|
|
|
/opt/suritest-tmp/bin/suricata --build-info
|
|
This is Suricata version 7.0.0-dev (e586d8526 2021-01-27)
|
|
Features: PCAP_SET_BUFF AF_PACKET HAVE_PACKET_FANOUT LIBCAP_NG LIBNET1.1 HAVE_HTP_URI_NORMALIZE_HOOK PCRE_JIT HAVE_NSS HTTP2_DECOMPRESSION HAVE_LUA HAVE_LUAJIT HAVE_LIBJANSSON TLS TLS_C11 MAGIC RUST
|
|
SIMD support: SSE_4_2 SSE_4_1 SSE_3
|
|
Atomic intrinsics: 1 2 4 8 16 byte(s)
|
|
64-bits, Little-endian architecture
|
|
GCC version 4.2.1 Compatible Clang 7.0.1 (tags/RELEASE_701/final), C version 201112
|
|
compiled with _FORTIFY_SOURCE=0
|
|
L1 cache line size (CLS)=64
|
|
thread local storage method: _Thread_local
|
|
compiled with LibHTP v0.5.36, linked against LibHTP v0.5.36
|
|
|
|
Suricata Configuration:
|
|
AF_PACKET support: yes
|
|
eBPF support: yes
|
|
XDP support: yes
|
|
PF_RING support: no
|
|
NFQueue support: no
|
|
NFLOG support: no
|
|
IPFW support: no
|
|
Netmap support: no
|
|
DAG enabled: no
|
|
Napatech enabled: no
|
|
WinDivert enabled: no
|
|
|
|
Unix socket enabled: yes
|
|
Detection enabled: yes
|
|
|
|
Libmagic support: yes
|
|
libjansson support: yes
|
|
hiredis support: no
|
|
hiredis async with libevent: no
|
|
Prelude support: no
|
|
PCRE jit: yes
|
|
LUA support: yes, through luajit
|
|
libluajit: yes
|
|
GeoIP2 support: yes
|
|
Non-bundled htp: no
|
|
Hyperscan support: yes
|
|
Libnet support: yes
|
|
liblz4 support: yes
|
|
|
|
Rust support: yes
|
|
Rust strict mode: yes
|
|
Rust compiler path: /root/.cargo/bin/rustc
|
|
Rust compiler version: rustc 1.49.0 (e1884a8e3 2020-12-29)
|
|
Cargo path: /root/.cargo/bin/cargo
|
|
Cargo version: cargo 1.49.0 (d00d64df9 2020-12-05)
|
|
Cargo vendor: yes
|
|
|
|
Python support: yes
|
|
Python path: /usr/bin/python3
|
|
Python distutils yes
|
|
Python yaml yes
|
|
Install suricatactl: yes
|
|
Install suricatasc: yes
|
|
Install suricata-update: not bundled
|
|
|
|
Profiling enabled: no
|
|
Profiling locks enabled: no
|
|
|
|
Plugin support (experimental): yes
|
|
|
|
Development settings:
|
|
Coccinelle / spatch: no
|
|
Unit tests enabled: no
|
|
Debug output enabled: no
|
|
Debug validation enabled: no
|
|
|
|
Generic build parameters:
|
|
Installation prefix: /opt/suritest-tmp
|
|
Configuration directory: /opt/suritest-tmp/etc/suricata/
|
|
Log directory: /opt/suritest-tmp/var/log/suricata/
|
|
|
|
--prefix /opt/suritest-tmp
|
|
--sysconfdir /opt/suritest-tmp/etc
|
|
--localstatedir /opt/suritest-tmp/var
|
|
--datarootdir /opt/suritest-tmp/share
|
|
|
|
Host: x86_64-pc-linux-gnu
|
|
Compiler: clang (exec name) / g++ (real)
|
|
GCC Protect enabled: no
|
|
GCC march native enabled: yes
|
|
GCC Profile enabled: no
|
|
Position Independent Executable enabled: no
|
|
CFLAGS -ggdb3 -O0 -std=c11 -march=native -I${srcdir}/../rust/gen -I${srcdir}/../rust/dist
|
|
PCAP_CFLAGS -I/usr/include
|
|
SECCFLAGS
|
|
|
|
|
|
|
|
|
|
|
|
[New LWP 20780]
|
|
[Thread debugging using libthread_db enabled]
|
|
Using host libthread_db library "/lib/x86_64-linux-gnu/libthread_db.so.1".
|
|
Core was generated by `/opt/suritest-tmp/bin/suricata --af-packet -c /etc/suricata/suricata-pevma-test'.
|
|
Program terminated with signal SIGABRT, Aborted.
|
|
#0 __GI_raise (sig=sig@entry=6) at ../sysdeps/unix/sysv/linux/raise.c:50
|
|
50 ../sysdeps/unix/sysv/linux/raise.c: No such file or directory.
|
|
[Current thread is 1 (Thread 0x7f33b18a5700 (LWP 20723))]
|
|
(gdb) thread apply all bt
|
|
|
|
Thread 84 (Thread 0x7f3003fff700 (LWP 20780)):
|
|
#0 0x00007f34e35e8819 in __GI___poll (fds=0x7f3003ffea00, nfds=1, timeout=100) at ../sysdeps/unix/sysv/linux/poll.c:29
|
|
#1 0x000000000064a19d in ReceiveAFPLoop (tv=0x7f340a391ea0, data=0x7f2ffbfff600, slot=0x7f3406ffa670) at source-af-packet.c:1544
|
|
#2 0x0000000000686887 in TmThreadsSlotPktAcqLoop (td=0x7f340a391ea0) at tm-threads.c:312
|
|
#3 0x00007f34e4448fa3 in start_thread (arg=<optimized out>) at pthread_create.c:486
|
|
#4 0x00007f34e35f34cf in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:95
|
|
|
|
Thread 83 (Thread 0x7f33e1d6f700 (LWP 20718)):
|
|
#0 0x00007f34e35e8819 in __GI___poll (fds=0x7f33e1d6ea00, nfds=1, timeout=100) at ../sysdeps/unix/sysv/linux/poll.c:29
|
|
#1 0x000000000064a19d in ReceiveAFPLoop (tv=0x7f33ecf43b00, data=0x7f33d3fff600, slot=0x7f33ed639300) at source-af-packet.c:1544
|
|
#2 0x0000000000686887 in TmThreadsSlotPktAcqLoop (td=0x7f33ecf43b00) at tm-threads.c:312
|
|
#3 0x00007f34e4448fa3 in start_thread (arg=<optimized out>) at pthread_create.c:486
|
|
#4 0x00007f34e35f34cf in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:95
|
|
|
|
Thread 82 (Thread 0x7f335d388700 (LWP 20728)):
|
|
#0 malloc_consolidate (av=av@entry=0x7f3328000020) at malloc.c:4450
|
|
#1 0x00007f34e357ca58 in _int_malloc (av=av@entry=0x7f3328000020, bytes=bytes@entry=4096) at malloc.c:3695
|
|
#2 0x00007f34e357e56a in __GI___libc_malloc (bytes=4096) at malloc.c:3057
|
|
#3 0x00000000007dd224 in alloc::alloc::alloc (layout=...) at /rustc/e1884a8e3c3e813aada8254edfa120e85bf5ffca/library/alloc/src/alloc.rs:84
|
|
#4 alloc::alloc::Global::alloc_impl (self=<optimized out>, layout=..., zeroed=false) at /rustc/e1884a8e3c3e813aada8254edfa120e85bf5ffca/library/alloc/src/alloc.rs:164
|
|
#5 <alloc::alloc::Global as core::alloc::AllocRef>::alloc (self=<optimized out>, layout=...) at /rustc/e1884a8e3c3e813aada8254edfa120e85bf5ffca/library/alloc/src/alloc.rs:224
|
|
#6 alloc::raw_vec::RawVec<T,A>::allocate_in (capacity=4096, init=alloc::raw_vec::AllocInit::Uninitialized, alloc=...) at /rustc/e1884a8e3c3e813aada8254edfa120e85bf5ffca/library/alloc/src/raw_vec.rs:189
|
|
#7 alloc::raw_vec::RawVec<T,A>::with_capacity_in (capacity=4096, alloc=...) at /rustc/e1884a8e3c3e813aada8254edfa120e85bf5ffca/library/alloc/src/raw_vec.rs:130
|
|
#8 alloc::raw_vec::RawVec<T>::with_capacity (capacity=4096) at /rustc/e1884a8e3c3e813aada8254edfa120e85bf5ffca/library/alloc/src/raw_vec.rs:93
|
|
#9 alloc::vec::Vec<T>::with_capacity (capacity=4096) at /rustc/e1884a8e3c3e813aada8254edfa120e85bf5ffca/library/alloc/src/vec.rs:363
|
|
#10 alloc::string::String::with_capacity (capacity=4096) at /rustc/e1884a8e3c3e813aada8254edfa120e85bf5ffca/library/alloc/src/string.rs:408
|
|
#11 suricata::jsonbuilder::JsonBuilder::new_object_with_capacity (capacity=4096) at src/jsonbuilder.rs:113
|
|
#12 suricata::jsonbuilder::JsonBuilder::new_object () at src/jsonbuilder.rs:109
|
|
#13 suricata::jsonbuilder::jb_new_object () at src/jsonbuilder.rs:582
|
|
#14 0x0000000000622f31 in CreateEveHeaderFromFlow (f=0x7f2339b182a0) at output-json-flow.c:73
|
|
#15 0x0000000000622c82 in JsonFlowLogger (tv=0x7f3418953940, thread_data=0x7f331435df20, f=0x7f2339b182a0) at output-json-flow.c:336
|
|
#16 0x000000000060c04d in OutputFlowLog (tv=0x7f3418953940, thread_data=0x7f331435df00, f=0x7f2339b182a0) at output-flow.c:115
|
|
#17 0x00000000005f1de5 in CheckWorkQueue (tv=0x7f3418953940, fw=0x7f331ee33b00, detect_thread=0x7f3323dfe400, counters=0x7f335d387718, fq=0x7f331ee33b68) at flow-worker.c:199
|
|
#18 0x00000000005f1c83 in FlowWorkerProcessLocalFlows (tv=0x7f3418953940, fw=0x7f331ee33b00, p=0x7f331eddde30, detect_thread=0x7f3323dfe400) at flow-worker.c:464
|
|
#19 0x00000000005f1659 in FlowWorker (tv=0x7f3418953940, p=0x7f331eddde30, data=0x7f331ee33b00) at flow-worker.c:573
|
|
#20 0x00000000006814b4 in TmThreadsSlotVarRun (tv=0x7f3418953940, p=0x7f331eddde30, slot=0x7f34073cfd50) at tm-threads.c:117
|
|
#21 0x000000000064e0ce in TmThreadsSlotProcessPkt (tv=0x7f3418953940, s=0x7f34073cfd50, p=0x7f331eddde30) at ./tm-threads.h:192
|
|
#22 0x000000000064d02e in AFPParsePacketV3 (ptv=0x7f332bfff600, pbd=0x7f2e51800000, ppd=0x7f2e5183dda8) at source-af-packet.c:1113
|
|
#23 0x000000000064cbb9 in AFPWalkBlock (ptv=0x7f332bfff600, pbd=0x7f2e51800000) at source-af-packet.c:1128
|
|
#24 0x000000000064afb7 in AFPReadFromRingV3 (ptv=0x7f332bfff600) at source-af-packet.c:1178
|
|
#25 0x000000000064a337 in ReceiveAFPLoop (tv=0x7f3418953940, data=0x7f332bfff600, slot=0x7f34035cb6b0) at source-af-packet.c:1571
