----
time->Fri Aug 15 21:35:08 2025
type=PROCTITLE msg=audit(1755308108.971:11700): proctitle=676574656E740067726F7570006D7373716C
type=SYSCALL msg=audit(1755308108.971:11700): arch=c000003e syscall=42 success=no exit=-13 a0=4 a1=7ffffc743b70 a2=2d a3=0 items=0 ppid=70018 pid=70019 auid=0 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=pts0 ses=7 comm="getent" exe="/usr/bin/getent" subj=unconfined_u:unconfined_r:mssql_conf_t:s0-s0:c0.c1023 key=(null)
type=AVC msg=audit(1755308108.971:11700): avc:  denied  { connectto } for  pid=70019 comm="getent" path="/run/systemd/userdb/io.systemd.DynamicUser" scontext=unconfined_u:unconfined_r:mssql_conf_t:s0-s0:c0.c1023 tcontext=system_u:system_r:kernel_t:s0 tclass=unix_stream_socket permissive=0
----
time->Fri Aug 15 21:35:08 2025
type=PROCTITLE msg=audit(1755308108.971:11701): proctitle=676574656E740067726F7570006D7373716C
type=SYSCALL msg=audit(1755308108.971:11701): arch=c000003e syscall=42 success=no exit=-13 a0=4 a1=7ffffc743b60 a2=2d a3=5615318e1a00 items=0 ppid=70018 pid=70019 auid=0 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=pts0 ses=7 comm="getent" exe="/usr/bin/getent" subj=unconfined_u:unconfined_r:mssql_conf_t:s0-s0:c0.c1023 key=(null)
type=AVC msg=audit(1755308108.971:11701): avc:  denied  { connectto } for  pid=70019 comm="getent" path="/run/systemd/userdb/io.systemd.DynamicUser" scontext=unconfined_u:unconfined_r:mssql_conf_t:s0-s0:c0.c1023 tcontext=system_u:system_r:kernel_t:s0 tclass=unix_stream_socket permissive=0
----
time->Fri Aug 15 21:35:08 2025
type=PROCTITLE msg=audit(1755308108.983:11702): proctitle=676574656E740067726F7570006D7373716C
type=SYSCALL msg=audit(1755308108.983:11702): arch=c000003e syscall=42 success=no exit=-13 a0=4 a1=7ffc95b73fa0 a2=2d a3=0 items=0 ppid=70022 pid=70023 auid=0 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=pts0 ses=7 comm="getent" exe="/usr/bin/getent" subj=unconfined_u:unconfined_r:mssql_conf_t:s0-s0:c0.c1023 key=(null)
type=AVC msg=audit(1755308108.983:11702): avc:  denied  { connectto } for  pid=70023 comm="getent" path="/run/systemd/userdb/io.systemd.DynamicUser" scontext=unconfined_u:unconfined_r:mssql_conf_t:s0-s0:c0.c1023 tcontext=system_u:system_r:kernel_t:s0 tclass=unix_stream_socket permissive=0
----
time->Fri Aug 15 21:35:08 2025
type=PROCTITLE msg=audit(1755308108.983:11703): proctitle=676574656E740067726F7570006D7373716C
type=SYSCALL msg=audit(1755308108.983:11703): arch=c000003e syscall=42 success=no exit=-13 a0=4 a1=7ffc95b73f90 a2=2d a3=5624cb290a00 items=0 ppid=70022 pid=70023 auid=0 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=pts0 ses=7 comm="getent" exe="/usr/bin/getent" subj=unconfined_u:unconfined_r:mssql_conf_t:s0-s0:c0.c1023 key=(null)
type=AVC msg=audit(1755308108.983:11703): avc:  denied  { connectto } for  pid=70023 comm="getent" path="/run/systemd/userdb/io.systemd.DynamicUser" scontext=unconfined_u:unconfined_r:mssql_conf_t:s0-s0:c0.c1023 tcontext=system_u:system_r:kernel_t:s0 tclass=unix_stream_socket permissive=0
----
time->Fri Aug 15 21:35:09 2025
type=PROCTITLE msg=audit(1755308109.003:11704): proctitle=2F62696E2F7368002D63006966202020686173682064706B673B207468656E20636D643D2264706B67202D2D6C697374223B2020202020202020202020202020202020202020656C69662068617368202072706D3B207468656E20636D643D2272706D202D7161223B20202020202020202020202020202020202020656C7365
