Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- ~~~~Last little bit from the ausearch for the timestamp~~~~
- ----
- type=AVC msg=audit(05/03/2024 12:37:28.942:481) : avc: denied { create } for pid=24281 comm=swtpm name=15-win11_3-swtpm.sock scontext=unconfined_u:unconfined_r:svirt_t:s0:c749,c1001 tcontext=unconfined_u:object_r:user_tmp_t:s0 tclass=sock_file permissive=0
- ~~~~Journal output~~~~
- svc@alecto:~$ journalctl --since "2024-05-03 12:37:00" --until "2024-05-03 12:38:00"
- May 03 12:37:09 alecto audit: BPF prog-id=113 op=LOAD
- May 03 12:37:09 alecto audit: BPF prog-id=114 op=LOAD
- May 03 12:37:09 alecto audit: BPF prog-id=115 op=LOAD
- May 03 12:37:09 alecto systemd[1]: Starting systemd-hostnamed.service - Hostname Service...
- May 03 12:37:09 alecto systemd[1]: Started systemd-hostnamed.service - Hostname Service.
- May 03 12:37:09 alecto audit[1]: SERVICE_START pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:init_t:s0 msg='unit=sy>
- May 03 12:37:28 alecto tailscaled[2132]: monitor: RTM_NEWROUTE: src=, dst=fd3c:f3cc:e3ad:1::/64, gw=, outif=0, table=254
- May 03 12:37:28 alecto tailscaled[2132]: monitor: RTM_DELROUTE: src=, dst=fd3c:f3cc:e3ad:1::/64, gw=fe80::7b0b:8e75:c3e7:9d85, outif=2,>
- May 03 12:37:28 alecto audit[24281]: AVC avc: denied { create } for pid=24281 comm="swtpm" name="15-win11_3-swtpm.sock" scontext=unc>
- May 03 12:37:28 alecto virtqemud[3948]: operation failed: swtpm died and reported:
- May 03 12:37:39 alecto systemd[1]: systemd-hostnamed.service: Deactivated successfully.
- May 03 12:37:39 alecto audit[1]: SERVICE_STOP pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:init_t:s0 msg='unit=sys>
- May 03 12:37:40 alecto audit: BPF prog-id=115 op=UNLOAD
- May 03 12:37:40 alecto audit: BPF prog-id=114 op=UNLOAD
- May 03 12:37:40 alecto audit: BPF prog-id=113 op=UNLOAD
Advertisement
Add Comment
Please, Sign In to add comment
