68.631102] audit: type=1400 audit(1761957931.267:921): avc: denied { perfmon } for pid=1 comm="systemd" capability=38 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 68.638254] audit: type=1400 audit(1761957931.267:922): avc: denied { bpf } for pid=1 comm="systemd" capability=39 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 68.646173] audit: type=1400 audit(1761957931.275:923): avc: denied { bpf } for pid=1 comm="systemd" capability=39 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 75.832578] kauditd_printk_skb: 47 callbacks suppressed [ 75.832581] audit: type=1106 audit(1761957938.518:932): pid=2008 uid=500 auid=500 ses=7 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_close grantors=pam_limits,pam_env,pam_unix,pam_permit,pam_systemd acct="root" exe="/usr/bin/sudo" hostname=? addr=? terminal=? res=success' [ 75.848665] audit: type=1104 audit(1761957938.518:933): pid=2008 uid=500 auid=500 ses=7 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="root" exe="/usr/bin/sudo" hostname=? addr=? terminal=? res=success' [ 75.889524] audit: type=1106 audit(1761957938.575:934): pid=2005 uid=0 auid=500 ses=7 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_close grantors=pam_loginuid,pam_env,pam_lastlog,pam_limits,pam_env,pam_unix,pam_permit,pam_systemd,pam_mail acct="core" exe="/usr/sbin/sshd" hostname=147.75.109.163 addr=147.75.109.163 terminal=ssh res=success' [ 75.907701] audit: type=1104 audit(1761957938.575:935): pid=2005 uid=0 auid=500 ses=7 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=147.75.109.163 addr=147.75.109.163 terminal=ssh res=success' [ 75.918370] audit: type=1131 audit(1761957938.594:936): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='unit=sshd@6-172.31.16.197:22-147.75.109.163:48428 comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success' [ 76.977175] audit: type=1325 audit(1761957939.664:937): table=filter:89 family=2 entries=15 op=nft_register_rule pid=3187 subj=system_u:system_r:kernel_t:s0 comm="iptables-restor" [ 76.983193] audit: type=1300 audit(1761957939.664:937): arch=c000003e syscall=46 success=yes exit=5992 a0=3 a1=7ffd3859e5c0 a2=0 a3=7ffd3859e5ac items=0 ppid=2914 pid=3187 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="iptables-restor" exe="/usr/sbin/xtables-nft-multi" subj=system_u:system_r:kernel_t:s0 key=(null) [ 77.000490] audit: type=1327 audit(1761957939.664:937): proctitle=69707461626C65732D726573746F7265002D770035002D2D6E6F666C757368002D2D636F756E74657273 [ 77.007380] audit: type=1325 audit(1761957939.694:938): table=nat:90 family=2 entries=12 op=nft_register_rule pid=3187 subj=system_u:system_r:kernel_t:s0 comm="iptables-restor" [ 77.021265] audit: type=1300 audit(1761957939.694:938): arch=c000003e syscall=46 success=yes exit=2700 a0=3 a1=7ffd3859e5c0 a2=0 a3=0 items=0 ppid=2914 pid=3187 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="iptables-restor" exe="/usr/sbin/xtables-nft-multi" subj=system_u:system_r:kernel_t:s0 key=(null) [ 81.223097] kauditd_printk_skb: 13 callbacks suppressed [ 81.223100] audit: type=1325 audit(1761957943.910:943): table=filter:95 family=2 entries=19 op=nft_register_rule pid=3197 subj=system_u:system_r:kernel_t:s0 comm="iptables-restor" [ 81.232009] audit: type=1300 audit(1761957943.910:943): arch=c000003e syscall=46 success=yes exit=7480 a0=3 a1=7fff4b943ec0 a2=0 a3=7fff4b943eac items=0 ppid=2914 pid=3197 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="iptables-restor" exe="/usr/sbin/xtables-nft-multi" subj=system_u:system_r:kernel_t:s0 key=(null) [ 81.243859] audit: type=1327 audit(1761957943.910:943): proctitle=69707461626C65732D726573746F7265002D770035002D2D6E6F666C757368002D2D636F756E74657273 [ 81.250581] audit: type=1325 audit(1761957943.937:944): table=nat:96 family=2 entries=12 op=nft_register_rule pid=3197 subj=system_u:system_r:kernel_t:s0 comm="iptables-restor" [ 81.256673] audit: type=1300 audit(1761957943.937:944): arch=c000003e syscall=46 success=yes exit=2700 a0=3 a1=7fff4b943ec0 a2=0 a3=0 items=0 ppid=2914 pid=3197 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="iptables-restor" exe="/usr/sbin/xtables-nft-multi" subj=system_u:system_r:kernel_t:s0 key=(null) [ 81.268393] audit: type=1327 audit(1761957943.937:944): proctitle=69707461626C65732D726573746F7265002D770035002D2D6E6F666C757368002D2D636F756E74657273 [ 82.319691] audit: type=1325 audit(1761957945.004:945): table=filter:97 family=2 entries=21 op=nft_register_rule pid=3199 subj=system_u:system_r:kernel_t:s0 comm="iptables-restor" [ 82.325038] audit: type=1300 audit(1761957945.004:945): arch=c000003e syscall=46 success=yes exit=8224 a0=3 a1=7ffdef13c4a0 a2=0 a3=7ffdef13c48c items=0 ppid=2914 pid=3199 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="iptables-restor" exe="/usr/sbin/xtables-nft-multi" subj=system_u:system_r:kernel_t:s0 key=(null) [ 82.340172] audit: type=1327 audit(1761957945.004:945): proctitle=69707461626C65732D726573746F7265002D770035002D2D6E6F666C757368002D2D636F756E74657273 [ 82.347418] audit: type=1325 audit(1761957945.025:946): table=nat:98 family=2 entries=12 op=nft_register_rule pid=3199 subj=system_u:system_r:kernel_t:s0 comm="iptables-restor" [ 86.923006] kauditd_printk_skb: 166 callbacks suppressed [ 86.923009] audit: type=1400 audit(1761957949.610:992): avc: denied { bpf } for pid=1 comm="systemd" capability=39 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 86.932953] audit: type=1400 audit(1761957949.610:993): avc: denied { bpf } for pid=1 comm="systemd" capability=39 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 86.940881] audit: type=1400 audit(1761957949.618:994): avc: denied { bpf } for pid=1 comm="systemd" capability=39 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 86.946661] audit: type=1400 audit(1761957949.618:995): avc: denied { perfmon } for pid=1 comm="systemd" capability=38 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 86.952066] audit: type=1400 audit(1761957949.618:996): avc: denied { perfmon } for pid=1 comm="systemd" capability=38 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 86.960080] audit: type=1400 audit(1761957949.618:997): avc: denied { perfmon } for pid=1 comm="systemd" capability=38 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 86.967639] audit: type=1400 audit(1761957949.618:998): avc: denied { perfmon } for pid=1 comm="systemd" capability=38 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 86.975322] audit: type=1400 audit(1761957949.618:999): avc: denied { perfmon } for pid=1 comm="systemd" capability=38 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 86.983539] audit: type=1400 audit(1761957949.618:1000): avc: denied { bpf } for pid=1 comm="systemd" capability=39 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 86.991243] audit: type=1400 audit(1761957949.618:1001): avc: denied { bpf } for pid=1 comm="systemd" capability=39 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 97.308276] kauditd_printk_skb: 91 callbacks suppressed [ 97.308279] audit: type=1325 audit(1761957959.995:1017): table=filter:101 family=2 entries=21 op=nft_register_rule pid=3892 subj=system_u:system_r:kernel_t:s0 comm="iptables-restor" [ 97.320970] audit: type=1300 audit(1761957959.995:1017): arch=c000003e syscall=46 success=yes exit=7480 a0=3 a1=7ffc1f61f020 a2=0 a3=7ffc1f61f00c items=0 ppid=2914 pid=3892 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="iptables-restor" exe="/usr/sbin/xtables-nft-multi" subj=system_u:system_r:kernel_t:s0 key=(null) [ 97.341478] audit: type=1327 audit(1761957959.995:1017): proctitle=69707461626C65732D726573746F7265002D770035002D2D6E6F666C757368002D2D636F756E74657273 [ 97.347655] audit: type=1325 audit(1761957960.023:1018): table=nat:102 family=2 entries=19 op=nft_register_chain pid=3892 subj=system_u:system_r:kernel_t:s0 comm="iptables-restor" [ 97.354030] audit: type=1300 audit(1761957960.023:1018): arch=c000003e syscall=46 success=yes exit=6276 a0=3 a1=7ffc1f61f020 a2=0 a3=7ffc1f61f00c items=0 ppid=2914 pid=3892 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="iptables-restor" exe="/usr/sbin/xtables-nft-multi" subj=system_u:system_r:kernel_t:s0 key=(null) [ 97.366039] audit: type=1327 audit(1761957960.023:1018): proctitle=69707461626C65732D726573746F7265002D770035002D2D6E6F666C757368002D2D636F756E74657273 [ 102.231861] audit: type=1400 audit(1761957964.919:1019): avc: denied { perfmon } for pid=3902 