type=SYSCALL msg=audit(1755308109.003:11704): arch=c000003e syscall=262 success=no exit=-13 a0=ffffff9c a1=5584a0d68260 a2=7ffe27f99da0 a3=0 items=0 ppid=70017 pid=70028 auid=0 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=pts0 ses=7 comm="sh" exe="/usr/bin/bash" subj=unconfined_u:unconfined_r:mssql_conf_t:s0-s0:c0.c1023 key=(null)
type=AVC msg=audit(1755308109.003:11704): avc:  denied  { getattr } for  pid=70028 comm="sh" path="/usr/bin/rpm" dev="xvda1" ino=632552 scontext=unconfined_u:unconfined_r:mssql_conf_t:s0-s0:c0.c1023 tcontext=system_u:object_r:rpm_exec_t:s0 tclass=file permissive=0
----
time->Fri Aug 15 21:35:09 2025
type=PROCTITLE msg=audit(1755308109.026:11707): proctitle=7375002D70002D63002F6F70742F6D7373716C2F62696E2F73716C7365727672202D2D7365747570202D2D72657365742D73612D70617373776F7264006D7373716C
type=SYSCALL msg=audit(1755308109.026:11707): arch=c000003e syscall=42 success=no exit=-13 a0=4 a1=7fffda5f3870 a2=2d a3=560dfa4e4750 items=0 ppid=70031 pid=70037 auid=0 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=pts0 ses=7 comm="su" exe="/usr/bin/su" subj=unconfined_u:unconfined_r:mssql_conf_t:s0-s0:c0.c1023 key=(null)
type=AVC msg=audit(1755308109.026:11707): avc:  denied  { connectto } for  pid=70037 comm="su" path="/run/systemd/userdb/io.systemd.DynamicUser" scontext=unconfined_u:unconfined_r:mssql_conf_t:s0-s0:c0.c1023 tcontext=system_u:system_r:kernel_t:s0 tclass=unix_stream_socket permissive=0
----
time->Fri Aug 15 21:35:09 2025
type=PROCTITLE msg=audit(1755308109.026:11709): proctitle=7375002D70002D63002F6F70742F6D7373716C2F62696E2F73716C7365727672202D2D7365747570202D2D72657365742D73612D70617373776F7264006D7373716C
type=SYSCALL msg=audit(1755308109.026:11709): arch=c000003e syscall=42 success=no exit=-13 a0=4 a1=7fffda5f3430 a2=2d a3=560dfa4e4700 items=0 ppid=70031 pid=70037 auid=0 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=pts0 ses=7 comm="su" exe="/usr/bin/su" subj=unconfined_u:unconfined_r:mssql_conf_t:s0-s0:c0.c1023 key=(null)
type=AVC msg=audit(1755308109.026:11709): avc:  denied  { connectto } for  pid=70037 comm="su" path="/run/systemd/userdb/io.systemd.DynamicUser" scontext=unconfined_u:unconfined_r:mssql_conf_t:s0-s0:c0.c1023 tcontext=system_u:system_r:kernel_t:s0 tclass=unix_stream_socket permissive=0
----
time->Fri Aug 15 21:35:14 2025
type=PROCTITLE msg=audit(1755308114.947:11713): proctitle="(sd-askpwagent)"
type=SYSCALL msg=audit(1755308114.947:11713): arch=c000003e syscall=59 success=no exit=-13 a0=7f348f6c4f78 a1=7fff5933c870 a2=7fff5933d108 a3=0 items=0 ppid=70235 pid=70236 auid=0 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=pts0 ses=7 comm="(sd-askpwagent)" exe="/usr/bin/systemctl" subj=unconfined_u:unconfined_r:mssql_conf_t:s0-s0:c0.c1023 key=(null)
type=SELINUX_ERR msg=audit(1755308114.947:11713): op=security_compute_sid invalid_context="unconfined_u:unconfined_r:systemd_passwd_agent_t:s0-s0:c0.c1023" scontext=unconfined_u:unconfined_r:mssql_conf_t:s0-s0:c0.c1023 tcontext=system_u:object_r:systemd_passwd_agent_exec_t:s0 tclass=process
----
time->Fri Aug 15 21:35:40 2025
type=PROCTITLE msg=audit(1755308140.239:12259): proctitle=676574656E740067726F7570006D7373716C