|
|
#26 0x0000000000686887 in TmThreadsSlotPktAcqLoop (td=0x7f3418953940) at tm-threads.c:312
|
|
#27 0x00007f34e4448fa3 in start_thread (arg=<optimized out>) at pthread_create.c:486
|
|
#28 0x00007f34e35f34cf in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:95
|
|
|
|
Thread 81 (Thread 0x7f30032e1700 (LWP 20781)):
|
|
#0 0x00000000005e4aa1 in FlowHandlePacketUpdate (f=0x7f21e89fbc70, p=0x7f2fe2ddde30, tv=0x7f34166717a0, dtv=0x7f2fe2e33da0) at flow.c:401
|
|
#1 0x00000000005f1807 in FlowUpdate (tv=0x7f34166717a0, fw=0x7f2fe2e33b00, p=0x7f2fe2ddde30) at flow-worker.c:218
|
|
#2 0x00000000005f13d7 in FlowWorker (tv=0x7f34166717a0, p=0x7f2fe2ddde30, data=0x7f2fe2e33b00) at flow-worker.c:492
|
|
#3 0x00000000006814b4 in TmThreadsSlotVarRun (tv=0x7f34166717a0, p=0x7f2fe2ddde30, slot=0x7f340a0dd9f0) at tm-threads.c:117
|
|
#4 0x000000000064e0ce in TmThreadsSlotProcessPkt (tv=0x7f34166717a0, s=0x7f340a0dd9f0, p=0x7f2fe2ddde30) at ./tm-threads.h:192
|
|
#5 0x000000000064d02e in AFPParsePacketV3 (ptv=0x7f2feffff600, pbd=0x7f2a86100000, ppd=0x7f2a8617fec8) at source-af-packet.c:1113
|
|
#6 0x000000000064cbb9 in AFPWalkBlock (ptv=0x7f2feffff600, pbd=0x7f2a86100000) at source-af-packet.c:1128
|
|
#7 0x000000000064afb7 in AFPReadFromRingV3 (ptv=0x7f2feffff600) at source-af-packet.c:1178
|
|
#8 0x000000000064a337 in ReceiveAFPLoop (tv=0x7f34166717a0, data=0x7f2feffff600, slot=0x7f3415639450) at source-af-packet.c:1571
|
|
--Type <RET> for more, q to quit, c to continue without paging--
|
|
#9 0x0000000000686887 in TmThreadsSlotPktAcqLoop (td=0x7f34166717a0) at tm-threads.c:312
|
|
#10 0x00007f34e4448fa3 in start_thread (arg=<optimized out>) at pthread_create.c:486
|
|
#11 0x00007f34e35f34cf in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:95
|
|
|
|
Thread 80 (Thread 0x7f31db2e1700 (LWP 20753)):
|
|
#0 0x00007f34e35e8819 in __GI___poll (fds=0x7f31db2e0a00, nfds=1, timeout=100) at ../sysdeps/unix/sysv/linux/poll.c:29
|
|
#1 0x000000000064a19d in ReceiveAFPLoop (tv=0x7f33ff657300, data=0x7f31c7fff600, slot=0x7f3419d98020) at source-af-packet.c:1544
|
|
#2 0x0000000000686887 in TmThreadsSlotPktAcqLoop (td=0x7f33ff657300) at tm-threads.c:312
|
|
#3 0x00007f34e4448fa3 in start_thread (arg=<optimized out>) at pthread_create.c:486
|
|
#4 0x00007f34e35f34cf in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:95
|
|
|
|
Thread 79 (Thread 0x7f30ecb87700 (LWP 20770)):
|
|
#0 0x00000000005760f1 in IPOnlyMatchPacket (tv=0x7f3417719590, de_ctx=0x7f341a146110, det_ctx=0x7f30a3dfe400, io_ctx=0x7f341a1471a8, io_tctx=0x7f30a3dfe530, p=0x7f309eddde30) at detect-engine-iponly.c:1036
|
|
#1 0x0000000000545484 in DetectRunInspectIPOnly (tv=0x7f3417719590, de_ctx=0x7f341a146110, det_ctx=0x7f30a3dfe400, pflow=0x7f218e7e0e20, p=0x7f309eddde30) at detect.c:541
|
|
#2 0x0000000000544f13 in DetectRun (th_v=0x7f3417719590, de_ctx=0x7f341a146110, det_ctx=0x7f30a3dfe400, p=0x7f309eddde30) at detect.c:114
|
|
#3 0x0000000000544c2a in DetectFlow (tv=0x7f3417719590, de_ctx=0x7f341a146110, det_ctx=0x7f30a3dfe400, p=0x7f309eddde30) at detect.c:1591
|
|
#4 0x0000000000544b04 in Detect (tv=0x7f3417719590, p=0x7f309eddde30, data=0x7f30a3dfe400) at detect.c:1665
|
|
#5 0x00000000005f157e in FlowWorker (tv=0x7f3417719590, p=0x7f309eddde30, data=0x7f309ee33b00) at flow-worker.c:540
|
|
#6 0x00000000006814b4 in TmThreadsSlotVarRun (tv=0x7f3417719590, p=0x7f309eddde30, slot=0x7f340f937ff0) at tm-threads.c:117
|
|
#7 0x000000000064e0ce in TmThreadsSlotProcessPkt (tv=0x7f3417719590, s=0x7f340f937ff0, p=0x7f309eddde30) at ./tm-threads.h:192
|
|
#8 0x000000000064d02e in AFPParsePacketV3 (ptv=0x7f30abfff600, pbd=0x7f2b5f000000, ppd=0x7f2b5f041b80) at source-af-packet.c:1113
|
|
#9 0x000000000064cbb9 in AFPWalkBlock (ptv=0x7f30abfff600, pbd=0x7f2b5f000000) at source-af-packet.c:1128
|
|
#10 0x000000000064afb7 in AFPReadFromRingV3 (ptv=0x7f30abfff600) at source-af-packet.c:1178
|
|
#11 0x000000000064a337 in ReceiveAFPLoop (tv=0x7f3417719590, data=0x7f30abfff600, slot=0x7f340e027000) at source-af-packet.c:1571
|
|
#12 0x0000000000686887 in TmThreadsSlotPktAcqLoop (td=0x7f3417719590) at tm-threads.c:312
|
|
#13 0x00007f34e4448fa3 in start_thread (arg=<optimized out>) at pthread_create.c:486
|
|
#14 0x00007f34e35f34cf in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:95
|
|
|
|
Thread 78 (Thread 0x7f3000b87700 (LWP 20784)):
|
|
#0 0x00007f34e35e8819 in __GI___poll (fds=0x7f3000b86a00, nfds=1, timeout=100) at ../sysdeps/unix/sysv/linux/poll.c:29
|
|
#1 0x000000000064a19d in ReceiveAFPLoop (tv=0x7f34149467f0, data=0x7f2fbffff600, slot=0x7f33fea45710) at source-af-packet.c:1544
|
|
#2 0x0000000000686887 in TmThreadsSlotPktAcqLoop (td=0x7f34149467f0) at tm-threads.c:312
|
|
#3 0x00007f34e4448fa3 in start_thread (arg=<optimized out>) at pthread_create.c:486
|
|
#4 0x00007f34e35f34cf in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:95
|
|
|
|
Thread 77 (Thread 0x7f31860a6700 (LWP 20759)):
|
|
#0 0x0000000000581e9a in DetectPortMatch (dp=0x7f33fb7d4040, port=17675) at detect-engine-port.c:635
|
|
#1 0x0000000000581e3b in DetectPortLookupGroup (dp=0x7f33fb809350, port=17675) at detect-engine-port.c:676
|
|
#2 0x00000000005445bf in SigMatchSignaturesGetSgh (de_ctx=0x7f341a146110, p=0x7f3156ddde30) at detect.c:209
|
|
#3 0x0000000000545727 in DetectRunGetRuleGroup (de_ctx=0x7f341a146110, p=0x7f3156ddde30, pflow=0x7f2184f0f120, scratch=0x7f31860a5660) at detect.c:499
|
|
#4 0x0000000000544f28 in DetectRun (th_v=0x7f3415a67c20, de_ctx=0x7f341a146110, det_ctx=0x7f315bdfe400, p=0x7f3156ddde30) at detect.c:117
|
|
#5 0x0000000000544c2a in DetectFlow (tv=0x7f3415a67c20, de_ctx=0x7f341a146110, det_ctx=0x7f315bdfe400, p=0x7f3156ddde30) at detect.c:1591
|
|
#6 0x0000000000544b04 in Detect (tv=0x7f3415a67c20, p=0x7f3156ddde30, data=0x7f315bdfe400) at detect.c:1665
|
|
#7 0x00000000005f157e in FlowWorker (tv=0x7f3415a67c20, p=0x7f3156ddde30, data=0x7f3156e33b00) at flow-worker.c:540
|
|
#8 0x00000000006814b4 in TmThreadsSlotVarRun (tv=0x7f3415a67c20, p=0x7f3156ddde30, slot=0x7f34178ac250) at tm-threads.c:117
|
|
#9 0x000000000064e0ce in TmThreadsSlotProcessPkt (tv=0x7f3415a67c20, s=0x7f34178ac250, p=0x7f3156ddde30) at ./tm-threads.h:192
|
|
#10 0x000000000064d02e in AFPParsePacketV3 (ptv=0x7f3163fff600, pbd=0x7f2c37f00000, ppd=0x7f2c37fab5d0) at source-af-packet.c:1113
|
|
#11 0x000000000064cbb9 in AFPWalkBlock (ptv=0x7f3163fff600, pbd=0x7f2c37f00000) at source-af-packet.c:1128
|
|
#12 0x000000000064afb7 in AFPReadFromRingV3 (ptv=0x7f3163fff600) at source-af-packet.c:1178
|
|
#13 0x000000000064a337 in ReceiveAFPLoop (tv=0x7f3415a67c20, data=0x7f3163fff600, slot=0x7f340f978840) at source-af-packet.c:1571
|
|
#14 0x0000000000686887 in TmThreadsSlotPktAcqLoop (td=0x7f3415a67c20) at tm-threads.c:312
|
|
#15 0x00007f34e4448fa3 in start_thread (arg=<optimized out>) at pthread_create.c:486
|
|
#16 0x00007f34e35f34cf in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:95
|
|
|
|
Thread 76 (Thread 0x7f3055dc2700 (LWP 20778)):
|
|
#0 suricata::dcerpc::dcerpc_udp::DCERPCUDPState::get_tx (self=0x7f300d09b300, tx_id=3011) at src/dcerpc/dcerpc_udp.rs:109
|
|
--Type <RET> for more, q to quit, c to continue without paging--
|
|
#1 suricata::dcerpc::dcerpc_udp::rs_dcerpc_udp_get_tx (state=0x7f300d09b300, tx_id=3011) at src/dcerpc/dcerpc_udp.rs:276
|
|
#2 0x00000000004d034d in RustDCERPCUDPGetTx (state=0x7f300d09b300, tx_id=3011) at app-layer-dcerpc-udp.c:87
|
|
#3 0x0000000000506fd6 in AppLayerParserGetTx (ipproto=17 '\021', alproto=9, alstate=0x7f300d09b300, tx_id=3011) at app-layer-parser.c:1077
|
|
#4 0x0000000000505db0 in AppLayerDefaultGetTxIterator (ipproto=17 '\021', alproto=9, alstate=0x7f300d09b300, min_tx_id=3011, max_tx_id=3398, state=0x7f3055dc16e8) at app-layer-parser.c:657
|
|
#5 0x0000000000506a27 in AppLayerParserTransactionsCleanup (f=0x7f27c56e29a0) at app-layer-parser.c:921
|
|