comm="runc" capability=38 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 102.239213] audit: type=1300 audit(1761957964.919:1019): arch=c000003e syscall=321 success=yes exit=15 a0=0 a1=c0001976b0 a2=3c a3=7fe00725b088 items=0 ppid=3247 pid=3902 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="runc" exe="/run/torcx/unpack/docker/bin/runc" subj=system_u:system_r:kernel_t:s0 key=(null) [ 102.247232] audit: type=1327 audit(1761957964.919:1019): proctitle=72756E63002D2D726F6F74002F72756E2F636F6E7461696E6572642F72756E632F6B38732E696F002D2D6C6F67002F72756E2F636F6E7461696E6572642F696F2E636F6E7461696E6572642E72756E74696D652E76322E7461736B2F6B38732E696F2F3233616437633133663437323363653132393661306166653131646132 [ 102.257173] audit: type=1400 audit(1761957964.919:1020): avc: denied { bpf } for pid=3902 comm="runc" capability=39 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 102.969639] wireguard: WireGuard 1.0.0 loaded. See www.wireguard.com for information. [ 102.971542] wireguard: Copyright (C) 2015-2019 Jason A. Donenfeld . All Rights Reserved. [ 104.311220] IPv6: ADDRCONF(NETDEV_CHANGE): eth0: link becomes ready [ 104.313201] IPv6: ADDRCONF(NETDEV_CHANGE): calif600e4653cb: link becomes ready [ 104.534880] kauditd_printk_skb: 39 callbacks suppressed [ 104.534883] audit: type=1400 audit(1761957967.221:1025): avc: denied { bpf } for pid=1 comm="systemd" capability=39 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 104.544330] audit: type=1400 audit(1761957967.221:1026): avc: denied { bpf } for pid=1 comm="systemd" capability=39 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 104.553299] audit: type=1400 audit(1761957967.221:1027): avc: denied { bpf } for pid=1 comm="systemd" capability=39 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 104.561652] audit: type=1400 audit(1761957967.221:1028): avc: denied { perfmon } for pid=1 comm="systemd" capability=38 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 104.569918] audit: type=1400 audit(1761957967.221:1029): avc: denied { perfmon } for pid=1 comm="systemd" capability=38 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 104.577170] audit: type=1400 audit(1761957967.221:1030): avc: denied { perfmon } for pid=1 comm="systemd" capability=38 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 104.585808] audit: type=1400 audit(1761957967.221:1031): avc: denied { perfmon } for pid=1 comm="systemd" capability=38 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 104.593790] audit: type=1400 audit(1761957967.221:1032): avc: denied { perfmon } for pid=1 comm="systemd" capability=38 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 104.601807] audit: type=1400 audit(1761957967.221:1033): avc: denied { bpf } for pid=1 comm="systemd" capability=39 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 104.610240] audit: type=1400 audit(1761957967.222:1034): avc: denied { bpf } for pid=1 comm="systemd" capability=39 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 50.417954] audit: type=1400 audit(1761957913.044:464): avc: denied { perfmon } for pid=1 comm="systemd" capability=38 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 50.435744] audit: type=1400 audit(1761957913.044:465): avc: denied { bpf } for pid=1 comm="systemd" capability=39 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 50.450659] audit: type=1400 audit(1761957913.053:466): avc: denied { bpf } for pid=1 comm="systemd" capability=39 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 57.118277] kauditd_printk_skb: 356 callbacks suppressed [ 57.118280] audit: type=1400 audit(1761957919.804:573): avc: denied { bpf } for pid=1 comm="systemd" capability=39 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 57.127686] audit: type=1400 audit(1761957919.804:574): avc: denied { bpf } for pid=1 comm="systemd" capability=39 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 57.136372] audit: type=1400 audit(1761957919.804:575): avc: denied { bpf } for pid=1 comm="systemd" capability=39 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 57.143532] audit: type=1400 audit(1761957919.804:576): avc: denied { perfmon } for pid=1 comm="systemd" capability=38 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 57.151043] audit: type=1400 audit(1761957919.804:577): avc: denied { perfmon } for pid=1 comm="systemd" capability=38 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 57.157983] audit: type=1400 audit(1761957919.804:578): avc: denied { perfmon } for pid=1 comm="systemd" capability=38 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 57.165949] audit: audit_backlog=65 > audit_backlog_limit=64 [ 57.165999] audit: type=1400 audit(1761957919.804:579): avc: denied { perfmon } for pid=1 comm="systemd" capability=38 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 57.168063] audit: audit_lost=1 audit_rate_limit=0 audit_backlog_limit=64 [ 57.174999] audit: type=1400 audit(1761957919.804:580): avc: denied { perfmon } for pid=1 comm="systemd" capability=38 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 62.379835] kauditd_printk_skb: 260 callbacks suppressed [ 62.379839] audit: type=1400 audit(1761957925.066:816): avc: denied { watch } for pid=2497 comm="kube-controller" path="/opt/libexec/kubernetes/kubelet-plugins/volume/exec" dev="nvme0n1p9" ino=521088 scontext=system_u:system_r:svirt_lxc_net_t:s0:c632,c769 tcontext=system_u:object_r:usr_t:s0 tclass=dir permissive=0 [ 62.393468] audit: type=1300 audit(1761957925.066:816): arch=c000003e syscall=254 success=no exit=-13 a0=8 a1=c0007d1ac0 a2=fc6 a3=0 items=0 ppid=2345 pid=2497 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="kube-controller" exe="/usr/local/bin/kube-controller-manager" subj=system_u:system_r:svirt_lxc_net_t:s0:c632,c769 key=(null) [ 62.404090] audit: type=1327 audit(1761957925.066:816): proctitle=6B7562652D636F6E74726F6C6C65722D6D616E61676572002D2D616C6C6F636174652D6E6F64652D63696472733D74727565002D2D61757468656E7469636174696F6E2D6B756265636F6E6669673D2F6574632F6B756265726E657465732F636F6E74726F6C6C65722D6D616E616765722E636F6E66002D2D617574686F7269 [ 62.721613] audit: type=1400 audit(1761957925.408:817): avc: denied { watch } for pid=2497 comm="kube-controller" path="/etc/kubernetes/pki/ca.crt" dev="nvme0n1p9" ino=521053 scontext=system_u:system_r:svirt_lxc_net_t:s0:c632,c769 tcontext=system_u:object_r:etc_t:s0 tclass=file permissive=0 [ 62.729858] audit: type=1400 audit(1761957925.410:818): avc: denied { watch } for pid=2497 comm="kube-controller" path="/etc/kubernetes/pki/ca.crt" dev="nvme0n1p9" ino=521053 scontext=system_u:system_r:svirt_lxc_net_t:s0:c632,c769 tcontext=system_u:object_r:etc_t:s0 tclass=file permissive=0 [ 62.736300] audit: type=1300 audit(1761957925.410:818): arch=c000003e syscall=254 success=no exit=-13 a0=a a1=c0012078a0 a2=fc6 a3=0 items=0 ppid=2345 pid=2497 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="kube-controller" exe="/usr/local/bin/kube-controller-manager" subj=system_u:system_r:svirt_lxc_net_t:s0:c632,c769 key=(null) [ 62.744342] audit: type=1327 audit(1761957925.410:818): proctitle=6B7562652D636F6E74726F6C6C65722D6D616E61676572002D2D616C6C6F636174652D6E6F64652D63696472733D74727565002D2D61757468656E7469636174696F6E2D6B756265636F6E6669673D2F6574632F6B756265726E657465732F636F6E74726F6C6C65722D6D616E616765722E636F6E66002D2D617574686F7269 [ 62.751444] audit: type=1400 audit(1761957925.411:819): avc: denied { watch } for pid=2497 comm="kube-controller" path="/etc/kubernetes/pki/ca.crt" dev="nvme0n1p9" ino=521053 scontext=system_u:system_r:svirt_lxc_net_t:s0:c632,c769 tcontext=system_u:object_r:etc_t:s0 tclass=file permissive=0 [ 62.757568] audit: type=1300 audit(1761957925.411:819): arch=c000003e syscall=254 success=no exit=-13 a0=a a1=c001207900 a2=fc6 a3=0 items=0 ppid=2345 pid=2497 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="kube-controller" exe="/usr/local/bin/kube-controller-manager" subj=system_u:system_r:svirt_lxc_net_t:s0:c632,c769 key=(null) [ 62.765493] audit: type=1327 audit(1761957925.411:819): proctitle=6B7562652D636F6E74726F6C6C65722D6D616E61676572002D2D616C6C6F636174652D6E6F64652D63696472733D74727565002D2D61757468656E7469636174696F6E2D6B756265636F6E6669673D2F6574632F6B756265726E657465732F636F6E74726F6C6C65722D6D616E616765722E636F6E66002D2D617574686F7269 [ 68.580541] kauditd_printk_skb: 315 callbacks suppressed [ 68.580544] audit: type=1400 audit(1761957931.267:914): avc: denied { bpf } for pid=1 comm="systemd" capability=39 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 68.589699] audit: type=1400 audit(1761957931.267:915): avc: denied { bpf } for pid=1 comm="systemd" capability=39 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 68.596992] audit: type=1400 audit(1761957931.267:916): avc: denied { bpf } for pid=1 comm="systemd" capability=39 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 68.604025] audit: type=1400 audit(1761957931.267:917): avc: denied { perfmon } for pid=1 comm="systemd" capability=38 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 68.611089] audit: type=1400 audit(1761957931.267:918): avc: denied { perfmon } for pid=1 comm="systemd" capability=38 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 68.618436] audit: type=1400 audit(1761957931.267:919): avc: denied { perfmon } for pid=1 comm="systemd" capability=38 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 68.624125] audit: type=1400 audit(1761957931.267:920): avc: denied { perfmon } for pid=1 comm="systemd" capability=38 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 68.631102] audit: type=1400 audit(1761957931.267:921): avc: denied { perfmon } for pid=1 comm="systemd" capability=38 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 68.638254] audit: type=1400 audit(1761957931.267:922): avc: denied { bpf } for pid=1 comm="systemd" capability=39 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 68.646173] audit: type=1400 audit(1761957931.275:923): avc: denied { bpf } for pid=1 comm="systemd" capability=39 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 75.832578] kauditd_printk_skb: 47 callbacks suppressed [ 75.832581] audit: type=1106 audit(1761957938.518:932): pid=2008 uid=500 auid=500 ses=7 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_close grantors=pam_limits,pam_env,pam_unix,pam_permit,pam_systemd acct="root" exe="/usr/bin/sudo" hostname=? addr=? terminal=? res=success' [ 75.848665] audit: type=1104 audit(1761957938.518:933): pid=2008 uid=500 auid=500 ses=7 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="root" exe="/usr/bin/sudo" hostname=? addr=? terminal=? res=success' [ 75.889524] audit: type=1106 audit(1761957938.575:934): pid=2005 uid=0 auid=500 ses=7 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_close grantors=pam_loginuid,pam_env,pam_lastlog,pam_limits,pam_env,pam_unix,pam_permit,pam_systemd,pam_mail acct="core" exe="/usr/sbin/sshd" hostname=147.75.109.163 addr=147.75.109.163 terminal=ssh res=success' [ 75.907701] audit: type=1104 audit(1761957938.575:935): pid=2005 uid=0 auid=500 ses=7 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=147.75.109.163 addr=147.75.109.163 terminal=ssh res=success' [ 75.918370] audit: type=1131 audit(1761957938.594:936): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='unit=sshd@6-172.31.16.197:22-147.75.109.163:48428 comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success' [ 76.977175] audit: type=1325 audit(1761957939.664:937): table=filter:89 family=2 entries=15 op=nft_register_rule pid=3187 subj=system_u:system_r:kernel_t:s0 comm="iptables-restor" [ 76.983193] audit: type=1300 audit(1761957939.664:937): arch=c000003e syscall=46 success=yes exit=5992 a0=3 a1=7ffd3859e5c0 a2=0 a3=7ffd3859e5ac items=0 ppid=2914 pid=3187 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="iptables-restor" exe="/usr/sbin/xtables-nft-multi" subj=system_u:system_r:kernel_t:s0 key=(null) [ 77.000490] audit: type=1327 audit(1761957939.664:937): proctitle=69707461626C65732D726573746F7265002D770035002D2D6E6F666C757368002D2D636F756E74657273 [ 77.007380] audit: type=1325 audit(1761957939.694:938): table=nat:90 family=2 entries=12 op=nft_register_rule pid=3187 subj=system_u:system_r:kernel_t:s0 comm="iptables-restor" [ 77.021265] audit: type=1300 audit(1761957939.694:938): arch=c000003e syscall=46 success=yes exit=2700 a0=3 a1=7ffd3859e5c0 a2=0 a3=0 items=0 ppid=2914 pid=3187 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="iptables-restor" exe="/usr/sbin/xtables-nft-multi" subj=system_u:system_r:kernel_t:s0 key=(null) [ 81.223097] kauditd_printk_skb: 13 callbacks suppressed [ 81.223100] audit: type=1325 audit(1761957943.910:943): table=filter:95 family=2 entries=19 op=nft_register_rule pid=3197 subj=system_u:system_r:kernel_t:s0 comm="iptables-restor" [ 81.232009] audit: type=1300 audit(1761957943.910:943): arch=c000003e syscall=46 success=yes exit=7480 a0=3 a1=7fff4b943ec0 a2=0 a3=7fff4b943eac items=0 ppid=2914 pid=3197 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="iptables-restor" exe="/usr/sbin/xtables-nft-multi" subj=system_u:system_r:kernel_t:s0 key=(null) [ 81.243859] audit: type=1327 audit(1761957943.910:943): proctitle=69707461626C65732D726573746F7265002D770035002D2D6E6F666C757368002D2D636F756E74657273 [ 81.250581] audit: type=1325 audit(1761957943.937:944): table=nat:96 family=2 entries=12 op=nft_register_rule pid=3197 subj=system_u:system_r:kernel_t:s0 comm="iptables-restor" [ 81.256673] audit: type=1300 audit(1761957943.937:944): arch=c000003e syscall=46 success=yes exit=2700 a0=3 a1=7fff4b943ec0 a2=0 a3=0 items=0 ppid=2914 pid=3197 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="iptables-restor" exe="/usr/sbin/xtables-nft-multi" subj=system_u:system_r:kernel_t:s0 key=(null) [ 81.268393] audit: type=1327 audit(1761957943.937:944): proctitle=69707461626C65732D726573746F7265002D770035002D2D6E6F666C757368002D2D636F756E74657273 [ 82.319691] audit: type=1325 audit(1761957945.004:945): table=filter:97 family=2 entries=21 op=nft_register_rule pid=3199 subj=system_u:system_r:kernel_t:s0 comm="iptables-restor" [ 82.325038] audit: type=1300 audit(1761957945.004:945): arch=c000003e syscall=46 success=yes exit=8224 a0=3 a1=7ffdef13c4a0 a2=0 a3=7ffdef13c48c items=0 ppid=2914 pid=3199 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="iptables-restor" exe="/usr/sbin/xtables-nft-multi" subj=system_u:system_r:kernel_t:s0 key=(null) [ 82.340172] audit: type=1327 audit(1761957945.004:945): proctitle=69707461626C65732D726573746F7265002D770035002D2D6E6F666C757368002D2D636F756E74657273 [ 82.347418] audit: type=1325 audit(1761957945.025:946): table=nat:98 family=2 entries=12 op=nft_register_rule pid=3199 subj=system_u:system_r:kernel_t:s0 comm="iptables-restor" [ 86.923006] kauditd_printk_skb: 166 callbacks suppressed [ 86.923009] audit: type=1400 audit(1761957949.610:992): avc: denied { bpf } for pid=1 comm="systemd" capability=39 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 86.932953] audit: type=1400 audit(1761957949.610:993): avc: denied { bpf } for pid=1 comm="systemd" capability=39 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 86.940881] audit: type=1400 audit(1761957949.618:994): avc: denied { bpf } for pid=1 comm="systemd" capability=39 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 86.946661] audit: type=1400 audit(1761957949.618:995): avc: denied { perfmon } for pid=1 comm="systemd" capability=38 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 86.952066] audit: type=1400 audit(1761957949.618:996): avc: denied { perfmon } for pid=1 comm="systemd" capability=38 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 86.960080] audit: type=1400 audit(1761957949.618:997): avc: denied { perfmon } for pid=1 comm="systemd" capability=38 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 86.967639] audit: type=1400 audit(1761957949.618:998): avc: denied { perfmon } for pid=1 comm="systemd" capability=38 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 86.975322] audit: type=1400 audit(1761957949.618:999): avc: denied { perfmon } for pid=1 comm="systemd" capability=38 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 86.983539] audit: type=1400 audit(1761957949.618:1000): avc: denied { bpf } for pid=1 comm="systemd" capability=39 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 86.991243] audit: type=1400 audit(1761957949.618:1001): avc: denied { bpf } for pid=1 comm="systemd" capability=39 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 97.308276] kauditd_printk_skb: 91 callbacks suppressed [ 97.308279] audit: type=1325 audit(1761957959.995:1017): table=filter:101 family=2 entries=21 op=nft_register_rule pid=3892 subj=system_u:system_r:kernel_t:s0 comm="iptables-restor" [ 97.320970] audit: type=1300 audit(1761957959.995:1017): arch=c000003e syscall=46 success=yes