----
time->Fri Oct 17 21:22:54 2025
type=PROCTITLE msg=audit(1760750574.673:4416): proctitle=676574656E740067726F7570006D7373716C
type=SYSCALL msg=audit(1760750574.673:4416): arch=c000003e syscall=42 success=no exit=-13 a0=4 a1=7fffb2244a30 a2=2d a3=0 items=0 ppid=32085 pid=32086 auid=0 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=pts0 ses=7 comm="getent" exe="/usr/bin/getent" subj=unconfined_u:unconfined_r:mssql_conf_t:s0-s0:c0.c1023 key=(null)
type=AVC msg=audit(1760750574.673:4416): avc:  denied  { connectto } for  pid=32086 comm="getent" path="/run/systemd/userdb/io.systemd.DynamicUser" scontext=unconfined_u:unconfined_r:mssql_conf_t:s0-s0:c0.c1023 tcontext=system_u:system_r:kernel_t:s0 tclass=unix_stream_socket permissive=0
----
time->Fri Oct 17 21:22:54 2025
type=PROCTITLE msg=audit(1760750574.673:4417): proctitle=676574656E740067726F7570006D7373716C
type=SYSCALL msg=audit(1760750574.673:4417): arch=c000003e syscall=42 success=no exit=-13 a0=4 a1=7fffb2244a20 a2=2d a3=55744e7eca00 items=0 ppid=32085 pid=32086 auid=0 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=pts0 ses=7 comm="getent" exe="/usr/bin/getent" subj=unconfined_u:unconfined_r:mssql_conf_t:s0-s0:c0.c1023 key=(null)
type=AVC msg=audit(1760750574.673:4417): avc:  denied  { connectto } for  pid=32086 comm="getent" path="/run/systemd/userdb/io.systemd.DynamicUser" scontext=unconfined_u:unconfined_r:mssql_conf_t:s0-s0:c0.c1023 tcontext=system_u:system_r:kernel_t:s0 tclass=unix_stream_socket permissive=0
----
time->Fri Oct 17 21:22:54 2025
type=PROCTITLE msg=audit(1760750574.686:4418): proctitle=676574656E740067726F7570006D7373716C
type=SYSCALL msg=audit(1760750574.686:4418): arch=c000003e syscall=42 success=no exit=-13 a0=4 a1=7ffc42e04680 a2=2d a3=0 items=0 ppid=32089 pid=32090 auid=0 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=pts0 ses=7 comm="getent" exe="/usr/bin/getent" subj=unconfined_u:unconfined_r:mssql_conf_t:s0-s0:c0.c1023 key=(null)
type=AVC msg=audit(1760750574.686:4418): avc:  denied  { connectto } for  pid=32090 comm="getent" path="/run/systemd/userdb/io.systemd.DynamicUser" scontext=unconfined_u:unconfined_r:mssql_conf_t:s0-s0:c0.c1023 tcontext=system_u:system_r:kernel_t:s0 tclass=unix_stream_socket permissive=0
----
time->Fri Oct 17 21:22:54 2025
type=PROCTITLE msg=audit(1760750574.686:4419): proctitle=676574656E740067726F7570006D7373716C
type=SYSCALL msg=audit(1760750574.686:4419): arch=c000003e syscall=42 success=no exit=-13 a0=4 a1=7ffc42e04670 a2=2d a3=56490f399a00 items=0 ppid=32089 pid=32090 auid=0 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=pts0 ses=7 comm="getent" exe="/usr/bin/getent" subj=unconfined_u:unconfined_r:mssql_conf_t:s0-s0:c0.c1023 key=(null)
type=AVC msg=audit(1760750574.686:4419): avc:  denied  { connectto } for  pid=32090 comm="getent" path="/run/systemd/userdb/io.systemd.DynamicUser" scontext=unconfined_u:unconfined_r:mssql_conf_t:s0-s0:c0.c1023 tcontext=system_u:system_r:kernel_t:s0 tclass=unix_stream_socket permissive=0
----
time->Fri Oct 17 21:22:54 2025
type=PROCTITLE msg=audit(1760750574.705:4420): proctitle=2F62696E2F7368002D63006966202020686173682064706B673B207468656E20636D643D2264706B67202D2D6C697374223B2020202020202020202020202020202020202020656C69662068617368202072706D3B207468656E20636D643D2272706D202D7161223B20202020202020202020202020202020202020656C7365