#6 0x00000000005f15fe in FlowWorker (tv=0x7f3407762950, p=0x7f3016ddde30, data=0x7f3016e33b00) at flow-worker.c:562
|
|
#7 0x00000000006814b4 in TmThreadsSlotVarRun (tv=0x7f3407762950, p=0x7f3016ddde30, slot=0x7f340eb40440) at tm-threads.c:117
|
|
#8 0x000000000064e0ce in TmThreadsSlotProcessPkt (tv=0x7f3407762950, s=0x7f340eb40440, p=0x7f3016ddde30) at ./tm-threads.h:192
|
|
#9 0x000000000064d02e in AFPParsePacketV3 (ptv=0x7f3023fff600, pbd=0x7f2ac2700000, ppd=0x7f2ac2704c18) at source-af-packet.c:1113
|
|
#10 0x000000000064cbb9 in AFPWalkBlock (ptv=0x7f3023fff600, pbd=0x7f2ac2700000) at source-af-packet.c:1128
|
|
#11 0x000000000064afb7 in AFPReadFromRingV3 (ptv=0x7f3023fff600) at source-af-packet.c:1178
|
|
#12 0x000000000064a337 in ReceiveAFPLoop (tv=0x7f3407762950, data=0x7f3023fff600, slot=0x7f33fcf15aa0) at source-af-packet.c:1571
|
|
#13 0x0000000000686887 in TmThreadsSlotPktAcqLoop (td=0x7f3407762950) at tm-threads.c:312
|
|
#14 0x00007f34e4448fa3 in start_thread (arg=<optimized out>) at pthread_create.c:486
|
|
#15 0x00007f34e35f34cf in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:95
|
|
|
|
Thread 75 (Thread 0x7f2f4f7fe700 (LWP 20800)):
|
|
#0 0x00007f34e35c0720 in __GI___nanosleep (requested_time=requested_time@entry=0x7f2f4f7fd9a0, remaining=remaining@entry=0x0) at ../sysdeps/unix/sysv/linux/nanosleep.c:28
|
|
#1 0x00007f34e35eb874 in usleep (useconds=<optimized out>) at ../sysdeps/posix/usleep.c:32
|
|
#2 0x00000000005ec0c4 in FlowRecycler (th_v=0x7f34179644d0, thread_data=0x7f2f3c000de0) at flow-manager.c:1210
|
|
#3 0x0000000000686c56 in TmThreadsManagement (td=0x7f34179644d0) at tm-threads.c:541
|
|
#4 0x00007f34e4448fa3 in start_thread (arg=<optimized out>) at pthread_create.c:486
|
|
#5 0x00007f34e35f34cf in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:95
|
|
|
|
Thread 74 (Thread 0x7f2f4ffff700 (LWP 20799)):
|
|
#0 0x00007f34e35c0720 in __GI___nanosleep (requested_time=requested_time@entry=0x7f2f4fffe9a0, remaining=remaining@entry=0x0) at ../sysdeps/unix/sysv/linux/nanosleep.c:28
|
|
#1 0x00007f34e35eb874 in usleep (useconds=<optimized out>) at ../sysdeps/posix/usleep.c:32
|
|
#2 0x00000000005ec0c4 in FlowRecycler (th_v=0x7f3400e95e80, thread_data=0x7f2f44000de0) at flow-manager.c:1210
|
|
#3 0x0000000000686c56 in TmThreadsManagement (td=0x7f3400e95e80) at tm-threads.c:541
|
|
#4 0x00007f34e4448fa3 in start_thread (arg=<optimized out>) at pthread_create.c:486
|
|
#5 0x00007f34e35f34cf in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:95
|
|
|
|
Thread 73 (Thread 0x7f2f70ff9700 (LWP 20798)):
|
|
#0 0x00007f34e35c0720 in __GI___nanosleep (requested_time=requested_time@entry=0x7f2f70ff89a0, remaining=remaining@entry=0x0) at ../sysdeps/unix/sysv/linux/nanosleep.c:28
|
|
#1 0x00007f34e35eb874 in usleep (useconds=<optimized out>) at ../sysdeps/posix/usleep.c:32
|
|
#2 0x00000000005ec0c4 in FlowRecycler (th_v=0x7f34191c7a40, thread_data=0x7f2f48000de0) at flow-manager.c:1210
|
|
#3 0x0000000000686c56 in TmThreadsManagement (td=0x7f34191c7a40) at tm-threads.c:541
|
|
#4 0x00007f34e4448fa3 in start_thread (arg=<optimized out>) at pthread_create.c:486
|
|
#5 0x00007f34e35f34cf in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:95
|
|
|
|
Thread 72 (Thread 0x7f2f717fa700 (LWP 20797)):
|
|
#0 0x00007f34e35c0720 in __GI___nanosleep (requested_time=requested_time@entry=0x7f2f717f99a0, remaining=remaining@entry=0x0) at ../sysdeps/unix/sysv/linux/nanosleep.c:28
|
|
#1 0x00007f34e35eb874 in usleep (useconds=<optimized out>) at ../sysdeps/posix/usleep.c:32
|
|
#2 0x00000000005ec0c4 in FlowRecycler (th_v=0x7f34191c1160, thread_data=0x7f2f54000de0) at flow-manager.c:1210
|
|
#3 0x0000000000686c56 in TmThreadsManagement (td=0x7f34191c1160) at tm-threads.c:541
|
|
#4 0x00007f34e4448fa3 in start_thread (arg=<optimized out>) at pthread_create.c:486
|
|
#5 0x00007f34e35f34cf in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:95
|
|
|
|
Thread 71 (Thread 0x7f30ef2e1700 (LWP 20767)):
|
|
#0 0x00007f34e35e8819 in __GI___poll (fds=0x7f30ef2e0a00, nfds=1, timeout=100) at ../sysdeps/unix/sysv/linux/poll.c:29
|
|
#1 0x000000000064a19d in ReceiveAFPLoop (tv=0x7f340774c620, data=0x7f30dbfff600, slot=0x7f3413a54820) at source-af-packet.c:1544
|
|
#2 0x0000000000686887 in TmThreadsSlotPktAcqLoop (td=0x7f340774c620) at tm-threads.c:312
|
|
#3 0x00007f34e4448fa3 in start_thread (arg=<optimized out>) at pthread_create.c:486
|
|
#4 0x00007f34e35f34cf in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:95
|
|
|
|
Thread 70 (Thread 0x7f2f727fc700 (LWP 20795)):
|
|
--Type <RET> for more, q to quit, c to continue without paging--
|
|
#0 0x00007f34e35c0720 in __GI___nanosleep (requested_time=requested_time@entry=0x7f2f727fb9a0, remaining=remaining@entry=0x0) at ../sysdeps/unix/sysv/linux/nanosleep.c:28
|
|
#1 0x00007f34e35eb874 in usleep (useconds=<optimized out>) at ../sysdeps/posix/usleep.c:32
|
|
#2 0x00000000005ec0c4 in FlowRecycler (th_v=0x7f3401ac8940, thread_data=0x7f2f5c000de0) at flow-manager.c:1210
|
|
#3 0x0000000000686c56 in TmThreadsManagement (td=0x7f3401ac8940) at tm-threads.c:541
|
|
#4 0x00007f34e4448fa3 in start_thread (arg=<optimized out>) at pthread_create.c:486
|
|
#5 0x00007f34e35f34cf in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:95
|
|
|
|
Thread 69 (Thread 0x7f2f71ffb700 (LWP 20796)):
|
|
#0 0x00007f34e35c0720 in __GI___nanosleep (requested_time=requested_time@entry=0x7f2f71ffa9a0, remaining=remaining@entry=0x0) at ../sysdeps/unix/sysv/linux/nanosleep.c:28
|
|
#1 0x00007f34e35eb874 in usleep (useconds=<optimized out>) at ../sysdeps/posix/usleep.c:32
|
|
#2 0x00000000005ec0c4 in FlowRecycler (th_v=0x7f34191b9600, thread_data=0x7f2f50000de0) at flow-manager.c:1210
|
|
#3 0x0000000000686c56 in TmThreadsManagement (td=0x7f34191b9600) at tm-threads.c:541
|
|
#4 0x00007f34e4448fa3 in start_thread (arg=<optimized out>) at pthread_create.c:486
|
|
#5 0x00007f34e35f34cf in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:95
|
|
|
|
Thread 68 (Thread 0x7f2f72ffd700 (LWP 20794)):
|
|
#0 0x00007f34e35c0720 in __GI___nanosleep (requested_time=requested_time@entry=0x7f2f72ffc9a0, remaining=remaining@entry=0x0) at ../sysdeps/unix/sysv/linux/nanosleep.c:28
|
|
#1 0x00007f34e35eb874 in usleep (useconds=<optimized out>) at ../sysdeps/posix/usleep.c:32
|
|
#2 0x00000000005ec0c4 in FlowRecycler (th_v=0x7f34191b5bc0, thread_data=0x7f2f58000de0) at flow-manager.c:1210
|
|
#3 0x0000000000686c56 in TmThreadsManagement (td=0x7f34191b5bc0) at tm-threads.c:541
|
|
#4 0x00007f34e4448fa3 in start_thread (arg=<optimized out>) at pthread_create.c:486
|
|
#5 0x00007f34e35f34cf in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:95
|
|
|
|
Thread 67 (Thread 0x7f3187ae2700 (LWP 20757)):
|
|
#0 <core::slice::iter::IterMut<T> as core::iter::traits::iterator::Iterator>::next (self=<optimized out>) at /rustc/e1884a8e3c3e813aada8254edfa120e85bf5ffca/library/core/src/slice/iter/macros.rs:146
|
|
#1 suricata::dcerpc::dcerpc_udp::DCERPCUDPState::get_tx (self=0x7f316c3a9b70, tx_id=3106) at src/dcerpc/dcerpc_udp.rs:109
|
|
#2 suricata::dcerpc::dcerpc_udp::rs_dcerpc_udp_get_tx (state=0x7f316c3a9b70, tx_id=3106) at src/dcerpc/dcerpc_udp.rs:276
|
|
#3 0x00000000004d034d in RustDCERPCUDPGetTx (state=0x7f316c3a9b70, tx_id=3106) at app-layer-dcerpc-udp.c:87
|
|
#4 0x0000000000506fd6 in AppLayerParserGetTx (ipproto=17 '\021', alproto=9, alstate=0x7f316c3a9b70, tx_id=3106) at app-layer-parser.c:1077
|
|
#5 0x0000000000505db0 in AppLayerDefaultGetTxIterator (ipproto=17 '\021', alproto=9, alstate=0x7f316c3a9b70, min_tx_id=3106, max_tx_id=3174, state=0x7f3187ae16e8) at app-layer-parser.c:657
|
|
#6 0x0000000000506a27 in AppLayerParserTransactionsCleanup (f=0x7f341b57b010) at app-layer-parser.c:921
|
|
#7 0x00000000005f15fe in FlowWorker (tv=0x7f3409b2c080, p=0x7f3176ddde30, data=0x7f3176e33b00) at flow-worker.c:562
|
|
#8 0x00000000006814b4 in TmThreadsSlotVarRun (tv=0x7f3409b2c080, p=0x7f3176ddde30, slot=0x7f340e968f00) at tm-threads.c:117