exit=7480 a0=3 a1=7ffc1f61f020 a2=0 a3=7ffc1f61f00c items=0 ppid=2914 pid=3892 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="iptables-restor" exe="/usr/sbin/xtables-nft-multi" subj=system_u:system_r:kernel_t:s0 key=(null) [ 97.341478] audit: type=1327 audit(1761957959.995:1017): proctitle=69707461626C65732D726573746F7265002D770035002D2D6E6F666C757368002D2D636F756E74657273 [ 97.347655] audit: type=1325 audit(1761957960.023:1018): table=nat:102 family=2 entries=19 op=nft_register_chain pid=3892 subj=system_u:system_r:kernel_t:s0 comm="iptables-restor" [ 97.354030] audit: type=1300 audit(1761957960.023:1018): arch=c000003e syscall=46 success=yes exit=6276 a0=3 a1=7ffc1f61f020 a2=0 a3=7ffc1f61f00c items=0 ppid=2914 pid=3892 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="iptables-restor" exe="/usr/sbin/xtables-nft-multi" subj=system_u:system_r:kernel_t:s0 key=(null) [ 97.366039] audit: type=1327 audit(1761957960.023:1018): proctitle=69707461626C65732D726573746F7265002D770035002D2D6E6F666C757368002D2D636F756E74657273 [ 102.231861] audit: type=1400 audit(1761957964.919:1019): avc: denied { perfmon } for pid=3902 comm="runc" capability=38 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 102.239213] audit: type=1300 audit(1761957964.919:1019): arch=c000003e syscall=321 success=yes exit=15 a0=0 a1=c0001976b0 a2=3c a3=7fe00725b088 items=0 ppid=3247 pid=3902 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="runc" exe="/run/torcx/unpack/docker/bin/runc" subj=system_u:system_r:kernel_t:s0 key=(null) [ 102.247232] audit: type=1327 audit(1761957964.919:1019): proctitle=72756E63002D2D726F6F74002F72756E2F636F6E7461696E6572642F72756E632F6B38732E696F002D2D6C6F67002F72756E2F636F6E7461696E6572642F696F2E636F6E7461696E6572642E72756E74696D652E76322E7461736B2F6B38732E696F2F3233616437633133663437323363653132393661306166653131646132 [ 102.257173] audit: type=1400 audit(1761957964.919:1020): avc: denied { bpf } for pid=3902 comm="runc" capability=39 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 102.969639] wireguard: WireGuard 1.0.0 loaded. See www.wireguard.com for information. [ 102.971542] wireguard: Copyright (C) 2015-2019 Jason A. Donenfeld . All Rights Reserved. [ 104.311220] IPv6: ADDRCONF(NETDEV_CHANGE): eth0: link becomes ready [ 104.313201] IPv6: ADDRCONF(NETDEV_CHANGE): calif600e4653cb: link becomes ready [ 104.534880] kauditd_printk_skb: 39 callbacks suppressed [ 104.534883] audit: type=1400 audit(1761957967.221:1025): avc: denied { bpf } for pid=1 comm="systemd" capability=39 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 104.544330] audit: type=1400 audit(1761957967.221:1026): avc: denied { bpf } for pid=1 comm="systemd" capability=39 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 104.553299] audit: type=1400 audit(1761957967.221:1027): avc: denied { bpf } for pid=1 comm="systemd" capability=39 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 104.561652] audit: type=1400 audit(1761957967.221:1028): avc: denied { perfmon } for pid=1 comm="systemd" capability=38 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 104.569918] audit: type=1400 audit(1761957967.221:1029): avc: denied { perfmon } for pid=1 comm="systemd" capability=38 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 104.577170] audit: type=1400 audit(1761957967.221:1030): avc: denied { perfmon } for pid=1 comm="systemd" capability=38 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 104.585808] audit: type=1400 audit(1761957967.221:1031): avc: denied { perfmon } for pid=1 comm="systemd" capability=38 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 104.593790] audit: type=1400 audit(1761957967.221:1032): avc: denied { perfmon } for pid=1 comm="systemd" capability=38 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 104.601807] audit: type=1400 audit(1761957967.221:1033): avc: denied { bpf } for pid=1 comm="systemd" capability=39 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 104.610240] audit: type=1400 audit(1761957967.222:1034): avc: denied { bpf } for pid=1 comm="systemd" capability=39 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 105.147855] IPv6: ADDRCONF(NETDEV_CHANGE): cali4ca3dc24906: link becomes ready [ 105.791967] IPv6: ADDRCONF(NETDEV_CHANGE): eth0: link becomes ready [ 105.793347] IPv6: ADDRCONF(NETDEV_CHANGE): calia3600f94340: link becomes ready [ 105.945027] IPv6: ADDRCONF(NETDEV_CHANGE): calic9137587fbf: link becomes ready This is ip-172-31-16-197 (Linux x86_64 5.15.192-flatcar) 00:46:09 SSH host key: SHA256:Q/A27Bd2obLcj5HVutGctm1iUyGIHSBX2gnbtk0gOVs (ED25519) SSH host key: SHA256:DF1viABGxARhmFow2crkw9f1vvT4yPpp29tQUN2tBMo (RSA) SSH host key: SHA256:0s6P+0Nb3JuiDYXnuEyrZn6gq+r5JgVAgt2Ne+V9FUM (ECDSA) eth0: 172.31.16.197 fe80::487:f5ff:fecf:a919 ip-172-31-16-197 login: [ 106.622105] IPv6: ADDRCONF(NETDEV_CHANGE): cali61c2bfb3dc9: link becomes ready [ 107.473453] IPv6: ADDRCONF(NETDEV_CHANGE): cali01338d741cb: link becomes ready This is ip-172-31-16-197 (Linux x86_64 5.15.192-flatcar) 00:46:10 SSH host key: SHA256:Q/A27Bd2obLcj5HVutGctm1iUyGIHSBX2gnbtk0gOVs (ED25519) SSH host key: SHA256:DF1viABGxARhmFow2crkw9f1vvT4yPpp29tQUN2tBMo (RSA) SSH host key: SHA256:0s6P+0Nb3JuiDYXnuEyrZn6gq+r5JgVAgt2Ne+V9FUM (ECDSA) eth0: 172.31.16.197 fe80::487:f5ff:fecf:a919 ip-172-31-16-197 login: [ 108.289429] IPv6: ADDRCONF(NETDEV_CHANGE): eth0: link becomes ready [ 108.290807] IPv6: ADDRCONF(NETDEV_CHANGE): cali0a2eacd33cf: link becomes ready This is ip-172-31-16-197 (Linux x86_64 5.15.192-flatcar) 00:46:11 SSH host key: SHA256:Q/A27Bd2obLcj5HVutGctm1iUyGIHSBX2gnbtk0gOVs (ED25519) SSH host key: SHA256:DF1viABGxARhmFow2crkw9f1vvT4yPpp29tQUN2tBMo (RSA) SSH host key: SHA256:0s6P+0Nb3JuiDYXnuEyrZn6gq+r5JgVAgt2Ne+V9FUM (ECDSA) eth0: 172.31.16.197 fe80::487:f5ff:fecf:a919 ip-172-31-16-197 login: [ 109.283161] IPv6: ADDRCONF(NETDEV_CHANGE): eth0: link becomes ready [ 109.284624] IPv6: ADDRCONF(NETDEV_CHANGE): cali5afd685ec4e: link becomes ready This is ip-172-31-16-197 (Linux x86_64 5.15.192-flatcar) 00:46:12 SSH host key: SHA256:Q/A27Bd2obLcj5HVutGctm1iUyGIHSBX2gnbtk0gOVs (ED25519) SSH host key: SHA256:DF1viABGxARhmFow2crkw9f1vvT4yPpp29tQUN2tBMo (RSA) SSH host key: SHA256:0s6P+0Nb3JuiDYXnuEyrZn6gq+r5JgVAgt2Ne+V9FUM (ECDSA) eth0: 172.31.16.197 fe80::487:f5ff:fecf:a919 ip-172-31-16-197 login: [ 110.268681] kauditd_printk_skb: 1144 callbacks suppressed [ 110.268684] audit: type=1400 audit(1761957972.956:1323): avc: denied { getattr } for pid=4528 comm="coredns" path="cgroup:[4026532301]" dev="nsfs" ino=4026532301 scontext=system_u:system_r:svirt_lxc_net_t:s0:c506,c832 tcontext=system_u:object_r:nsfs_t:s0 tclass=file permissive=0 [ 110.273833] audit: type=1300 audit(1761957972.956:1323): arch=c000003e syscall=262 success=no exit=-13 a0=ffffffffffffff9c a1=c000134e28 a2=c000569148 a3=0 items=0 ppid=4417 pid=4528 auid=4294967295 uid=65532 gid=65532 euid=65532 suid=65532 fsuid=65532 egid=65532 sgid=65532 fsgid=65532 tty=(none) ses=4294967295 comm="coredns" exe="/coredns" subj=system_u:system_r:svirt_lxc_net_t:s0:c506,c832 key=(null) [ 110.282484] audit: type=1327 audit(1761957972.956:1323): proctitle=2F636F7265646E73002D636F6E66002F6574632F636F7265646E732F436F726566696C65 [ 110.284447] audit: type=1400 audit(1761957972.959:1324): avc: denied { getattr } for pid=4668 comm="coredns" path="cgroup:[4026532726]" dev="nsfs" ino=4026532726 scontext=system_u:system_r:svirt_lxc_net_t:s0:c670,c966 tcontext=system_u:object_r:nsfs_t:s0 tclass=file permissive=0 [ 110.288143] audit: type=1300 audit(1761957972.959:1324): arch=c000003e syscall=262 success=no exit=-13 a0=ffffffffffffff9c a1=c000056810 a2=c0004b3558 a3=0 items=0 ppid=4596 pid=4668 auid=4294967295 uid=65532 gid=65532 euid=65532 suid=65532 fsuid=65532 egid=65532 sgid=65532 fsgid=65532 tty=(none) ses=4294967295 comm="coredns" exe="/coredns" subj=system_u:system_r:svirt_lxc_net_t:s0:c670,c966 key=(null) [ 110.296832] audit: type=1327 audit(1761957972.959:1324): proctitle=2F636F7265646E73002D636F6E66002F6574632F636F7265646E732F436F726566696C65 [ 110.420286] audit: type=1325 audit(1761957973.107:1325): table=filter:116 family=2 entries=20 op=nft_register_rule pid=5007 subj=system_u:system_r:kernel_t:s0 comm="iptables-restor" [ 110.423275] audit: type=1300 audit(1761957973.107:1325): arch=c000003e syscall=46 success=yes exit=7480 a0=3 a1=7ffcb108a030 a2=0 a3=7ffcb108a01c items=0 ppid=2914 pid=5007 