type=SYSCALL msg=audit(1760750574.705:4420): arch=c000003e syscall=262 success=no exit=-13 a0=ffffff9c a1=55fdbb40b260 a2=7ffe4633c230 a3=0 items=0 ppid=32084 pid=32095 auid=0 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=pts0 ses=7 comm="sh" exe="/usr/bin/bash" subj=unconfined_u:unconfined_r:mssql_conf_t:s0-s0:c0.c1023 key=(null)
type=AVC msg=audit(1760750574.705:4420): avc:  denied  { getattr } for  pid=32095 comm="sh" path="/usr/bin/rpm" dev="xvda1" ino=535593 scontext=unconfined_u:unconfined_r:mssql_conf_t:s0-s0:c0.c1023 tcontext=system_u:object_r:rpm_exec_t:s0 tclass=file permissive=0
----
time->Fri Oct 17 21:22:54 2025
type=PROCTITLE msg=audit(1760750574.729:4423): proctitle=7375002D70002D63002F6F70742F6D7373716C2F62696E2F73716C7365727672202D2D7365747570202D2D72657365742D73612D70617373776F7264006D7373716C
type=SYSCALL msg=audit(1760750574.729:4423): arch=c000003e syscall=42 success=no exit=-13 a0=4 a1=7fff389384c0 a2=2d a3=556bd8841780 items=0 ppid=32098 pid=32104 auid=0 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=pts0 ses=7 comm="su" exe="/usr/bin/su" subj=unconfined_u:unconfined_r:mssql_conf_t:s0-s0:c0.c1023 key=(null)
type=AVC msg=audit(1760750574.729:4423): avc:  denied  { connectto } for  pid=32104 comm="su" path="/run/systemd/userdb/io.systemd.DynamicUser" scontext=unconfined_u:unconfined_r:mssql_conf_t:s0-s0:c0.c1023 tcontext=system_u:system_r:kernel_t:s0 tclass=unix_stream_socket permissive=0
----
time->Fri Oct 17 21:22:54 2025
type=PROCTITLE msg=audit(1760750574.729:4425): proctitle=7375002D70002D63002F6F70742F6D7373716C2F62696E2F73716C7365727672202D2D7365747570202D2D72657365742D73612D70617373776F7264006D7373716C
type=SYSCALL msg=audit(1760750574.729:4425): arch=c000003e syscall=42 success=no exit=-13 a0=4 a1=7fff38938080 a2=2d a3=556bd8841700 items=0 ppid=32098 pid=32104 auid=0 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=pts0 ses=7 comm="su" exe="/usr/bin/su" subj=unconfined_u:unconfined_r:mssql_conf_t:s0-s0:c0.c1023 key=(null)
type=AVC msg=audit(1760750574.729:4425): avc:  denied  { connectto } for  pid=32104 comm="su" path="/run/systemd/userdb/io.systemd.DynamicUser" scontext=unconfined_u:unconfined_r:mssql_conf_t:s0-s0:c0.c1023 tcontext=system_u:system_r:kernel_t:s0 tclass=unix_stream_socket permissive=0
----
time->Fri Oct 17 21:23:00 2025
type=PROCTITLE msg=audit(1760750580.626:4429): proctitle="(sd-askpwagent)"
type=SYSCALL msg=audit(1760750580.626:4429): arch=c000003e syscall=59 success=no exit=-13 a0=7fc10dec4f78 a1=7ffe8df7fb30 a2=7ffe8df803c8 a3=0 items=0 ppid=32303 pid=32304 auid=0 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=pts0 ses=7 comm="(sd-askpwagent)" exe="/usr/bin/systemctl" subj=unconfined_u:unconfined_r:mssql_conf_t:s0-s0:c0.c1023 key=(null)
type=SELINUX_ERR msg=audit(1760750580.626:4429): op=security_compute_sid invalid_context="unconfined_u:unconfined_r:systemd_passwd_agent_t:s0-s0:c0.c1023" scontext=unconfined_u:unconfined_r:mssql_conf_t:s0-s0:c0.c1023 tcontext=system_u:object_r:systemd_passwd_agent_exec_t:s0 tclass=process
----
time->Fri Oct 17 21:23:24 2025
type=PROCTITLE msg=audit(1760750604.208:4975): proctitle=676574656E740067726F7570006D7373716C