|
|
#9 0x000000000064e0ce in TmThreadsSlotProcessPkt (tv=0x7f3409b2c080, s=0x7f340e968f00, p=0x7f3176ddde30) at ./tm-threads.h:192
|
|
#10 0x000000000064d02e in AFPParsePacketV3 (ptv=0x7f317ffff600, pbd=0x7f2c60600000, ppd=0x7f2c60666910) at source-af-packet.c:1113
|
|
#11 0x000000000064cbb9 in AFPWalkBlock (ptv=0x7f317ffff600, pbd=0x7f2c60600000) at source-af-packet.c:1128
|
|
#12 0x000000000064afb7 in AFPReadFromRingV3 (ptv=0x7f317ffff600) at source-af-packet.c:1178
|
|
#13 0x000000000064a337 in ReceiveAFPLoop (tv=0x7f3409b2c080, data=0x7f317ffff600, slot=0x7f3411a35df0) at source-af-packet.c:1571
|
|
#14 0x0000000000686887 in TmThreadsSlotPktAcqLoop (td=0x7f3409b2c080) at tm-threads.c:312
|
|
#15 0x00007f34e4448fa3 in start_thread (arg=<optimized out>) at pthread_create.c:486
|
|
#16 0x00007f34e35f34cf in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:95
|
|
|
|
Thread 66 (Thread 0x7f2f737fe700 (LWP 20793)):
|
|
#0 0x00007f34e35c0720 in __GI___nanosleep (requested_time=requested_time@entry=0x7f2f737fd9a0, remaining=remaining@entry=0x0) at ../sysdeps/unix/sysv/linux/nanosleep.c:28
|
|
#1 0x00007f34e35eb874 in usleep (useconds=<optimized out>) at ../sysdeps/posix/usleep.c:32
|
|
#2 0x00000000005ec0c4 in FlowRecycler (th_v=0x7f3418075b50, thread_data=0x7f2f64000de0) at flow-manager.c:1210
|
|
#3 0x0000000000686c56 in TmThreadsManagement (td=0x7f3418075b50) at tm-threads.c:541
|
|
#4 0x00007f34e4448fa3 in start_thread (arg=<optimized out>) at pthread_create.c:486
|
|
#5 0x00007f34e35f34cf in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:95
|
|
|
|
Thread 65 (Thread 0x7f32c7fff700 (LWP 20734)):
|
|
#0 0x000000000067f6dc in PacketPoolGetPacket () at tmqh-packetpool.c:197
|
|
#1 0x00000000005230fd in PacketGetFromQueueOrAlloc () at decode.c:185
|
|
#2 0x000000000064cc89 in AFPParsePacketV3 (ptv=0x7f32bffff600, pbd=0x7f2dda800000, ppd=0x7f2dda82ec20) at source-af-packet.c:1038
|
|
#3 0x000000000064cbb9 in AFPWalkBlock (ptv=0x7f32bffff600, pbd=0x7f2dda800000) at source-af-packet.c:1128
|
|
#4 0x000000000064afb7 in AFPReadFromRingV3 (ptv=0x7f32bffff600) at source-af-packet.c:1178
|
|
--Type <RET> for more, q to quit, c to continue without paging--
|
|
#5 0x000000000064a337 in ReceiveAFPLoop (tv=0x7f34023eda40, data=0x7f32bffff600, slot=0x7f34133f1090) at source-af-packet.c:1571
|
|
#6 0x0000000000686887 in TmThreadsSlotPktAcqLoop (td=0x7f34023eda40) at tm-threads.c:312
|
|
#7 0x00007f34e4448fa3 in start_thread (arg=<optimized out>) at pthread_create.c:486
|
|
#8 0x00007f34e35f34cf in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:95
|
|
|
|
Thread 64 (Thread 0x7f30ed8a5700 (LWP 20769)):
|
|
#0 0x00007f34e35e8819 in __GI___poll (fds=0x7f30ed8a4a00, nfds=1, timeout=100) at ../sysdeps/unix/sysv/linux/poll.c:29
|
|
#1 0x000000000064a19d in ReceiveAFPLoop (tv=0x7f34152b6410, data=0x7f30bbfff600, slot=0x7f33fdd56d40) at source-af-packet.c:1544
|
|
#2 0x0000000000686887 in TmThreadsSlotPktAcqLoop (td=0x7f34152b6410) at tm-threads.c:312
|
|
#3 0x00007f34e4448fa3 in start_thread (arg=<optimized out>) at pthread_create.c:486
|
|
#4 0x00007f34e35f34cf in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:95
|
|
|
|
Thread 63 (Thread 0x7f2fad2dd700 (LWP 20790)):
|
|
#0 0x00007f34e35c0720 in __GI___nanosleep (requested_time=requested_time@entry=0x7f2fad2dc8c0, remaining=remaining@entry=0x0) at ../sysdeps/unix/sysv/linux/nanosleep.c:28
|
|
#1 0x00007f34e35eb874 in usleep (useconds=<optimized out>) at ../sysdeps/posix/usleep.c:32
|
|
#2 0x00000000005ebc76 in FlowManager (th_v=0x7f34074ef190, thread_data=0x7f2f80000de0) at flow-manager.c:1014
|
|
#3 0x0000000000686c56 in TmThreadsManagement (td=0x7f34074ef190) at tm-threads.c:541
|
|
#4 0x00007f34e4448fa3 in start_thread (arg=<optimized out>) at pthread_create.c:486
|
|
#5 0x00007f34e35f34cf in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:95
|
|
|
|
Thread 62 (Thread 0x7f33b32e1700 (LWP 20721)):
|
|
#0 0x00007f34e35e8819 in __GI___poll (fds=0x7f33b32e0a00, nfds=1, timeout=100) at ../sysdeps/unix/sysv/linux/poll.c:29
|
|
#1 0x000000000064a19d in ReceiveAFPLoop (tv=0x7f33ee151820, data=0x7f339ffff600, slot=0x7f340dac70f0) at source-af-packet.c:1544
|
|
#2 0x0000000000686887 in TmThreadsSlotPktAcqLoop (td=0x7f33ee151820) at tm-threads.c:312
|
|
#3 0x00007f34e4448fa3 in start_thread (arg=<optimized out>) at pthread_create.c:486
|
|
#4 0x00007f34e35f34cf in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:95
|
|
|
|
Thread 61 (Thread 0x7f31d8b87700 (LWP 20756)):
|
|
#0 0x000000000067face in PacketPoolGetPacket () at tmqh-packetpool.c:197
|
|
#1 0x00000000005230fd in PacketGetFromQueueOrAlloc () at decode.c:185
|
|
#2 0x000000000064cc89 in AFPParsePacketV3 (ptv=0x7f3197fff600, pbd=0x7f2c72900000, ppd=0x7f2c72989878) at source-af-packet.c:1038
|
|
#3 0x000000000064cbb9 in AFPWalkBlock (ptv=0x7f3197fff600, pbd=0x7f2c72900000) at source-af-packet.c:1128
|
|
#4 0x000000000064afb7 in AFPReadFromRingV3 (ptv=0x7f3197fff600) at source-af-packet.c:1178
|
|
#5 0x000000000064a337 in ReceiveAFPLoop (tv=0x7f34081fbc10, data=0x7f3197fff600, slot=0x7f340df193c0) at source-af-packet.c:1571
|
|
#6 0x0000000000686887 in TmThreadsSlotPktAcqLoop (td=0x7f34081fbc10) at tm-threads.c:312
|
|
#7 0x00007f34e4448fa3 in start_thread (arg=<optimized out>) at pthread_create.c:486
|
|
#8 0x00007f34e35f34cf in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:95
|
|
|
|
Thread 60 (Thread 0x7f30ee5c3700 (LWP 20768)):
|
|
#0 0x00007f34e35e8819 in __GI___poll (fds=0x7f30ee5c2a00, nfds=1, timeout=100) at ../sysdeps/unix/sysv/linux/poll.c:29
|
|
#1 0x000000000064a19d in ReceiveAFPLoop (tv=0x7f340b537390, data=0x7f30cbfff600, slot=0x7f33fbe08070) at source-af-packet.c:1544
|
|
#2 0x0000000000686887 in TmThreadsSlotPktAcqLoop (td=0x7f340b537390) at tm-threads.c:312
|
|
#3 0x00007f34e4448fa3 in start_thread (arg=<optimized out>) at pthread_create.c:486
|
|
#4 0x00007f34e35f34cf in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:95
|
|
|
|
Thread 59 (Thread 0x7f30550a4700 (LWP 20779)):
|
|
#0 suricata::dcerpc::dcerpc_udp::DCERPCUDPState::get_tx (self=0x7f243e8b2d50, tx_id=375) at src/dcerpc/dcerpc_udp.rs:111
|
|
#1 suricata::dcerpc::dcerpc_udp::rs_dcerpc_udp_get_tx (state=0x7f243e8b2d50, tx_id=375) at src/dcerpc/dcerpc_udp.rs:276
|
|
#2 0x00000000004d034d in RustDCERPCUDPGetTx (state=0x7f243e8b2d50, tx_id=375) at app-layer-dcerpc-udp.c:87
|
|
#3 0x0000000000506fd6 in AppLayerParserGetTx (ipproto=17 '\021', alproto=9, alstate=0x7f243e8b2d50, tx_id=375) at app-layer-parser.c:1077
|
|
#4 0x0000000000505db0 in AppLayerDefaultGetTxIterator (ipproto=17 '\021', alproto=9, alstate=0x7f243e8b2d50, min_tx_id=375, max_tx_id=743, state=0x7f30550a36e8) at app-layer-parser.c:657
|
|
#5 0x0000000000506a27 in AppLayerParserTransactionsCleanup (f=0x7f21e1d77b00) at app-layer-parser.c:921
|
|
#6 0x00000000005f15fe in FlowWorker (tv=0x7f3417698850, p=0x7f3006ddde30, data=0x7f3006e33b00) at flow-worker.c:562
|
|
#7 0x00000000006814b4 in TmThreadsSlotVarRun (tv=0x7f3417698850, p=0x7f3006ddde30, slot=0x7f3404e9d450) at tm-threads.c:117
|
|
#8 0x000000000064e0ce in TmThreadsSlotProcessPkt (tv=0x7f3417698850, s=0x7f3404e9d450, p=0x7f3006ddde30) at ./tm-threads.h:192
|
|
#9 0x000000000064d02e in AFPParsePacketV3 (ptv=0x7f3013fff600, pbd=0x7f2ab2800000, ppd=0x7f2ab2858ff8) at source-af-packet.c:1113
|
|
--Type <RET> for more, q to quit, c to continue without paging--
|
|
#10 0x000000000064cbb9 in AFPWalkBlock (ptv=0x7f3013fff600, pbd=0x7f2ab2800000) at source-af-packet.c:1128
|
|
#11 0x000000000064afb7 in AFPReadFromRingV3 (ptv=0x7f3013fff600) at source-af-packet.c:1178
|
|
#12 0x000000000064a337 in ReceiveAFPLoop (tv=0x7f3417698850, data=0x7f3013fff600, slot=0x7f3415891680) at source-af-packet.c:1571
|
|
#13 0x0000000000686887 in TmThreadsSlotPktAcqLoop (td=0x7f3417698850) at tm-threads.c:312
|
|
#14 0x00007f34e4448fa3 in start_thread (arg=<optimized out>) at pthread_create.c:486