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="iptables-restor" exe="/usr/sbin/xtables-nft-multi" subj=system_u:system_r:kernel_t:s0 key=(null) [ 110.429307] audit: type=1327 audit(1761957973.107:1325): proctitle=69707461626C65732D726573746F7265002D770035002D2D6E6F666C757368002D2D636F756E74657273 [ 110.433260] audit: type=1325 audit(1761957973.120:1326): table=nat:117 family=2 entries=14 op=nft_register_rule pid=5007 subj=system_u:system_r:kernel_t:s0 comm="iptables-restor" This is ip-172-31-16-197 (Linux x86_64 5.15.192-flatcar) 00:46:14 SSH host key: SHA256:Q/A27Bd2obLcj5HVutGctm1iUyGIHSBX2gnbtk0gOVs (ED25519) SSH host key: SHA256:DF1viABGxARhmFow2crkw9f1vvT4yPpp29tQUN2tBMo (RSA) SSH host key: SHA256:0s6P+0Nb3JuiDYXnuEyrZn6gq+r5JgVAgt2Ne+V9FUM (ECDSA) eth0: 172.31.16.197 fe80::487:f5ff:fecf:a919 ip-172-31-16-197 login: This is ip-172-31-16-197 (Linux x86_64 5.15.192-flatcar) 00:46:15 SSH host key: SHA256:Q/A27Bd2obLcj5HVutGctm1iUyGIHSBX2gnbtk0gOVs (ED25519) SSH host key: SHA256:DF1viABGxARhmFow2crkw9f1vvT4yPpp29tQUN2tBMo (RSA) SSH host key: SHA256:0s6P+0Nb3JuiDYXnuEyrZn6gq+r5JgVAgt2Ne+V9FUM (ECDSA) eth0: 172.31.16.197 fe80::487:f5ff:fecf:a919 ip-172-31-16-197 login: [ 115.505332] kauditd_printk_skb: 34 callbacks suppressed [ 115.505335] audit: type=1106 audit(1761957978.192:1341): pid=5021 uid=0 auid=500 ses=8 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_close grantors=pam_loginuid,pam_env,pam_lastlog,pam_limits,pam_env,pam_unix,pam_permit,pam_systemd,pam_mail acct="core" exe="/usr/sbin/sshd" hostname=147.75.109.163 addr=147.75.109.163 terminal=ssh res=success' [ 115.511729] audit: type=1104 audit(1761957978.194:1342): pid=5021 uid=0 auid=500 ses=8 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=147.75.109.163 addr=147.75.109.163 terminal=ssh res=success' [ 115.515958] audit: type=1131 audit(1761957978.203:1343): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='unit=sshd@7-172.31.16.197:22-147.75.109.163:49578 comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success' [ 119.427222] audit: type=1325 audit(1761957982.114:1344): table=filter:118 family=2 entries=17 op=nft_register_rule pid=5102 subj=system_u:system_r:kernel_t:s0 comm="iptables-restor" [ 119.430588] audit: type=1300 audit(1761957982.114:1344): arch=c000003e syscall=46 success=yes exit=5248 a0=3 a1=7ffceeff7350 a2=0 a3=7ffceeff733c items=0 ppid=2914 pid=5102 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="iptables-restor" exe="/usr/sbin/xtables-nft-multi" subj=system_u:system_r:kernel_t:s0 key=(null) [ 119.440337] audit: type=1327 audit(1761957982.114:1344): proctitle=69707461626C65732D726573746F7265002D770035002D2D6E6F666C757368002D2D636F756E74657273 [ 119.453163] audit: type=1325 audit(1761957982.138:1345): table=nat:119 family=2 entries=35 op=nft_register_chain pid=5102 subj=system_u:system_r:kernel_t:s0 comm="iptables-restor" [ 119.459147] audit: type=1300 audit(1761957982.138:1345): arch=c000003e syscall=46 success=yes exit=14196 a0=3 a1=7ffceeff7350 a2=0 a3=7ffceeff733c items=0 ppid=2914 pid=5102 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="iptables-restor" exe="/usr/sbin/xtables-nft-multi" subj=system_u:system_r:kernel_t:s0 key=(null) [ 119.470343] audit: type=1327 audit(1761957982.138:1345): proctitle=69707461626C65732D726573746F7265002D770035002D2D6E6F666C757368002D2D636F756E74657273 [ 120.513966] audit: type=1325 audit(1761957983.201:1346): table=filter:120 family=2 entries=14 op=nft_register_rule pid=5328 subj=system_u:system_r:kernel_t:s0 comm="iptables-restor" [ 120.519756] audit: type=1300 audit(1761957983.201:1346): arch=c000003e syscall=46 success=yes exit=5248 a0=3 a1=7ffd20c9d6c0 a2=0 a3=7ffd20c9d6ac items=0 ppid=2914 pid=5328 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="iptables-restor" exe="/usr/sbin/xtables-nft-multi" subj=system_u:system_r:kernel_t:s0 key=(null) [ 120.540099] audit: type=1327 audit(1761957983.201:1346): proctitle=69707461626C65732D726573746F7265002D770035002D2D6E6F666C757368002D2D636F756E74657273 [ 120.545035] audit: type=1130 audit(1761957983.225:1347): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='unit=sshd@8-172.31.16.197:22-147.75.109.163:44948 comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success' [ 120.615501] audit: type=1325 audit(1761957983.302:1348): table=nat:121 family=2 entries=56 op=nft_register_chain pid=5328 subj=system_u:system_r:kernel_t:s0 comm="iptables-restor" [ 120.622624] audit: type=1300 audit(1761957983.302:1348): arch=c000003e syscall=46 success=yes exit=19860 a0=3 a1=7ffd20c9d6c0 a2=0 a3=7ffd20c9d6ac items=0 ppid=2914 pid=5328 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="iptables-restor" exe="/usr/sbin/xtables-nft-multi" subj=system_u:system_r:kernel_t:s0 key=(null) [ 120.638401] audit: type=1327 audit(1761957983.302:1348): proctitle=69707461626C65732D726573746F7265002D770035002D2D6E6F666C757368002D2D636F756E74657273 [ 120.790846] audit: type=1101 audit(1761957983.478:1349): pid=5333 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:accounting grantors=pam_access,pam_unix,pam_faillock,pam_permit acct="core" exe="/usr/sbin/sshd" hostname=147.75.109.163 addr=147.75.109.163 terminal=ssh res=success' [ 120.799103] audit: type=1103 audit(1761957983.486:1350): pid=5333 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=147.75.109.163 addr=147.75.109.163 terminal=ssh res=success' [ 120.809145] audit: type=1006 audit(1761957983.486:1351): pid=5333 uid=0 subj=system_u:system_r:kernel_t:s0 old-auid=4294967295 auid=500 tty=(none) old-ses=4294967295 ses=9 res=1 [ 126.285304] kauditd_printk_skb: 19 callbacks suppressed [ 126.285307] audit: type=1130 audit(1761957988.973:1361): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='unit=sshd@9-172.31.16.197:22-147.75.109.163:44956 comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success' [ 126.449871] audit: type=1101 audit(1761957989.137:1362): pid=5419 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:accounting grantors=pam_access,pam_unix,pam_faillock,pam_permit acct="core" exe="/usr/sbin/sshd" hostname=147.75.109.163 addr=147.75.109.163 terminal=ssh res=success' [ 126.459017] audit: type=1103 audit(1761957989.146:1363): pid=5419 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=147.75.109.163 addr=147.75.109.163 terminal=ssh res=success' [ 126.466713] audit: type=1006 audit(1761957989.146:1364): pid=5419 uid=0 subj=system_u:system_r:kernel_t:s0 old-auid=4294967295 auid=500 tty=(none) old-ses=4294967295 ses=10 res=1 [ 126.470971] audit: type=1300 audit(1761957989.146:1364): arch=c000003e syscall=1 success=yes exit=3 a0=5 a1=7ffe0627f510 a2=3 a3=0 items=0 ppid=1 pid=5419 auid=500 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=10 comm="sshd" exe="/usr/sbin/sshd" subj=system_u:system_r:kernel_t:s0 key=(null) [ 126.477921] audit: type=1327 audit(1761957989.146:1364): proctitle=737368643A20636F7265205B707269765D [ 126.487453] audit: type=1105 audit(1761957989.175:1365): pid=5419 uid=0 auid=500 ses=10 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_open grantors=pam_loginuid,pam_env,pam_lastlog,pam_limits,pam_env,pam_unix,pam_permit,pam_systemd,pam_mail acct="core" exe="/usr/sbin/sshd" hostname=147.75.109.163 addr=147.75.109.163 terminal=ssh res=success' [ 126.496159] audit: type=1103 audit(1761957989.181:1366): pid=5421 uid=0 auid=500 ses=10 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=147.75.109.163 addr=147.75.109.163 terminal=ssh res=success' [ 126.683397] audit: type=1106 audit(1761957989.371:1367): pid=5419 uid=0 auid=500 ses=10 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_close grantors=pam_loginuid,pam_env,pam_lastlog,pam_limits,pam_env,pam_unix,pam_permit,pam_systemd,pam_mail acct="core" exe="/usr/sbin/sshd" hostname=147.75.109.163 addr=147.75.109.163 terminal=ssh res=success' [ 126.693434] audit: type=1104 audit(1761957989.372:1368): pid=5419 uid=0 auid=500 ses=10 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=147.75.109.163 addr=147.75.109.163 terminal=ssh res=success' [ 132.641921] kauditd_printk_skb: 23 callbacks suppressed [ 132.641923] audit: type=1130 audit(1761957995.329:1388): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='unit=sshd@12-172.31.16.197:22-147.75.109.163:41846 comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success' [ 132.806465] audit: type=1101 audit(1761957995.494:1389): pid=5470 