type=SYSCALL msg=audit(1755308140.239:12259): arch=c000003e syscall=42 success=no exit=-13 a0=4 a1=7ffe0c0799b0 a2=2d a3=0 items=0 ppid=73329 pid=73330 auid=0 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=pts0 ses=7 comm="getent" exe="/usr/bin/getent" subj=unconfined_u:unconfined_r:mssql_conf_t:s0-s0:c0.c1023 key=(null)
type=AVC msg=audit(1755308140.239:12259): avc:  denied  { connectto } for  pid=73330 comm="getent" path="/run/systemd/userdb/io.systemd.DynamicUser" scontext=unconfined_u:unconfined_r:mssql_conf_t:s0-s0:c0.c1023 tcontext=system_u:system_r:kernel_t:s0 tclass=unix_stream_socket permissive=0
----
time->Fri Aug 15 21:35:40 2025
type=PROCTITLE msg=audit(1755308140.240:12260): proctitle=676574656E740067726F7570006D7373716C
type=SYSCALL msg=audit(1755308140.240:12260): arch=c000003e syscall=42 success=no exit=-13 a0=4 a1=7ffe0c0799a0 a2=2d a3=559ad3124a00 items=0 ppid=73329 pid=73330 auid=0 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=pts0 ses=7 comm="getent" exe="/usr/bin/getent" subj=unconfined_u:unconfined_r:mssql_conf_t:s0-s0:c0.c1023 key=(null)
type=AVC msg=audit(1755308140.240:12260): avc:  denied  { connectto } for  pid=73330 comm="getent" path="/run/systemd/userdb/io.systemd.DynamicUser" scontext=unconfined_u:unconfined_r:mssql_conf_t:s0-s0:c0.c1023 tcontext=system_u:system_r:kernel_t:s0 tclass=unix_stream_socket permissive=0
----
time->Fri Aug 15 21:35:40 2025
type=PROCTITLE msg=audit(1755308140.248:12261): proctitle=707974686F6E33002F6F70742F6D7373716C2F62696E2F2E2E2F6C69622F6D7373716C2D636F6E662F6D7373716C2D636F6E662E707900736574006E6574776F726B2E746370706F72740031343333
type=SYSCALL msg=audit(1755308140.248:12261): arch=c000003e syscall=42 success=no exit=-13 a0=4 a1=7ffc7c9c84e0 a2=10 a3=7f7f3535c9f1 items=0 ppid=73326 pid=73328 auid=0 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=pts0 ses=7 comm="python3" exe="/usr/bin/python3.9" subj=unconfined_u:unconfined_r:mssql_conf_t:s0-s0:c0.c1023 key=(null)
type=AVC msg=audit(1755308140.248:12261): avc:  denied  { name_connect } for  pid=73328 comm="python3" dest=1433 scontext=unconfined_u:unconfined_r:mssql_conf_t:s0-s0:c0.c1023 tcontext=system_u:object_r:mssql_port_t:s0 tclass=tcp_socket permissive=0
----
time->Fri Aug 15 21:36:22 2025
type=PROCTITLE msg=audit(1755308182.820:12986): proctitle="/opt/mssql/bin/sqlservr"
type=SYSCALL msg=audit(1755308182.820:12986): arch=c000003e syscall=262 success=no exit=-2 a0=ffffff9c a1=7f5de7df54c0 a2=7f5de7c7e0c0 a3=0 items=0 ppid=73636 pid=73685 auid=4294967295 uid=993 gid=993 euid=993 suid=993 fsuid=993 egid=993 sgid=993 fsgid=993 tty=(none) ses=4294967295 comm="sqlservr" exe="/opt/mssql/bin/sqlservr" subj=system_u:object_r:unlabeled_t:s0 key=(null)
type=AVC msg=audit(1755308182.820:12986): avc:  denied  { search } for  pid=73685 comm="sqlservr" name="mssql" dev="xvda1" ino=20971724 scontext=system_u:object_r:unlabeled_t:s0 tcontext=unconfined_u:object_r:var_t:s0 tclass=dir permissive=1 srawcon="system_u:system_r:mssql_server_t:s0"
type=AVC msg=audit(1755308182.820:12986): avc:  denied  { search } for  pid=73685 comm="sqlservr" name="var" dev="xvda1" ino=133 scontext=system_u:object_r:unlabeled_t:s0 tcontext=system_u:object_r:var_t:s0 tclass=dir permissive=1 srawcon="system_u:system_r:mssql_server_t:s0"
type=AVC msg=audit(1755308182.820:12986): avc:  denied  { search } for  pid=73685 comm="sqlservr" name="/" dev="xvda1" ino=128 scontext=system_u:object_r:unlabeled_t:s0 tcontext=system_u:object_r:root_t:s0 tclass=dir permissive=1 srawcon="system_u:system_r:mssql_server_t:s0"