type=SYSCALL msg=audit(1760750604.208:4975): arch=c000003e syscall=42 success=no exit=-13 a0=4 a1=7ffc53a67a80 a2=2d a3=0 items=0 ppid=35392 pid=35393 auid=0 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=pts0 ses=7 comm="getent" exe="/usr/bin/getent" subj=unconfined_u:unconfined_r:mssql_conf_t:s0-s0:c0.c1023 key=(null)
type=AVC msg=audit(1760750604.208:4975): avc:  denied  { connectto } for  pid=35393 comm="getent" path="/run/systemd/userdb/io.systemd.DynamicUser" scontext=unconfined_u:unconfined_r:mssql_conf_t:s0-s0:c0.c1023 tcontext=system_u:system_r:kernel_t:s0 tclass=unix_stream_socket permissive=0
----
time->Fri Oct 17 21:23:24 2025
type=PROCTITLE msg=audit(1760750604.208:4976): proctitle=676574656E740067726F7570006D7373716C
type=SYSCALL msg=audit(1760750604.208:4976): arch=c000003e syscall=42 success=no exit=-13 a0=4 a1=7ffc53a67a70 a2=2d a3=55b3427efa00 items=0 ppid=35392 pid=35393 auid=0 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=pts0 ses=7 comm="getent" exe="/usr/bin/getent" subj=unconfined_u:unconfined_r:mssql_conf_t:s0-s0:c0.c1023 key=(null)
type=AVC msg=audit(1760750604.208:4976): avc:  denied  { connectto } for  pid=35393 comm="getent" path="/run/systemd/userdb/io.systemd.DynamicUser" scontext=unconfined_u:unconfined_r:mssql_conf_t:s0-s0:c0.c1023 tcontext=system_u:system_r:kernel_t:s0 tclass=unix_stream_socket permissive=0
----
time->Fri Oct 17 21:23:24 2025
type=PROCTITLE msg=audit(1760750604.216:4977): proctitle=707974686F6E33002F6F70742F6D7373716C2F62696E2F2E2E2F6C69622F6D7373716C2D636F6E662F6D7373716C2D636F6E662E707900736574006E6574776F726B2E746370706F72740031343333
type=SYSCALL msg=audit(1760750604.216:4977): arch=c000003e syscall=42 success=no exit=-13 a0=4 a1=7fff27ce0f10 a2=10 a3=7f9a5a22d9f1 items=0 ppid=35389 pid=35391 auid=0 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=pts0 ses=7 comm="python3" exe="/usr/bin/python3.9" subj=unconfined_u:unconfined_r:mssql_conf_t:s0-s0:c0.c1023 key=(null)
type=AVC msg=audit(1760750604.216:4977): avc:  denied  { name_connect } for  pid=35391 comm="python3" dest=1433 scontext=unconfined_u:unconfined_r:mssql_conf_t:s0-s0:c0.c1023 tcontext=system_u:object_r:mssql_port_t:s0 tclass=tcp_socket permissive=0
----
time->Fri Oct 17 21:24:07 2025
type=PROCTITLE msg=audit(1760750647.460:5693): proctitle="/opt/mssql/bin/sqlservr"
type=SYSCALL msg=audit(1760750647.460:5693): arch=c000003e syscall=262 success=no exit=-2 a0=ffffff9c a1=7f709dbf53e0 a2=7f709da7e0c0 a3=0 items=0 ppid=35698 pid=35724 auid=4294967295 uid=993 gid=993 euid=993 suid=993 fsuid=993 egid=993 sgid=993 fsgid=993 tty=(none) ses=4294967295 comm="sqlservr" exe="/opt/mssql/bin/sqlservr" subj=system_u:object_r:unlabeled_t:s0 key=(null)
type=AVC msg=audit(1760750647.460:5693): avc:  denied  { search } for  pid=35724 comm="sqlservr" name="mssql" dev="xvda1" ino=146800905 scontext=system_u:object_r:unlabeled_t:s0 tcontext=unconfined_u:object_r:var_t:s0 tclass=dir permissive=1 srawcon="system_u:system_r:mssql_server_t:s0"
type=AVC msg=audit(1760750647.460:5693): avc:  denied  { search } for  pid=35724 comm="sqlservr" name="var" dev="xvda1" ino=133 scontext=system_u:object_r:unlabeled_t:s0 tcontext=system_u:object_r:var_t:s0 tclass=dir permissive=1 srawcon="system_u:system_r:mssql_server_t:s0"
type=AVC msg=audit(1760750647.460:5693): avc:  denied  { search } for  pid=35724 comm="sqlservr" name="/" dev="xvda1" ino=128 scontext=system_u:object_r:unlabeled_t:s0 tcontext=system_u:object_r:root_t:s0 tclass=dir permissive=1 srawcon="system_u:system_r:mssql_server_t:s0"