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:accounting grantors=pam_access,pam_unix,pam_faillock,pam_permit acct="core" exe="/usr/sbin/sshd" hostname=147.75.109.163 addr=147.75.109.163 terminal=ssh res=success' [ 132.814628] audit: type=1103 audit(1761957995.502:1390): pid=5470 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=147.75.109.163 addr=147.75.109.163 terminal=ssh res=success' [ 132.822072] audit: type=1006 audit(1761957995.502:1391): pid=5470 uid=0 subj=system_u:system_r:kernel_t:s0 old-auid=4294967295 auid=500 tty=(none) old-ses=4294967295 ses=13 res=1 [ 132.826440] audit: type=1300 audit(1761957995.502:1391): arch=c000003e syscall=1 success=yes exit=3 a0=5 a1=7fff9df09820 a2=3 a3=0 items=0 ppid=1 pid=5470 auid=500 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=13 comm="sshd" exe="/usr/sbin/sshd" subj=system_u:system_r:kernel_t:s0 key=(null) [ 132.833746] audit: type=1327 audit(1761957995.502:1391): proctitle=737368643A20636F7265205B707269765D [ 132.836676] audit: type=1105 audit(1761957995.522:1392): pid=5470 uid=0 auid=500 ses=13 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_open grantors=pam_loginuid,pam_env,pam_lastlog,pam_limits,pam_env,pam_unix,pam_permit,pam_systemd,pam_mail acct="core" exe="/usr/sbin/sshd" hostname=147.75.109.163 addr=147.75.109.163 terminal=ssh res=success' [ 132.844713] audit: type=1103 audit(1761957995.524:1393): pid=5472 uid=0 auid=500 ses=13 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=147.75.109.163 addr=147.75.109.163 terminal=ssh res=success' [ 133.042414] audit: type=1106 audit(1761957995.730:1394): pid=5470 uid=0 auid=500 ses=13 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_close grantors=pam_loginuid,pam_env,pam_lastlog,pam_limits,pam_env,pam_unix,pam_permit,pam_systemd,pam_mail acct="core" exe="/usr/sbin/sshd" hostname=147.75.109.163 addr=147.75.109.163 terminal=ssh res=success' [ 133.053569] audit: type=1104 audit(1761957995.730:1395): pid=5470 uid=0 auid=500 ses=13 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=147.75.109.163 addr=147.75.109.163 terminal=ssh res=success' [ 138.067800] kauditd_printk_skb: 1 callbacks suppressed [ 138.067803] audit: type=1130 audit(1761958000.754:1397): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='unit=sshd@13-172.31.16.197:22-147.75.109.163:37992 comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success' [ 138.264992] audit: type=1101 audit(1761958000.952:1398): pid=5507 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:accounting grantors=pam_access,pam_unix,pam_faillock,pam_permit acct="core" exe="/usr/sbin/sshd" hostname=147.75.109.163 addr=147.75.109.163 terminal=ssh res=success' [ 138.275486] audit: type=1103 audit(1761958000.962:1399): pid=5507 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=147.75.109.163 addr=147.75.109.163 terminal=ssh res=success' [ 138.283941] audit: type=1006 audit(1761958000.963:1400): pid=5507 uid=0 subj=system_u:system_r:kernel_t:s0 old-auid=4294967295 auid=500 tty=(none) old-ses=4294967295 ses=14 res=1 [ 138.289329] audit: type=1300 audit(1761958000.963:1400): arch=c000003e syscall=1 success=yes exit=3 a0=5 a1=7ffc35df7da0 a2=3 a3=0 items=0 ppid=1 pid=5507 auid=500 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=14 comm="sshd" exe="/usr/sbin/sshd" subj=system_u:system_r:kernel_t:s0 key=(null) [ 138.297682] audit: type=1327 audit(1761958000.963:1400): proctitle=737368643A20636F7265205B707269765D [ 138.313010] audit: type=1105 audit(1761958001.000:1401): pid=5507 uid=0 auid=500 ses=14 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_open grantors=pam_loginuid,pam_env,pam_lastlog,pam_limits,pam_env,pam_unix,pam_permit,pam_systemd,pam_mail acct="core" exe="/usr/sbin/sshd" hostname=147.75.109.163 addr=147.75.109.163 terminal=ssh res=success' [ 138.323419] audit: type=1103 audit(1761958001.002:1402): pid=5509 uid=0 auid=500 ses=14 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=147.75.109.163 addr=147.75.109.163 terminal=ssh res=success' [ 138.559213] audit: type=1106 audit(1761958001.247:1403): pid=5507 uid=0 auid=500 ses=14 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_close grantors=pam_loginuid,pam_env,pam_lastlog,pam_limits,pam_env,pam_unix,pam_permit,pam_systemd,pam_mail acct="core" exe="/usr/sbin/sshd" hostname=147.75.109.163 addr=147.75.109.163 terminal=ssh res=success' [ 138.570159] audit: type=1104 audit(1761958001.247:1404): pid=5507 uid=0 auid=500 ses=14 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=147.75.109.163 addr=147.75.109.163 terminal=ssh res=success' [ 143.584400] kauditd_printk_skb: 1 callbacks suppressed [ 143.584402] audit: type=1130 audit(1761958006.272:1406): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='unit=sshd@14-172.31.16.197:22-147.75.109.163:37998 comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success' [ 143.792257] audit: type=1101 audit(1761958006.478:1407): pid=5520 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:accounting grantors=pam_access,pam_unix,pam_faillock,pam_permit acct="core" exe="/usr/sbin/sshd" hostname=147.75.109.163 addr=147.75.109.163 terminal=ssh res=success' [ 143.806901] audit: type=1103 audit(1761958006.491:1408): pid=5520 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=147.75.109.163 addr=147.75.109.163 terminal=ssh res=success' [ 143.819027] audit: type=1006 audit(1761958006.491:1409): pid=5520 uid=0 subj=system_u:system_r:kernel_t:s0 old-auid=4294967295 auid=500 tty=(none) old-ses=4294967295 ses=15 res=1 [ 143.826089] audit: type=1300 audit(1761958006.491:1409): arch=c000003e syscall=1 success=yes exit=3 a0=5 a1=7fff5386c3a0 a2=3 a3=0 items=0 ppid=1 pid=5520 auid=500 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=15 comm="sshd" exe="/usr/sbin/sshd" subj=system_u:system_r:kernel_t:s0 key=(null) [ 143.838953] audit: type=1327 audit(1761958006.491:1409): proctitle=737368643A20636F7265205B707269765D [ 143.844078] audit: type=1105 audit(1761958006.527:1410): pid=5520 uid=0 auid=500 ses=15 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_open grantors=pam_loginuid,pam_env,pam_lastlog,pam_limits,pam_env,pam_unix,pam_permit,pam_systemd,pam_mail acct="core" exe="/usr/sbin/sshd" hostname=147.75.109.163 addr=147.75.109.163 terminal=ssh res=success' [ 143.856811] audit: type=1103 audit(1761958006.532:1411): pid=5522 uid=0 auid=500 ses=15 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=147.75.109.163 addr=147.75.109.163 terminal=ssh res=success' [ 144.157811] audit: type=1106 audit(1761958006.845:1412): pid=5520 uid=0 auid=500 ses=15 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_close grantors=pam_loginuid,pam_env,pam_lastlog,pam_limits,pam_env,pam_unix,pam_permit,pam_systemd,pam_mail acct="core" exe="/usr/sbin/sshd" hostname=147.75.109.163 addr=147.75.109.163 terminal=ssh res=success' [ 144.169585] audit: type=1104 audit(1761958006.846:1413): pid=5520 uid=0 auid=500 ses=15 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=147.75.109.163 addr=147.75.109.163 terminal=ssh res=success' [ 149.182491] kauditd_printk_skb: 1 callbacks suppressed [ 149.182494] audit: type=1130 audit(1761958011.870:1415): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='unit=sshd@15-172.31.16.197:22-147.75.109.163:59888 comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success' [ 149.404029] audit: type=1101 audit(1761958012.092:1416): pid=5538 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:accounting grantors=pam_access,pam_unix,pam_faillock,pam_permit acct="core" exe="/usr/sbin/sshd" hostname=147.75.109.163 addr=147.75.109.163 terminal=ssh res=success' [ 149.412846] audit: type=1103 audit(1761958012.100:1417): pid=5538 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=147.75.109.163 addr=147.75.109.163 terminal=ssh res=success' [ 149.422701] audit: type=1006 audit(1761958012.100:1418): pid=5538 uid=0 subj=system_u:system_r:kernel_t:s0 old-auid=4294967295 auid=500 tty=(none) old-ses=4294967295 ses=16 res=1 [ 149.429796] audit: type=1300 audit(1761958012.100:1418): arch=c000003e syscall=1 success=yes exit=3 a0=5 a1=7ffc6318cd90 a2=3 a3=0 items=0 ppid=1 pid=5538 auid=500 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=16 comm="sshd" exe="/usr/sbin/sshd" subj=system_u:system_r:kernel_t:s0 key=(null) [ 149.441640] audit: type=1327 audit(1761958012.100:1418): proctitle=737368643A20636F7265205B707269765D [ 149.445326] audit: type=1105 audit(1761958012.123:1419): pid=5538 