|
|
#15 0x00007f34e35f34cf in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:95
|
|
|
|
Thread 58 (Thread 0x7f30025c3700 (LWP 20782)):
|
|
#0 0x00007f34e3d55287 in ?? () from /lib/x86_64-linux-gnu/libhs.so.5
|
|
#1 0x00007f34e3d57a21 in ?? () from /lib/x86_64-linux-gnu/libhs.so.5
|
|
#2 0x00007f34e3e46b0c in ?? () from /lib/x86_64-linux-gnu/libhs.so.5
|
|
#3 0x00007f34e3d46b16 in avx512_hs_scan () from /lib/x86_64-linux-gnu/libhs.so.5
|
|
#4 0x00000000006d9764 in SCHSSearch (mpm_ctx=0x7f33fba697a0, mpm_thread_ctx=0x7f2fd7dfe508, pmq=0x7f2fd7dfe518, buf=0x7f225eae3bc0 "\002", buflen=53576) at util-mpm-hs.c:946
|
|
#5 0x0000000000580dce in StreamMpmFunc (cb_data=0x7f30025c25a0, data=0x7f225eae3bc0 "\002", data_len=53576) at detect-engine-payload.c:64
|
|
#6 0x000000000067437f in StreamReassembleRawDo (ssn=0x7f225e250150, stream=0x7f225e2501e0, Callback=0x580d40 <StreamMpmFunc>, cb_data=0x7f30025c25a0, progress_in=101140, progress_out=0x7f2fd7dfe450, eof=false,
|
|
respect_inspect_depth=false) at stream-tcp-reassemble.c:1728
|
|
#7 0x00000000006739bc in StreamReassembleRaw (ssn=0x7f225e250150, p=0x7f2fd2ddde30, Callback=0x580d40 <StreamMpmFunc>, cb_data=0x7f30025c25a0, progress_out=0x7f2fd7dfe450, respect_inspect_depth=false) at stream-tcp-reassemble.c:1781
|
|
#8 0x00000000005804aa in PrefilterPktStream (det_ctx=0x7f2fd7dfe400, p=0x7f2fd2ddde30, pectx=0x7f33fba697a0) at detect-engine-payload.c:83
|
|
#9 0x0000000000583eb3 in Prefilter (det_ctx=0x7f2fd7dfe400, sgh=0x7f33fb46f7f0, p=0x7f2fd2ddde30, flags=132 '\204') at detect-engine-prefilter.c:169
|
|
#10 0x00000000005458da in DetectRunPrefilterPkt (tv=0x7f340815af80, de_ctx=0x7f341a146110, det_ctx=0x7f2fd7dfe400, p=0x7f2fd2ddde30, scratch=0x7f30025c2660) at detect.c:682
|
|
#11 0x0000000000544f5b in DetectRun (th_v=0x7f340815af80, de_ctx=0x7f341a146110, det_ctx=0x7f2fd7dfe400, p=0x7f2fd2ddde30) at detect.c:126
|
|
#12 0x0000000000544c2a in DetectFlow (tv=0x7f340815af80, de_ctx=0x7f341a146110, det_ctx=0x7f2fd7dfe400, p=0x7f2fd2ddde30) at detect.c:1591
|
|
#13 0x0000000000544b04 in Detect (tv=0x7f340815af80, p=0x7f2fd2ddde30, data=0x7f2fd7dfe400) at detect.c:1665
|
|
#14 0x00000000005f157e in FlowWorker (tv=0x7f340815af80, p=0x7f2fd2ddde30, data=0x7f2fd2e33b00) at flow-worker.c:540
|
|
#15 0x00000000006814b4 in TmThreadsSlotVarRun (tv=0x7f340815af80, p=0x7f2fd2ddde30, slot=0x7f33fc3939f0) at tm-threads.c:117
|
|
#16 0x000000000064e0ce in TmThreadsSlotProcessPkt (tv=0x7f340815af80, s=0x7f33fc3939f0, p=0x7f2fd2ddde30) at ./tm-threads.h:192
|
|
#17 0x000000000064d02e in AFPParsePacketV3 (ptv=0x7f2fdffff600, pbd=0x7f2a6c000000, ppd=0x7f2a6c006680) at source-af-packet.c:1113
|
|
#18 0x000000000064cbb9 in AFPWalkBlock (ptv=0x7f2fdffff600, pbd=0x7f2a6c000000) at source-af-packet.c:1128
|
|
#19 0x000000000064afb7 in AFPReadFromRingV3 (ptv=0x7f2fdffff600) at source-af-packet.c:1178
|
|
#20 0x000000000064a337 in ReceiveAFPLoop (tv=0x7f340815af80, data=0x7f2fdffff600, slot=0x7f33fc384f70) at source-af-packet.c:1571
|
|
#21 0x0000000000686887 in TmThreadsSlotPktAcqLoop (td=0x7f340815af80) at tm-threads.c:312
|
|
#22 0x00007f34e4448fa3 in start_thread (arg=<optimized out>) at pthread_create.c:486
|
|
#23 0x00007f34e35f34cf in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:95
|
|
|
|
Thread 57 (Thread 0x7f2facadc700 (LWP 20791)):
|
|
#0 0x00007f34e35c0720 in __GI___nanosleep (requested_time=requested_time@entry=0x7f2facadb8c0, remaining=remaining@entry=0x0) at ../sysdeps/unix/sysv/linux/nanosleep.c:28
|
|
#1 0x00007f34e35eb874 in usleep (useconds=<optimized out>) at ../sysdeps/posix/usleep.c:32
|
|
#2 0x00000000005ebc76 in FlowManager (th_v=0x7f340768e3d0, thread_data=0x7f2f78000de0) at flow-manager.c:1014
|
|
#3 0x0000000000686c56 in TmThreadsManagement (td=0x7f340768e3d0) at tm-threads.c:541
|
|
#4 0x00007f34e4448fa3 in start_thread (arg=<optimized out>) at pthread_create.c:486
|
|
#5 0x00007f34e35f34cf in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:95
|
|
|
|
Thread 56 (Thread 0x7f2f73fff700 (LWP 20792)):
|
|
#0 0x00007f34e35c0720 in __GI___nanosleep (requested_time=requested_time@entry=0x7f2f73ffe8c0, remaining=remaining@entry=0x0) at ../sysdeps/unix/sysv/linux/nanosleep.c:28
|
|
#1 0x00007f34e35eb874 in usleep (useconds=<optimized out>) at ../sysdeps/posix/usleep.c:32
|
|
#2 0x00000000005ebc76 in FlowManager (th_v=0x7f341806c920, thread_data=0x7f2f68000de0) at flow-manager.c:1014
|
|
#3 0x0000000000686c56 in TmThreadsManagement (td=0x7f341806c920) at tm-threads.c:541
|
|
#4 0x00007f34e4448fa3 in start_thread (arg=<optimized out>) at pthread_create.c:486
|
|
#5 0x00007f34e35f34cf in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:95
|
|
|
|
Thread 55 (Thread 0x7f32c4b87700 (LWP 20738)):
|
|
#0 0x00007f34e35e8819 in __GI___poll (fds=0x7f32c4b86a00, nfds=1, timeout=100) at ../sysdeps/unix/sysv/linux/poll.c:29
|
|
#1 0x000000000064a19d in ReceiveAFPLoop (tv=0x7f3417687010, data=0x7f3283fff600, slot=0x7f33ff01bd20) at source-af-packet.c:1544
|
|
#2 0x0000000000686887 in TmThreadsSlotPktAcqLoop (td=0x7f3417687010) at tm-threads.c:312
|
|
#3 0x00007f34e4448fa3 in start_thread (arg=<optimized out>) at pthread_create.c:486
|
|
#4 0x00007f34e35f34cf in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:95
|
|
--Type <RET> for more, q to quit, c to continue without paging--
|
|
|
|
Thread 54 (Thread 0x7f335e0a6700 (LWP 20727)):
|
|
#0 0x00007f34e35e8819 in __GI___poll (fds=0x7f335e0a5a00, nfds=1, timeout=100) at ../sysdeps/unix/sysv/linux/poll.c:29
|
|
#1 0x000000000064a19d in ReceiveAFPLoop (tv=0x7f3418b332f0, data=0x7f333bfff600, slot=0x7f34119fe410) at source-af-packet.c:1544
|
|
#2 0x0000000000686887 in TmThreadsSlotPktAcqLoop (td=0x7f3418b332f0) at tm-threads.c:312
|
|
#3 0x00007f34e4448fa3 in start_thread (arg=<optimized out>) at pthread_create.c:486
|
|
#4 0x00007f34e35f34cf in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:95
|
|
|
|
Thread 53 (Thread 0x7f31d98a5700 (LWP 20755)):
|
|
#0 0x00007f34e3e0ef26 in ?? () from /lib/x86_64-linux-gnu/libhs.so.5
|
|
#1 0x00007f34e3e46b85 in ?? () from /lib/x86_64-linux-gnu/libhs.so.5
|
|
#2 0x00007f34e3d46b16 in avx512_hs_scan () from /lib/x86_64-linux-gnu/libhs.so.5
|
|
#3 0x00000000006d9764 in SCHSSearch (mpm_ctx=0x7f33fb9fc870, mpm_thread_ctx=0x7f319fdfe4e8, pmq=0x7f319fdfe518, buf=0x7f2c835611c4 <error: Cannot access memory at address 0x7f2c835611c4>, buflen=1207) at util-mpm-hs.c:946
|
|
#4 0x0000000000580649 in PrefilterPktPayload (det_ctx=0x7f319fdfe400, p=0x7f319addde30, pectx=0x7f33fb9fc870) at detect-engine-payload.c:125
|
|
#5 0x0000000000583eb3 in Prefilter (det_ctx=0x7f319fdfe400, sgh=0x7f33fb93ba70, p=0x7f319addde30, flags=4 '\004') at detect-engine-prefilter.c:169
|
|
#6 0x00000000005458da in DetectRunPrefilterPkt (tv=0x7f34083a7350, de_ctx=0x7f341a146110, det_ctx=0x7f319fdfe400, p=0x7f319addde30, scratch=0x7f31d98a4660) at detect.c:682
|
|
#7 0x0000000000544f5b in DetectRun (th_v=0x7f34083a7350, de_ctx=0x7f341a146110, det_ctx=0x7f319fdfe400, p=0x7f319addde30) at detect.c:126
|
|
#8 0x0000000000544c2a in DetectFlow (tv=0x7f34083a7350, de_ctx=0x7f341a146110, det_ctx=0x7f319fdfe400, p=0x7f319addde30) at detect.c:1591
|
|
#9 0x0000000000544b04 in Detect (tv=0x7f34083a7350, p=0x7f319addde30, data=0x7f319fdfe400) at detect.c:1665
|
|
#10 0x00000000005f157e in FlowWorker (tv=0x7f34083a7350, p=0x7f319addde30, data=0x7f319ae33b00) at flow-worker.c:540
|
|
#11 0x00000000006814b4 in TmThreadsSlotVarRun (tv=0x7f34083a7350, p=0x7f319addde30, slot=0x7f341658e960) at tm-threads.c:117
|
|
#12 0x000000000064e0ce in TmThreadsSlotProcessPkt (tv=0x7f34083a7350, s=0x7f341658e960, p=0x7f319addde30) at ./tm-threads.h:192
|
|
#13 0x000000000064d02e in AFPParsePacketV3 (ptv=0x7f31a7fff600, pbd=0x7f2c83500000, ppd=0x7f2c83561148) at source-af-packet.c:1113
|
|
#14 0x000000000064cbb9 in AFPWalkBlock (ptv=0x7f31a7fff600, pbd=0x7f2c83500000) at source-af-packet.c:1128
|