----
time->Fri Oct 17 21:24:09 2025
type=PROCTITLE msg=audit(1760750649.461:5739): proctitle="/opt/mssql/bin/sqlservr"
type=SYSCALL msg=audit(1760750649.461:5739): arch=c000003e syscall=262 success=no exit=-2 a0=ffffff9c a1=7f709dbf53e0 a2=7f709da7e0c0 a3=0 items=0 ppid=35698 pid=35724 auid=4294967295 uid=993 gid=993 euid=993 suid=993 fsuid=993 egid=993 sgid=993 fsgid=993 tty=(none) ses=4294967295 comm="sqlservr" exe="/opt/mssql/bin/sqlservr" subj=system_u:object_r:unlabeled_t:s0 key=(null)
type=AVC msg=audit(1760750649.461:5739): avc:  denied  { search } for  pid=35724 comm="sqlservr" name="mssql" dev="xvda1" ino=146800905 scontext=system_u:object_r:unlabeled_t:s0 tcontext=unconfined_u:object_r:var_t:s0 tclass=dir permissive=1 srawcon="system_u:system_r:mssql_server_t:s0"
type=AVC msg=audit(1760750649.461:5739): avc:  denied  { search } for  pid=35724 comm="sqlservr" name="var" dev="xvda1" ino=133 scontext=system_u:object_r:unlabeled_t:s0 tcontext=system_u:object_r:var_t:s0 tclass=dir permissive=1 srawcon="system_u:system_r:mssql_server_t:s0"
----
time->Fri Oct 17 21:24:44 2025
type=AVC msg=audit(1760750684.697:6655): avc:  denied  { signal } for  pid=1 comm="systemd" scontext=system_u:system_r:init_t:s0 tcontext=system_u:object_r:unlabeled_t:s0 tclass=process permissive=1 trawcon="system_u:system_r:mssql_server_t:s0"
----
time->Fri Oct 17 21:24:44 2025
type=AVC msg=audit(1760750684.700:6659): avc:  denied  { read } for  pid=526 comm="systemd-journal" name="status" dev="proc" ino=112399 scontext=system_u:system_r:syslogd_t:s0 tcontext=system_u:object_r:unlabeled_t:s0 tclass=file permissive=1 trawcon="system_u:system_r:mssql_server_t:s0"
----
time->Fri Oct 17 21:24:44 2025
type=AVC msg=audit(1760750684.700:6660): avc:  denied  { open } for  pid=526 comm="systemd-journal" path="/proc/35724/status" dev="proc" ino=112399 scontext=system_u:system_r:syslogd_t:s0 tcontext=system_u:object_r:unlabeled_t:s0 tclass=file permissive=1 trawcon="system_u:system_r:mssql_server_t:s0"
----
time->Fri Oct 17 21:24:44 2025
type=AVC msg=audit(1760750684.700:6661): avc:  denied  { getattr } for  pid=526 comm="systemd-journal" path="/proc/35724/status" dev="proc" ino=112399 scontext=system_u:system_r:syslogd_t:s0 tcontext=system_u:object_r:unlabeled_t:s0 tclass=file permissive=1 trawcon="system_u:system_r:mssql_server_t:s0"
----
time->Fri Oct 17 21:24:44 2025
type=AVC msg=audit(1760750684.700:6662): avc:  denied  { ioctl } for  pid=526 comm="systemd-journal" path="/proc/35724/status" dev="proc" ino=112399 ioctlcmd=0x5401 scontext=system_u:system_r:syslogd_t:s0 tcontext=system_u:object_r:unlabeled_t:s0 tclass=file permissive=1 trawcon="system_u:system_r:mssql_server_t:s0"
----
time->Fri Oct 17 21:24:44 2025
type=AVC msg=audit(1760750684.700:6663): avc:  denied  { read } for  pid=526 comm="systemd-journal" name="exe" dev="proc" ino=113879 scontext=system_u:system_r:syslogd_t:s0 tcontext=system_u:object_r:unlabeled_t:s0 tclass=lnk_file permissive=1 trawcon="system_u:system_r:mssql_server_t:s0"
----
time->Fri Oct 17 21:24:44 2025
type=AVC msg=audit(1760750684.700:6664): avc:  denied  { getattr } for  pid=526 comm="systemd-journal" scontext=system_u:system_r:syslogd_t:s0 tcontext=system_u:object_r:unlabeled_t:s0 tclass=process permissive=1 trawcon="system_u:system_r:mssql_server_t:s0"