----
time->Fri Aug 15 21:36:24 2025
type=PROCTITLE msg=audit(1755308184.821:13047): proctitle="/opt/mssql/bin/sqlservr"
type=SYSCALL msg=audit(1755308184.821:13047): arch=c000003e syscall=262 success=no exit=-2 a0=ffffff9c a1=7f5de7df54c0 a2=7f5de7c7e0c0 a3=0 items=0 ppid=73636 pid=73685 auid=4294967295 uid=993 gid=993 euid=993 suid=993 fsuid=993 egid=993 sgid=993 fsgid=993 tty=(none) ses=4294967295 comm="sqlservr" exe="/opt/mssql/bin/sqlservr" subj=system_u:object_r:unlabeled_t:s0 key=(null)
type=AVC msg=audit(1755308184.821:13047): avc:  denied  { search } for  pid=73685 comm="sqlservr" name="mssql" dev="xvda1" ino=20971724 scontext=system_u:object_r:unlabeled_t:s0 tcontext=unconfined_u:object_r:var_t:s0 tclass=dir permissive=1 srawcon="system_u:system_r:mssql_server_t:s0"
type=AVC msg=audit(1755308184.821:13047): avc:  denied  { search } for  pid=73685 comm="sqlservr" name="var" dev="xvda1" ino=133 scontext=system_u:object_r:unlabeled_t:s0 tcontext=system_u:object_r:var_t:s0 tclass=dir permissive=1 srawcon="system_u:system_r:mssql_server_t:s0"
----
time->Fri Aug 15 21:36:56 2025
type=AVC msg=audit(1755308216.812:13941): avc:  denied  { signal } for  pid=1 comm="systemd" scontext=system_u:system_r:init_t:s0 tcontext=system_u:object_r:unlabeled_t:s0 tclass=process permissive=1 trawcon="system_u:system_r:mssql_server_t:s0"
----
time->Fri Aug 15 21:36:56 2025
type=AVC msg=audit(1755308216.815:13945): avc:  denied  { read } for  pid=526 comm="systemd-journal" name="status" dev="proc" ino=268773 scontext=system_u:system_r:syslogd_t:s0 tcontext=system_u:object_r:unlabeled_t:s0 tclass=file permissive=1 trawcon="system_u:system_r:mssql_server_t:s0"
----
time->Fri Aug 15 21:36:56 2025
type=AVC msg=audit(1755308216.815:13946): avc:  denied  { open } for  pid=526 comm="systemd-journal" path="/proc/73685/status" dev="proc" ino=268773 scontext=system_u:system_r:syslogd_t:s0 tcontext=system_u:object_r:unlabeled_t:s0 tclass=file permissive=1 trawcon="system_u:system_r:mssql_server_t:s0"
----
time->Fri Aug 15 21:36:56 2025
type=AVC msg=audit(1755308216.815:13947): avc:  denied  { getattr } for  pid=526 comm="systemd-journal" path="/proc/73685/status" dev="proc" ino=268773 scontext=system_u:system_r:syslogd_t:s0 tcontext=system_u:object_r:unlabeled_t:s0 tclass=file permissive=1 trawcon="system_u:system_r:mssql_server_t:s0"
----
time->Fri Aug 15 21:36:56 2025
type=AVC msg=audit(1755308216.815:13948): avc:  denied  { ioctl } for  pid=526 comm="systemd-journal" path="/proc/73685/status" dev="proc" ino=268773 ioctlcmd=0x5401 scontext=system_u:system_r:syslogd_t:s0 tcontext=system_u:object_r:unlabeled_t:s0 tclass=file permissive=1 trawcon="system_u:system_r:mssql_server_t:s0"
----
time->Fri Aug 15 21:36:56 2025
type=AVC msg=audit(1755308216.816:13949): avc:  denied  { read } for  pid=526 comm="systemd-journal" name="exe" dev="proc" ino=271394 scontext=system_u:system_r:syslogd_t:s0 tcontext=system_u:object_r:unlabeled_t:s0 tclass=lnk_file permissive=1 trawcon="system_u:system_r:mssql_server_t:s0"
----
time->Fri Aug 15 21:36:56 2025
type=AVC msg=audit(1755308216.816:13950): avc:  denied  { getattr } for  pid=526 comm="systemd-journal" scontext=system_u:system_r:syslogd_t:s0 tcontext=system_u:object_r:unlabeled_t:s0 tclass=process permissive=1 trawcon="system_u:system_r:mssql_server_t:s0"