|
#15 0x000000000064afb7 in AFPReadFromRingV3 (ptv=0x7f31a7fff600) at source-af-packet.c:1178
|
|
#16 0x000000000064a337 in ReceiveAFPLoop (tv=0x7f34083a7350, data=0x7f31a7fff600, slot=0x7f3419ccd4a0) at source-af-packet.c:1571
|
|
#17 0x0000000000686887 in TmThreadsSlotPktAcqLoop (td=0x7f34083a7350) at tm-threads.c:312
|
|
#18 0x00007f34e4448fa3 in start_thread (arg=<optimized out>) at pthread_create.c:486
|
|
#19 0x00007f34e35f34cf in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:95
|
|
|
|
Thread 52 (Thread 0x7f3271388700 (LWP 20742)):
|
|
#0 0x00007f34e35e8819 in __GI___poll (fds=0x7f3271387a00, nfds=1, timeout=100) at ../sysdeps/unix/sysv/linux/poll.c:29
|
|
#1 0x000000000064a19d in ReceiveAFPLoop (tv=0x7f3407e393d0, data=0x7f323ffff600, slot=0x7f34136db010) at source-af-packet.c:1544
|
|
#2 0x0000000000686887 in TmThreadsSlotPktAcqLoop (td=0x7f3407e393d0) at tm-threads.c:312
|
|
#3 0x00007f34e4448fa3 in start_thread (arg=<optimized out>) at pthread_create.c:486
|
|
#4 0x00007f34e35f34cf in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:95
|
|
|
|
Thread 51 (Thread 0x7f309bae2700 (LWP 20771)):
|
|
#0 0x00007f34e35e8819 in __GI___poll (fds=0x7f309bae1a00, nfds=1, timeout=100) at ../sysdeps/unix/sysv/linux/poll.c:29
|
|
#1 0x000000000064a19d in ReceiveAFPLoop (tv=0x7f341a022a80, data=0x7f3093fff600, slot=0x7f33fdffdcd0) at source-af-packet.c:1544
|
|
|
|
#2 0x0000000000686887 in TmThreadsSlotPktAcqLoop (td=0x7f341a022a80) at tm-threads.c:312
|
|
#3 0x00007f34e4448fa3 in start_thread (arg=<optimized out>) at pthread_create.c:486
|
|
#4 0x00007f34e35f34cf in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:95
|
|
|
|
Thread 50 (Thread 0x7f31dbfff700 (LWP 20748)):
|
|
#0 0x00007f34e35e8819 in __GI___poll (fds=0x7f31dbffea00, nfds=1, timeout=100) at ../sysdeps/unix/sysv/linux/poll.c:29
|
|
#1 0x000000000064a19d in ReceiveAFPLoop (tv=0x7f3405fd14d0, data=0x7f31d3fff600, slot=0x7f3400be7060) at source-af-packet.c:1544
|
|
#2 0x0000000000686887 in TmThreadsSlotPktAcqLoop (td=0x7f3405fd14d0) at tm-threads.c:312
|
|
#3 0x00007f34e4448fa3 in start_thread (arg=<optimized out>) at pthread_create.c:486
|
|
#4 0x00007f34e35f34cf in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:95
|
|
|
|
Thread 49 (Thread 0x7f30018a5700 (LWP 20783)):
|
|
#0 0x00007f34e35e8819 in __GI___poll (fds=0x7f30018a4a00, nfds=1, timeout=100) at ../sysdeps/unix/sysv/linux/poll.c:29
|
|
#1 0x000000000064a19d in ReceiveAFPLoop (tv=0x7f3413225f60, data=0x7f2fcffff600, slot=0x7f3407947d40) at source-af-packet.c:1544
|
|
#2 0x0000000000686887 in TmThreadsSlotPktAcqLoop (td=0x7f3413225f60) at tm-threads.c:312
|
|
#3 0x00007f34e4448fa3 in start_thread (arg=<optimized out>) at pthread_create.c:486
|
|
--Type <RET> for more, q to quit, c to continue without paging--
|
|
#4 0x00007f34e35f34cf in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:95
|
|
|
|
Thread 48 (Thread 0x7f3185388700 (LWP 20760)):
|
|
#0 0x00007f34e35e8819 in __GI___poll (fds=0x7f3185387a00, nfds=1, timeout=100) at ../sysdeps/unix/sysv/linux/poll.c:29
|
|
#1 0x000000000064a19d in ReceiveAFPLoop (tv=0x7f341284eb80, data=0x7f3153fff600, slot=0x7f34091d73d0) at source-af-packet.c:1544
|
|
#2 0x0000000000686887 in TmThreadsSlotPktAcqLoop (td=0x7f341284eb80) at tm-threads.c:312
|
|
#3 0x00007f34e4448fa3 in start_thread (arg=<optimized out>) at pthread_create.c:486
|
|
#4 0x00007f34e35f34cf in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:95
|
|
|
|
Thread 47 (Thread 0x7f30577fe700 (LWP 20776)):
|
|
#0 0x00007f34e35e8819 in __GI___poll (fds=0x7f30577fda00, nfds=1, timeout=100) at ../sysdeps/unix/sysv/linux/poll.c:29
|
|
#1 0x000000000064a19d in ReceiveAFPLoop (tv=0x7f3407739c50, data=0x7f3043fff600, slot=0x7f3410702ba0) at source-af-packet.c:1544
|
|
#2 0x0000000000686887 in TmThreadsSlotPktAcqLoop (td=0x7f3407739c50) at tm-threads.c:312
|
|
#3 0x00007f34e4448fa3 in start_thread (arg=<optimized out>) at pthread_create.c:486
|
|
#4 0x00007f34e35f34cf in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:95
|
|
|
|
Thread 46 (Thread 0x7f3186dc4700 (LWP 20758)):
|
|
#0 <core::slice::iter::IterMut<T> as core::iter::traits::iterator::Iterator>::next (self=<optimized out>) at /rustc/e1884a8e3c3e813aada8254edfa120e85bf5ffca/library/core/src/slice/iter/macros.rs:146
|
|
#1 suricata::dcerpc::dcerpc_udp::DCERPCUDPState::get_tx (self=0x7f315c3d3270, tx_id=2756) at src/dcerpc/dcerpc_udp.rs:109
|
|
#2 suricata::dcerpc::dcerpc_udp::rs_dcerpc_udp_get_tx (state=0x7f315c3d3270, tx_id=2756) at src/dcerpc/dcerpc_udp.rs:276
|
|
#3 0x00000000004d034d in RustDCERPCUDPGetTx (state=0x7f315c3d3270, tx_id=2756) at app-layer-dcerpc-udp.c:87
|
|
#4 0x0000000000506fd6 in AppLayerParserGetTx (ipproto=17 '\021', alproto=9, alstate=0x7f315c3d3270, tx_id=2756) at app-layer-parser.c:1077
|
|
#5 0x0000000000505db0 in AppLayerDefaultGetTxIterator (ipproto=17 '\021', alproto=9, alstate=0x7f315c3d3270, min_tx_id=2756, max_tx_id=3146, state=0x7f3186dc35b8) at app-layer-parser.c:657
|
|
#6 0x0000000000545d91 in DetectRunTx (tv=0x7f340c5b9300, de_ctx=0x7f341a146110, det_ctx=0x7f316bdfe400, p=0x7f3166ddde30, f=0x7f341be8ad90, scratch=0x7f3186dc3660) at detect.c:1304
|
|
#7 0x0000000000544fe5 in DetectRun (th_v=0x7f340c5b9300, de_ctx=0x7f341a146110, det_ctx=0x7f316bdfe400, p=0x7f3166ddde30) at detect.c:136
|
|
#8 0x0000000000544c2a in DetectFlow (tv=0x7f340c5b9300, de_ctx=0x7f341a146110, det_ctx=0x7f316bdfe400, p=0x7f3166ddde30) at detect.c:1591
|
|
#9 0x0000000000544b04 in Detect (tv=0x7f340c5b9300, p=0x7f3166ddde30, data=0x7f316bdfe400) at detect.c:1665
|
|
#10 0x00000000005f157e in FlowWorker (tv=0x7f340c5b9300, p=0x7f3166ddde30, data=0x7f3166e33b00) at flow-worker.c:540
|
|
#11 0x00000000006814b4 in TmThreadsSlotVarRun (tv=0x7f340c5b9300, p=0x7f3166ddde30, slot=0x7f341397c430) at tm-threads.c:117
|
|
#12 0x000000000064e0ce in TmThreadsSlotProcessPkt (tv=0x7f340c5b9300, s=0x7f341397c430, p=0x7f3166ddde30) at ./tm-threads.h:192
|
|
#13 0x000000000064d02e in AFPParsePacketV3 (ptv=0x7f3173fff600, pbd=0x7f2c49a00000, ppd=0x7f2c49a571a0) at source-af-packet.c:1113
|
|
#14 0x000000000064cbb9 in AFPWalkBlock (ptv=0x7f3173fff600, pbd=0x7f2c49a00000) at source-af-packet.c:1128
|
|
#15 0x000000000064afb7 in AFPReadFromRingV3 (ptv=0x7f3173fff600) at source-af-packet.c:1178
|
|
#16 0x000000000064a337 in ReceiveAFPLoop (tv=0x7f340c5b9300, data=0x7f3173fff600, slot=0x7f3413974b70) at source-af-packet.c:1571
|
|
#17 0x0000000000686887 in TmThreadsSlotPktAcqLoop (td=0x7f340c5b9300) at tm-threads.c:312
|
|
#18 0x00007f34e4448fa3 in start_thread (arg=<optimized out>) at pthread_create.c:486
|
|
#19 0x00007f34e35f34cf in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:95
|
|
|
|
Thread 45 (Thread 0x7f3142ae0700 (LWP 20763)):
|
|
#0 suricata::dcerpc::dcerpc_udp::DCERPCUDPState::get_tx (self=0x7f2687f3a920, tx_id=406) at src/dcerpc/dcerpc_udp.rs:111
|
|
#1 suricata::dcerpc::dcerpc_udp::rs_dcerpc_udp_get_tx (state=0x7f2687f3a920, tx_id=406) at src/dcerpc/dcerpc_udp.rs:276
|
|
#2 0x00000000004d034d in RustDCERPCUDPGetTx (state=0x7f2687f3a920, tx_id=406) at app-layer-dcerpc-udp.c:87
|
|
#3 0x0000000000506fd6 in AppLayerParserGetTx (ipproto=17 '\021', alproto=9, alstate=0x7f2687f3a920, tx_id=406) at app-layer-parser.c:1077
|
|
#4 0x0000000000505db0 in AppLayerDefaultGetTxIterator (ipproto=17 '\021', alproto=9, alstate=0x7f2687f3a920, min_tx_id=406, max_tx_id=461, state=0x7f3142adf6e8) at app-layer-parser.c:657
|
|
#5 0x0000000000506a27 in AppLayerParserTransactionsCleanup (f=0x7f21e8633e40) at app-layer-parser.c:921
|
|
#6 0x00000000005f15fe in FlowWorker (tv=0x7f3401b60350, p=0x7f3112ddde30, data=0x7f3112e33b00) at flow-worker.c:562
|
|
#7 0x00000000006814b4 in TmThreadsSlotVarRun (tv=0x7f3401b60350, p=0x7f3112ddde30, slot=0x7f3410723d10) at tm-threads.c:117
|
|
#8 0x000000000064e0ce in TmThreadsSlotProcessPkt (tv=0x7f3401b60350, s=0x7f3410723d10, p=0x7f3112ddde30) at ./tm-threads.h:192
|
|