uid=0 auid=500 ses=16 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_open grantors=pam_loginuid,pam_env,pam_lastlog,pam_limits,pam_env,pam_unix,pam_permit,pam_systemd,pam_mail acct="core" exe="/usr/sbin/sshd" hostname=147.75.109.163 addr=147.75.109.163 terminal=ssh res=success' [ 149.453096] audit: type=1103 audit(1761958012.123:1420): pid=5540 uid=0 auid=500 ses=16 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=147.75.109.163 addr=147.75.109.163 terminal=ssh res=success' [ 149.800183] audit: type=1106 audit(1761958012.488:1421): pid=5538 uid=0 auid=500 ses=16 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_close grantors=pam_loginuid,pam_env,pam_lastlog,pam_limits,pam_env,pam_unix,pam_permit,pam_systemd,pam_mail acct="core" exe="/usr/sbin/sshd" hostname=147.75.109.163 addr=147.75.109.163 terminal=ssh res=success' [ 149.812248] audit: type=1104 audit(1761958012.489:1422): pid=5538 uid=0 auid=500 ses=16 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=147.75.109.163 addr=147.75.109.163 terminal=ssh res=success' [ 158.287515] kauditd_printk_skb: 57 callbacks suppressed [ 158.287517] audit: type=1130 audit(1761958020.975:1464): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='unit=sshd@20-172.31.16.197:22-147.75.109.163:41144 comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success' [ 158.470047] audit: type=1101 audit(1761958021.158:1465): pid=5604 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:accounting grantors=pam_access,pam_unix,pam_faillock,pam_permit acct="core" exe="/usr/sbin/sshd" hostname=147.75.109.163 addr=147.75.109.163 terminal=ssh res=success' [ 158.499062] audit: type=1103 audit(1761958021.186:1466): pid=5604 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=147.75.109.163 addr=147.75.109.163 terminal=ssh res=success' [ 158.526364] audit: type=1006 audit(1761958021.186:1467): pid=5604 uid=0 subj=system_u:system_r:kernel_t:s0 old-auid=4294967295 auid=500 tty=(none) old-ses=4294967295 ses=21 res=1 [ 158.553376] audit: type=1300 audit(1761958021.186:1467): arch=c000003e syscall=1 success=yes exit=3 a0=5 a1=7ffe060f8f10 a2=3 a3=0 items=0 ppid=1 pid=5604 auid=500 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=21 comm="sshd" exe="/usr/sbin/sshd" subj=system_u:system_r:kernel_t:s0 key=(null) [ 158.571686] audit: type=1327 audit(1761958021.186:1467): proctitle=737368643A20636F7265205B707269765D [ 158.589702] audit: type=1105 audit(1761958021.259:1468): pid=5604 uid=0 auid=500 ses=21 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_open grantors=pam_loginuid,pam_env,pam_lastlog,pam_limits,pam_env,pam_unix,pam_permit,pam_systemd,pam_mail acct="core" exe="/usr/sbin/sshd" hostname=147.75.109.163 addr=147.75.109.163 terminal=ssh res=success' [ 158.627336] audit: type=1103 audit(1761958021.277:1469): pid=5606 uid=0 auid=500 ses=21 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=147.75.109.163 addr=147.75.109.163 terminal=ssh res=success' [ 158.648680] audit: type=1325 audit(1761958021.336:1470): table=filter:126 family=2 entries=26 op=nft_register_rule pid=5608 subj=system_u:system_r:kernel_t:s0 comm="iptables-restor" [ 158.653406] audit: type=1300 audit(1761958021.336:1470): arch=c000003e syscall=46 success=yes exit=5248 a0=3 a1=7fff20865890 a2=0 a3=7fff2086587c items=0 ppid=2914 pid=5608 auid=4294967295 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=4294967295 comm="iptables-restor" exe="/usr/sbin/xtables-nft-multi" subj=system_u:system_r:kernel_t:s0 key=(null) [ 164.192376] kauditd_printk_skb: 7 callbacks suppressed [ 164.192379] audit: type=1130 audit(1761958026.880:1475): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='unit=sshd@21-172.31.16.197:22-147.75.109.163:41160 comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success' [ 164.374228] audit: type=1101 audit(1761958027.062:1476): pid=5618 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:accounting grantors=pam_access,pam_unix,pam_faillock,pam_permit acct="core" exe="/usr/sbin/sshd" hostname=147.75.109.163 addr=147.75.109.163 terminal=ssh res=success' [ 164.381879] audit: type=1103 audit(1761958027.067:1477): pid=5618 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=147.75.109.163 addr=147.75.109.163 terminal=ssh res=success' [ 164.392175] audit: type=1006 audit(1761958027.069:1478): pid=5618 uid=0 subj=system_u:system_r:kernel_t:s0 old-auid=4294967295 auid=500 tty=(none) old-ses=4294967295 ses=22 res=1 [ 164.398195] audit: type=1300 audit(1761958027.069:1478): arch=c000003e syscall=1 success=yes exit=3 a0=5 a1=7ffdb3a430f0 a2=3 a3=0 items=0 ppid=1 pid=5618 auid=500 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=22 comm="sshd" exe="/usr/sbin/sshd" subj=system_u:system_r:kernel_t:s0 key=(null) [ 164.411258] audit: type=1327 audit(1761958027.069:1478): proctitle=737368643A20636F7265205B707269765D [ 164.417559] audit: type=1105 audit(1761958027.105:1479): pid=5618 uid=0 auid=500 ses=22 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_open grantors=pam_loginuid,pam_env,pam_lastlog,pam_limits,pam_env,pam_unix,pam_permit,pam_systemd,pam_mail acct="core" exe="/usr/sbin/sshd" hostname=147.75.109.163 addr=147.75.109.163 terminal=ssh res=success' [ 164.427281] audit: type=1103 audit(1761958027.112:1480): pid=5641 uid=0 auid=500 ses=22 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=147.75.109.163 addr=147.75.109.163 terminal=ssh res=success' [ 164.776811] audit: type=1106 audit(1761958027.465:1481): pid=5618 uid=0 auid=500 ses=22 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_close grantors=pam_loginuid,pam_env,pam_lastlog,pam_limits,pam_env,pam_unix,pam_permit,pam_systemd,pam_mail acct="core" exe="/usr/sbin/sshd" hostname=147.75.109.163 addr=147.75.109.163 terminal=ssh res=success' [ 164.786654] audit: type=1104 audit(1761958027.465:1482): pid=5618 uid=0 auid=500 ses=22 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=147.75.109.163 addr=147.75.109.163 terminal=ssh res=success' [ 169.801833] kauditd_printk_skb: 1 callbacks suppressed [ 169.801836] audit: type=1130 audit(1761958032.490:1484): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='unit=sshd@22-172.31.16.197:22-147.75.109.163:51794 comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success' [ 169.993793] audit: type=1101 audit(1761958032.680:1485): pid=5651 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:accounting grantors=pam_access,pam_unix,pam_faillock,pam_permit acct="core" exe="/usr/sbin/sshd" hostname=147.75.109.163 addr=147.75.109.163 terminal=ssh res=success' [ 170.015351] audit: type=1103 audit(1761958032.692:1486): pid=5651 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=147.75.109.163 addr=147.75.109.163 terminal=ssh res=success' [ 170.027036] audit: type=1006 audit(1761958032.692:1487): pid=5651 uid=0 subj=system_u:system_r:kernel_t:s0 old-auid=4294967295 auid=500 tty=(none) old-ses=4294967295 ses=23 res=1 [ 170.034752] audit: type=1300 audit(1761958032.692:1487): arch=c000003e syscall=1 success=yes exit=3 a0=5 a1=7ffd2cc0cb90 a2=3 a3=0 items=0 ppid=1 pid=5651 auid=500 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=23 comm="sshd" exe="/usr/sbin/sshd" subj=system_u:system_r:kernel_t:s0 key=(null) [ 170.045188] audit: type=1327 audit(1761958032.692:1487): proctitle=737368643A20636F7265205B707269765D [ 170.049904] audit: type=1105 audit(1761958032.722:1488): pid=5651 uid=0 auid=500 ses=23 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_open grantors=pam_loginuid,pam_env,pam_lastlog,pam_limits,pam_env,pam_unix,pam_permit,pam_systemd,pam_mail acct="core" exe="/usr/sbin/sshd" hostname=147.75.109.163 addr=147.75.109.163 terminal=ssh res=success' [ 170.061629] audit: type=1103 audit(1761958032.723:1489): pid=5653 uid=0 auid=500 ses=23 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=147.75.109.163 addr=147.75.109.163 terminal=ssh res=success' [ 170.300516] audit: type=1106 audit(1761958032.988:1490): pid=5651 uid=0 auid=500 ses=23 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_close grantors=pam_loginuid,pam_env,pam_lastlog,pam_limits,pam_env,pam_unix,pam_permit,pam_systemd,pam_mail acct="core" exe="/usr/sbin/sshd" hostname=147.75.109.163 addr=147.75.109.163 terminal=ssh res=success' [ 170.317753] audit: type=1104 audit(1761958032.988:1491): pid=5651 uid=0 auid=500 ses=23 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=147.75.109.163 addr=147.75.109.163 terminal=ssh