#9 0x000000000064d02e in AFPParsePacketV3 (ptv=0x7f311ffff600, pbd=0x7f2bec100000, ppd=0x7f2bec120398) at source-af-packet.c:1113
|
|
#10 0x000000000064cbb9 in AFPWalkBlock (ptv=0x7f311ffff600, pbd=0x7f2bec100000) at source-af-packet.c:1128
|
|
#11 0x000000000064afb7 in AFPReadFromRingV3 (ptv=0x7f311ffff600) at source-af-packet.c:1178
|
|
#12 0x000000000064a337 in ReceiveAFPLoop (tv=0x7f3401b60350, data=0x7f311ffff600, slot=0x7f33fccbaf30) at source-af-packet.c:1571
|
|
#13 0x0000000000686887 in TmThreadsSlotPktAcqLoop (td=0x7f3401b60350) at tm-threads.c:312
|
|
#14 0x00007f34e4448fa3 in start_thread (arg=<optimized out>) at pthread_create.c:486
|
|
#15 0x00007f34e35f34cf in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:95
|
|
|
|
--Type <RET> for more, q to quit, c to continue without paging--
|
|
Thread 44 (Thread 0x7f30effff700 (LWP 20766)):
|
|
#0 suricata::dcerpc::dcerpc_udp::DCERPCUDPState::get_tx (self=0x7f341a62ffa0, tx_id=1380) at src/dcerpc/dcerpc_udp.rs:111
|
|
#1 suricata::dcerpc::dcerpc_udp::rs_dcerpc_udp_get_tx (state=0x7f341a62ffa0, tx_id=1380) at src/dcerpc/dcerpc_udp.rs:276
|
|
#2 0x00000000004d034d in RustDCERPCUDPGetTx (state=0x7f341a62ffa0, tx_id=1380) at app-layer-dcerpc-udp.c:87
|
|
#3 0x0000000000506fd6 in AppLayerParserGetTx (ipproto=17 '\021', alproto=9, alstate=0x7f341a62ffa0, tx_id=1380) at app-layer-parser.c:1077
|
|
#4 0x0000000000505db0 in AppLayerDefaultGetTxIterator (ipproto=17 '\021', alproto=9, alstate=0x7f341a62ffa0, min_tx_id=1380, max_tx_id=1598, state=0x7f30efffe6e8) at app-layer-parser.c:657
|
|
#5 0x0000000000506a27 in AppLayerParserTransactionsCleanup (f=0x7f341a5c8cb0) at app-layer-parser.c:921
|
|
#6 0x00000000005f15fe in FlowWorker (tv=0x7f340b9ee620, p=0x7f30deddde30, data=0x7f30dee33b00) at flow-worker.c:562
|
|
#7 0x00000000006814b4 in TmThreadsSlotVarRun (tv=0x7f340b9ee620, p=0x7f30deddde30, slot=0x7f340f1db5b0) at tm-threads.c:117
|
|
#8 0x000000000064e0ce in TmThreadsSlotProcessPkt (tv=0x7f340b9ee620, s=0x7f340f1db5b0, p=0x7f30deddde30) at ./tm-threads.h:192
|
|
#9 0x000000000064d02e in AFPParsePacketV3 (ptv=0x7f30e7fff600, pbd=0x7f2ba4a00000, ppd=0x7f2ba4a06d40) at source-af-packet.c:1113
|
|
#10 0x000000000064cbb9 in AFPWalkBlock (ptv=0x7f30e7fff600, pbd=0x7f2ba4a00000) at source-af-packet.c:1128
|
|
#11 0x000000000064afb7 in AFPReadFromRingV3 (ptv=0x7f30e7fff600) at source-af-packet.c:1178
|
|
#12 0x000000000064a337 in ReceiveAFPLoop (tv=0x7f340b9ee620, data=0x7f30e7fff600, slot=0x7f3400158750) at source-af-packet.c:1571
|
|
#13 0x0000000000686887 in TmThreadsSlotPktAcqLoop (td=0x7f340b9ee620) at tm-threads.c:312
|
|
#14 0x00007f34e4448fa3 in start_thread (arg=<optimized out>) at pthread_create.c:486
|
|
#15 0x00007f34e35f34cf in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:95
|
|
|
|
Thread 43 (Thread 0x7f2fadade700 (LWP 20789)):
|
|
#0 0x00007f34e35c0720 in __GI___nanosleep (requested_time=requested_time@entry=0x7f2fadadd8c0, remaining=remaining@entry=0x0) at ../sysdeps/unix/sysv/linux/nanosleep.c:28
|
|
#1 0x00007f34e35eb874 in usleep (useconds=<optimized out>) at ../sysdeps/posix/usleep.c:32
|
|
#2 0x00000000005ebc76 in FlowManager (th_v=0x7f340747ada0, thread_data=0x7f2f88000de0) at flow-manager.c:1014
|
|
#3 0x0000000000686c56 in TmThreadsManagement (td=0x7f340747ada0) at tm-threads.c:541
|
|
#4 0x00007f34e4448fa3 in start_thread (arg=<optimized out>) at pthread_create.c:486
|
|
#5 0x00007f34e35f34cf in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:95
|
|
|
|
Thread 42 (Thread 0x7f3057fff700 (LWP 20775)):
|
|
#0 0x00007f34e35e8819 in __GI___poll (fds=0x7f3057ffea00, nfds=1, timeout=100) at ../sysdeps/unix/sysv/linux/poll.c:29
|
|
#1 0x000000000064a19d in ReceiveAFPLoop (tv=0x7f341593fac0, data=0x7f304ffff600, slot=0x7f33fc376570) at source-af-packet.c:1544
|
|
#2 0x0000000000686887 in TmThreadsSlotPktAcqLoop (td=0x7f341593fac0) at tm-threads.c:312
|
|
#3 0x00007f34e4448fa3 in start_thread (arg=<optimized out>) at pthread_create.c:486
|
|
#4 0x00007f34e35f34cf in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:95
|
|
|
|
Thread 41 (Thread 0x7f33e2a8d700 (LWP 20717)):
|
|
#0 suricata::dcerpc::dcerpc_udp::DCERPCUDPState::get_tx (self=0x7f33cc39a160, tx_id=3826) at src/dcerpc/dcerpc_udp.rs:109
|
|
#1 suricata::dcerpc::dcerpc_udp::rs_dcerpc_udp_get_tx (state=0x7f33cc39a160, tx_id=3826) at src/dcerpc/dcerpc_udp.rs:276
|
|
#2 0x00000000004d034d in RustDCERPCUDPGetTx (state=0x7f33cc39a160, tx_id=3826) at app-layer-dcerpc-udp.c:87
|
|
#3 0x0000000000506fd6 in AppLayerParserGetTx (ipproto=17 '\021', alproto=9, alstate=0x7f33cc39a160, tx_id=3826) at app-layer-parser.c:1077
|
|
#4 0x0000000000505db0 in AppLayerDefaultGetTxIterator (ipproto=17 '\021', alproto=9, alstate=0x7f33cc39a160, min_tx_id=3826, max_tx_id=5174, state=0x7f33e2a8c6e8) at app-layer-parser.c:657
|
|
#5 0x0000000000506a27 in AppLayerParserTransactionsCleanup (f=0x7f341b4439c0) at app-layer-parser.c:921
|
|
#6 0x00000000005f15fe in FlowWorker (tv=0x7f33e8226040, p=0x7f33d6ddde30, data=0x7f33d6e36a20) at flow-worker.c:562
|
|
#7 0x00000000006814b4 in TmThreadsSlotVarRun (tv=0x7f33e8226040, p=0x7f33d6ddde30, slot=0x7f33ec957d00) at tm-threads.c:117
|
|
#8 0x000000000064e0ce in TmThreadsSlotProcessPkt (tv=0x7f33e8226040, s=0x7f33ec957d00, p=0x7f33d6ddde30) at ./tm-threads.h:192
|
|
#9 0x000000000064d02e in AFPParsePacketV3 (ptv=0x7f33dffff600, pbd=0x7f2f2d500000, ppd=0x7f2f2d5693a0) at source-af-packet.c:1113
|
|
#10 0x000000000064cbb9 in AFPWalkBlock (ptv=0x7f33dffff600, pbd=0x7f2f2d500000) at source-af-packet.c:1128
|
|
#11 0x000000000064afb7 in AFPReadFromRingV3 (ptv=0x7f33dffff600) at source-af-packet.c:1178
|
|
#12 0x000000000064a337 in ReceiveAFPLoop (tv=0x7f33e8226040, data=0x7f33dffff600, slot=0x7f33e9ccb4e0) at source-af-packet.c:1571
|
|
#13 0x0000000000686887 in TmThreadsSlotPktAcqLoop (td=0x7f33e8226040) at tm-threads.c:312
|
|
#14 0x00007f34e4448fa3 in start_thread (arg=<optimized out>) at pthread_create.c:486
|
|
#15 0x00007f34e35f34cf in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:95
|
|
|
|
Thread 40 (Thread 0x7f31437fe700 (LWP 20762)):
|
|
#0 DetectRulePacketRules (tv=0x7f34105435f0, de_ctx=0x7f341a146110, det_ctx=0x7f3127dfe400, p=0x7f3122ddde30, pflow=0x7f2248adf750, scratch=0x7f31437fd660) at detect.c:757
|
|
#1 0x0000000000544f78 in DetectRun (th_v=0x7f34105435f0, de_ctx=0x7f341a146110, det_ctx=0x7f3127dfe400, p=0x7f3122ddde30) at detect.c:130
|
|
#2 0x0000000000544c2a in DetectFlow (tv=0x7f34105435f0, de_ctx=0x7f341a146110, det_ctx=0x7f3127dfe400, p=0x7f3122ddde30) at detect.c:1591
|
|
#3 0x0000000000544b04 in Detect (tv=0x7f34105435f0, p=0x7f3122ddde30, data=0x7f3127dfe400) at detect.c:1665
|
|
--Type <RET> for more, q to quit, c to continue without paging--
|
|
#4 0x00000000005f157e in FlowWorker (tv=0x7f34105435f0, p=0x7f3122ddde30, data=0x7f3122e33b00) at flow-worker.c:540
|
|
#5 0x00000000006814b4 in TmThreadsSlotVarRun (tv=0x7f34105435f0, p=0x7f3122ddde30, slot=0x7f33ff6b91e0) at tm-threads.c:117
|
|
#6 0x000000000064e0ce in TmThreadsSlotProcessPkt (tv=0x7f34105435f0, s=0x7f33ff6b91e0, p=0x7f3122ddde30) at ./tm-threads.h:192
|
|
#7 0x000000000064d02e in AFPParsePacketV3 (ptv=0x7f312ffff600, pbd=0x7f2bfec00000, ppd=0x7f2bfec40a90) at source-af-packet.c:1113
|
|
#8 0x000000000064cbb9 in AFPWalkBlock (ptv=0x7f312ffff600, pbd=0x7f2bfec00000) at source-af-packet.c:1128
|
|
#9 0x000000000064afb7 in AFPReadFromRingV3 (ptv=0x7f312ffff600) at source-af-packet.c:1178
|
|
#10 0x000000000064a337 in ReceiveAFPLoop (tv=0x7f34105435f0, data=0x7f312ffff600, slot=0x7f34139072c0) at source-af-packet.c:1571
|
|
#11 0x0000000000686887 in TmThreadsSlotPktAcqLoop (td=0x7f34105435f0) at tm-threads.c:312
|
|
#12 0x00007f34e4448fa3 in start_thread (arg=<optimized out>) at pthread_create.c:486
|
|
#13 0x00007f34e35f34cf in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:95
|
|
|
|
Thread 39 (Thread 0x7f322ffff700 (LWP 20743)):
|
|