res=success' [ 175.328232] kauditd_printk_skb: 25 callbacks suppressed [ 175.328236] audit: type=1130 audit(1761958038.016:1501): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='unit=sshd@23-172.31.16.197:22-147.75.109.163:51802 comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success' [ 175.554678] audit: type=1101 audit(1761958038.241:1502): pid=5663 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:accounting grantors=pam_access,pam_unix,pam_faillock,pam_permit acct="core" exe="/usr/sbin/sshd" hostname=147.75.109.163 addr=147.75.109.163 terminal=ssh res=success' [ 175.565164] audit: type=1103 audit(1761958038.242:1503): pid=5663 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=147.75.109.163 addr=147.75.109.163 terminal=ssh res=success' [ 175.575322] audit: type=1006 audit(1761958038.242:1504): pid=5663 uid=0 subj=system_u:system_r:kernel_t:s0 old-auid=4294967295 auid=500 tty=(none) old-ses=4294967295 ses=24 res=1 [ 175.582224] audit: type=1300 audit(1761958038.242:1504): arch=c000003e syscall=1 success=yes exit=3 a0=5 a1=7ffca4ab6220 a2=3 a3=0 items=0 ppid=1 pid=5663 auid=500 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=24 comm="sshd" exe="/usr/sbin/sshd" subj=system_u:system_r:kernel_t:s0 key=(null) [ 175.594931] audit: type=1327 audit(1761958038.242:1504): proctitle=737368643A20636F7265205B707269765D [ 175.613093] audit: type=1105 audit(1761958038.300:1505): pid=5663 uid=0 auid=500 ses=24 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_open grantors=pam_loginuid,pam_env,pam_lastlog,pam_limits,pam_env,pam_unix,pam_permit,pam_systemd,pam_mail acct="core" exe="/usr/sbin/sshd" hostname=147.75.109.163 addr=147.75.109.163 terminal=ssh res=success' [ 175.624977] audit: type=1103 audit(1761958038.313:1506): pid=5665 uid=0 auid=500 ses=24 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=147.75.109.163 addr=147.75.109.163 terminal=ssh res=success' [ 176.097062] audit: type=1106 audit(1761958038.783:1507): pid=5663 uid=0 auid=500 ses=24 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_close grantors=pam_loginuid,pam_env,pam_lastlog,pam_limits,pam_env,pam_unix,pam_permit,pam_systemd,pam_mail acct="core" exe="/usr/sbin/sshd" hostname=147.75.109.163 addr=147.75.109.163 terminal=ssh res=success' [ 176.112813] audit: type=1104 audit(1761958038.783:1508): pid=5663 uid=0 auid=500 ses=24 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=147.75.109.163 addr=147.75.109.163 terminal=ssh res=success' [ 181.120730] kauditd_printk_skb: 1 callbacks suppressed [ 181.120732] audit: type=1130 audit(1761958043.808:1510): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='unit=sshd@24-172.31.16.197:22-147.75.109.163:46884 comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success' [ 181.316900] audit: type=1101 audit(1761958044.002:1511): pid=5677 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:accounting grantors=pam_access,pam_unix,pam_faillock,pam_permit acct="core" exe="/usr/sbin/sshd" hostname=147.75.109.163 addr=147.75.109.163 terminal=ssh res=success' [ 181.330679] audit: type=1103 audit(1761958044.003:1512): pid=5677 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=147.75.109.163 addr=147.75.109.163 terminal=ssh res=success' [ 181.343683] audit: type=1006 audit(1761958044.003:1513): pid=5677 uid=0 subj=system_u:system_r:kernel_t:s0 old-auid=4294967295 auid=500 tty=(none) old-ses=4294967295 ses=25 res=1 [ 181.351688] audit: type=1300 audit(1761958044.003:1513): arch=c000003e syscall=1 success=yes exit=3 a0=5 a1=7ffc8ecb4430 a2=3 a3=0 items=0 ppid=1 pid=5677 auid=500 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=(none) ses=25 comm="sshd" exe="/usr/sbin/sshd" subj=system_u:system_r:kernel_t:s0 key=(null) [ 181.365709] audit: type=1327 audit(1761958044.003:1513): proctitle=737368643A20636F7265205B707269765D [ 181.370225] audit: type=1105 audit(1761958044.050:1514): pid=5677 uid=0 auid=500 ses=25 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_open grantors=pam_loginuid,pam_env,pam_lastlog,pam_limits,pam_env,pam_unix,pam_permit,pam_systemd,pam_mail acct="core" exe="/usr/sbin/sshd" hostname=147.75.109.163 addr=147.75.109.163 terminal=ssh res=success' [ 181.385690] audit: type=1103 audit(1761958044.052:1515): pid=5679 uid=0 auid=500 ses=25 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=147.75.109.163 addr=147.75.109.163 terminal=ssh res=success' [ 181.797249] audit: type=1106 audit(1761958044.484:1516): pid=5677 uid=0 auid=500 ses=25 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:session_close grantors=pam_loginuid,pam_env,pam_lastlog,pam_limits,pam_env,pam_unix,pam_permit,pam_systemd,pam_mail acct="core" exe="/usr/sbin/sshd" hostname=147.75.109.163 addr=147.75.109.163 terminal=ssh res=success' [ 181.808529] audit: type=1104 audit(1761958044.484:1517): pid=5677 uid=0 auid=500 ses=25 subj=system_u:system_r:kernel_t:s0 msg='op=PAM:setcred grantors=pam_env,pam_faillock,pam_unix acct="core" exe="/usr/sbin/sshd" hostname=147.75.109.163 addr=147.75.109.163 terminal=ssh res=success' [ 196.151477] kauditd_printk_skb: 13 callbacks suppressed [ 196.151480] audit: type=1334 audit(1761958058.838:1523): prog-id=117 op=UNLOAD [ 196.159260] audit: type=1334 audit(1761958058.846:1524): prog-id=120 op=UNLOAD [ 196.873269] audit: type=1400 audit(1761958059.560:1525): avc: denied { bpf } for pid=1 comm="systemd" capability=39 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 196.879654] audit: type=1400 audit(1761958059.560:1526): avc: denied { bpf } for pid=1 comm="systemd" capability=39 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 196.885093] audit: type=1400 audit(1761958059.560:1527): avc: denied { bpf } for pid=1 comm="systemd" capability=39 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 196.890893] audit: type=1400 audit(1761958059.560:1528): avc: denied { perfmon } for pid=1 comm="systemd" capability=38 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 196.896800] audit: type=1400 audit(1761958059.560:1529): avc: denied { perfmon } for pid=1 comm="systemd" capability=38 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 196.903340] audit: type=1400 audit(1761958059.560:1530): avc: denied { perfmon } for pid=1 comm="systemd" capability=38 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 196.909075] audit: type=1400 audit(1761958059.560:1531): avc: denied { perfmon } for pid=1 comm="systemd" capability=38 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 196.915093] audit: type=1400 audit(1761958059.560:1532): avc: denied { perfmon } for pid=1 comm="systemd" capability=38 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 201.821791] kauditd_printk_skb: 116 callbacks suppressed [ 201.821794] audit: type=1400 audit(1761958064.508:1567): avc: denied { bpf } for pid=1 comm="systemd" capability=39 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 201.830711] audit: type=1400 audit(1761958064.508:1568): avc: denied { bpf } for pid=1 comm="systemd" capability=39 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 201.837301] audit: type=1400 audit(1761958064.508:1569): avc: denied { bpf } for pid=1 comm="systemd" capability=39 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 201.843235] audit: type=1400 audit(1761958064.508:1570): avc: denied { perfmon } for pid=1 comm="systemd" capability=38 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 201.850217] audit: type=1400 audit(1761958064.508:1571): avc: denied { perfmon } for pid=1 comm="systemd" capability=38 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 201.858461] audit: type=1400 audit(1761958064.508:1572): avc: denied { perfmon } for pid=1 comm="systemd" capability=38 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 201.866251] audit: type=1400 audit(1761958064.508:1573): avc: denied { perfmon } for pid=1 comm="systemd" capability=38 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 201.873806] audit: type=1400 audit(1761958064.508:1574): avc: denied { perfmon } for pid=1 comm="systemd" capability=38 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 201.882160] audit: type=1400 audit(1761958064.508:1575): avc: denied { bpf } for pid=1 comm="systemd" capability=39 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0 [ 201.889237] audit: type=1400 audit(1761958064.509:1576): avc: denied { bpf } for pid=1 comm="systemd" capability=39 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=0