#0 0x00007f34e35e8819 in __GI___poll (fds=0x7f322fffea00, nfds=1, timeout=100) at ../sysdeps/unix/sysv/linux/poll.c:29
|
|
#1 0x000000000064a19d in ReceiveAFPLoop (tv=0x7f341678bf20, data=0x7f3227fff600, slot=0x7f3404bac620) at source-af-packet.c:1544
|
|
#2 0x0000000000686887 in TmThreadsSlotPktAcqLoop (td=0x7f341678bf20) at tm-threads.c:312
|
|
#3 0x00007f34e4448fa3 in start_thread (arg=<optimized out>) at pthread_create.c:486
|
|
#4 0x00007f34e35f34cf in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:95
|
|
|
|
Thread 38 (Thread 0x7f2fae2df700 (LWP 20788)):
|
|
#0 0x00007f34e35c0720 in __GI___nanosleep (requested_time=requested_time@entry=0x7f2fae2de8c0, remaining=remaining@entry=0x0) at ../sysdeps/unix/sysv/linux/nanosleep.c:28
|
|
#1 0x00007f34e35eb874 in usleep (useconds=<optimized out>) at ../sysdeps/posix/usleep.c:32
|
|
#2 0x00000000005ebc76 in FlowManager (th_v=0x7f3410860890, thread_data=0x7f2f90000de0) at flow-manager.c:1014
|
|
#3 0x0000000000686c56 in TmThreadsManagement (td=0x7f3410860890) at tm-threads.c:541
|
|
#4 0x00007f34e4448fa3 in start_thread (arg=<optimized out>) at pthread_create.c:486
|
|
#5 0x00007f34e35f34cf in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:95
|
|
|
|
Thread 37 (Thread 0x7f322d0a4700 (LWP 20747)):
|
|
#0 suricata::dcerpc::dcerpc_udp::DCERPCUDPState::get_tx (self=0x7f28dc3823a0, tx_id=459) at src/dcerpc/dcerpc_udp.rs:109
|
|
#1 suricata::dcerpc::dcerpc_udp::rs_dcerpc_udp_get_tx (state=0x7f28dc3823a0, tx_id=459) at src/dcerpc/dcerpc_udp.rs:276
|
|
#2 0x00000000004d034d in RustDCERPCUDPGetTx (state=0x7f28dc3823a0, tx_id=459) at app-layer-dcerpc-udp.c:87
|
|
#3 0x0000000000506fd6 in AppLayerParserGetTx (ipproto=17 '\021', alproto=9, alstate=0x7f28dc3823a0, tx_id=459) at app-layer-parser.c:1077
|
|
#4 0x0000000000505db0 in AppLayerDefaultGetTxIterator (ipproto=17 '\021', alproto=9, alstate=0x7f28dc3823a0, min_tx_id=459, max_tx_id=1407, state=0x7f322d0a35b8) at app-layer-parser.c:657
|
|
#5 0x0000000000545d91 in DetectRunTx (tv=0x7f3402d2eea0, de_ctx=0x7f341a146110, det_ctx=0x7f31e3dfe400, p=0x7f31deddde30, f=0x7f22c227ec20, scratch=0x7f322d0a3660) at detect.c:1304
|
|
#6 0x0000000000544fe5 in DetectRun (th_v=0x7f3402d2eea0, de_ctx=0x7f341a146110, det_ctx=0x7f31e3dfe400, p=0x7f31deddde30) at detect.c:136
|
|
#7 0x0000000000544c2a in DetectFlow (tv=0x7f3402d2eea0, de_ctx=0x7f341a146110, det_ctx=0x7f31e3dfe400, p=0x7f31deddde30) at detect.c:1591
|
|
#8 0x0000000000544b04 in Detect (tv=0x7f3402d2eea0, p=0x7f31deddde30, data=0x7f31e3dfe400) at detect.c:1665
|
|
#9 0x00000000005f157e in FlowWorker (tv=0x7f3402d2eea0, p=0x7f31deddde30, data=0x7f31dee33b00) at flow-worker.c:540
|
|
#10 0x00000000006814b4 in TmThreadsSlotVarRun (tv=0x7f3402d2eea0, p=0x7f31deddde30, slot=0x7f33fe74f6e0) at tm-threads.c:117
|
|
#11 0x000000000064e0ce in TmThreadsSlotProcessPkt (tv=0x7f3402d2eea0, s=0x7f33fe74f6e0, p=0x7f31deddde30) at ./tm-threads.h:192
|
|
#12 0x000000000064d02e in AFPParsePacketV3 (ptv=0x7f31ebfff600, pbd=0x7f2cd5100000, ppd=0x7f2cd5169610) at source-af-packet.c:1113
|
|
#13 0x000000000064cbb9 in AFPWalkBlock (ptv=0x7f31ebfff600, pbd=0x7f2cd5100000) at source-af-packet.c:1128
|
|
#14 0x000000000064afb7 in AFPReadFromRingV3 (ptv=0x7f31ebfff600) at source-af-packet.c:1178
|
|
#15 0x000000000064a337 in ReceiveAFPLoop (tv=0x7f3402d2eea0, data=0x7f31ebfff600, slot=0x7f33fe73dc40) at source-af-packet.c:1571
|
|
#16 0x0000000000686887 in TmThreadsSlotPktAcqLoop (td=0x7f3402d2eea0) at tm-threads.c:312
|
|
#17 0x00007f34e4448fa3 in start_thread (arg=<optimized out>) at pthread_create.c:486
|
|
#18 0x00007f34e35f34cf in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:95
|
|
|
|
Thread 36 (Thread 0x7f2fafae2700 (LWP 20785)):
|
|
#0 0x00007f34e35c0720 in __GI___nanosleep (requested_time=requested_time@entry=0x7f2fafae18c0, remaining=remaining@entry=0x0) at ../sysdeps/unix/sysv/linux/nanosleep.c:28
|
|
#1 0x00007f34e35eb874 in usleep (useconds=<optimized out>) at ../sysdeps/posix/usleep.c:32
|
|
#2 0x00000000005ebc76 in FlowManager (th_v=0x7f340861dcb0, thread_data=0x7f2fa4000de0) at flow-manager.c:1014
|
|
#3 0x0000000000686c56 in TmThreadsManagement (td=0x7f340861dcb0) at tm-threads.c:541
|
|
#4 0x00007f34e4448fa3 in start_thread (arg=<optimized out>) at pthread_create.c:486
|
|
#5 0x00007f34e35f34cf in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:95
|
|
|
|
Thread 35 (Thread 0x7f2faeae0700 (LWP 20787)):
|
|
--Type <RET> for more, q to quit, c to continue without paging--
|
|
#0 0x00007f34e35c0720 in __GI___nanosleep (requested_time=requested_time@entry=0x7f2faeadf8c0, remaining=remaining@entry=0x0) at ../sysdeps/unix/sysv/linux/nanosleep.c:28
|
|
#1 0x00007f34e35eb874 in usleep (useconds=<optimized out>) at ../sysdeps/posix/usleep.c:32
|
|
#2 0x00000000005ebc76 in FlowManager (th_v=0x7f33ff147b40, thread_data=0x7f2f98000de0) at flow-manager.c:1014
|
|
#3 0x0000000000686c56 in TmThreadsManagement (td=0x7f33ff147b40) at tm-threads.c:541
|
|
#4 0x00007f34e4448fa3 in start_thread (arg=<optimized out>) at pthread_create.c:486
|
|
#5 0x00007f34e35f34cf in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:95
|
|
|
|
Thread 34 (Thread 0x7f2faf2e1700 (LWP 20786)):
|
|
#0 0x00007f34e35c0720 in __GI___nanosleep (requested_time=requested_time@entry=0x7f2faf2e08c0, remaining=remaining@entry=0x0) at ../sysdeps/unix/sysv/linux/nanosleep.c:28
|
|
#1 0x00007f34e35eb874 in usleep (useconds=<optimized out>) at ../sysdeps/posix/usleep.c:32
|
|
#2 0x00000000005ebc76 in FlowManager (th_v=0x7f3400fc89c0, thread_data=0x7f2fa0000de0) at flow-manager.c:1014
|
|
#3 0x0000000000686c56 in TmThreadsManagement (td=0x7f3400fc89c0) at tm-threads.c:541
|
|
#4 0x00007f34e4448fa3 in start_thread (arg=<optimized out>) at pthread_create.c:486
|
|
#5 0x00007f34e35f34cf in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:95
|
|
|
|
Thread 33 (Thread 0x7f322f7fe700 (LWP 20744)):
|
|
#0 0x00007f34e35e8819 in __GI___poll (fds=0x7f322f7fda00, nfds=1, timeout=100) at ../sysdeps/unix/sysv/linux/poll.c:29
|
|
#1 0x000000000064a19d in ReceiveAFPLoop (tv=0x7f34127d2250, data=0x7f321bfff600, slot=0x7f3411a2a4a0) at source-af-packet.c:1544
|
|
#2 0x0000000000686887 in TmThreadsSlotPktAcqLoop (td=0x7f34127d2250) at tm-threads.c:312
|
|
#3 0x00007f34e4448fa3 in start_thread (arg=<optimized out>) at pthread_create.c:486
|
|
#4 0x00007f34e35f34cf in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:95
|
|
|
|
Thread 32 (Thread 0x7f31da5c3700 (LWP 20754)):
|
|
#0 0x00007f34e35e8819 in __GI___poll (fds=0x7f31da5c2a00, nfds=1, timeout=100) at ../sysdeps/unix/sysv/linux/poll.c:29
|
|
#1 0x000000000064a19d in ReceiveAFPLoop (tv=0x7f34086ae880, data=0x7f31b7fff600, slot=0x7f3400bd9a20) at source-af-packet.c:1544
|
|
#2 0x0000000000686887 in TmThreadsSlotPktAcqLoop (td=0x7f34086ae880) at tm-threads.c:312
|
|
#3 0x00007f34e4448fa3 in start_thread (arg=<optimized out>) at pthread_create.c:486
|
|
#4 0x00007f34e35f34cf in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:95
|
|
|
|
Thread 31 (Thread 0x7f335fae2700 (LWP 20725)):
|
|
#0 0x00007f34e35e8819 in __GI___poll (fds=0x7f335fae1a00, nfds=1, timeout=100) at ../sysdeps/unix/sysv/linux/poll.c:29
|
|
#1 0x000000000064a19d in ReceiveAFPLoop (tv=0x7f34131a1d10, data=0x7f3357fff600, slot=0x7f3419b6d530) at source-af-packet.c:1544
|
|
#2 0x0000000000686887 in TmThreadsSlotPktAcqLoop (td=0x7f34131a1d10) at tm-threads.c:312
|
|
#3 0x00007f34e4448fa3 in start_thread (arg=<optimized out>) at pthread_create.c:486
|
|
#4 0x00007f34e35f34cf in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:95
|
|
|
|
Thread 30 (Thread 0x7f33b25c3700 (LWP 20722)):
|
|
#0 0x00007f34e35e8819 in __GI___poll (fds=0x7f33b25c2a00, nfds=1, timeout=100) at ../sysdeps/unix/sysv/linux/poll.c:29
|
|
#1 0x000000000064a19d in ReceiveAFPLoop (tv=0x7f33eb601dc0, data=0x7f338ffff600, slot=0x7f3408379950) at source-af-packet.c:1544
|
|
#2 0x0000000000686887 in TmThreadsSlotPktAcqLoop (td=0x7f33eb601dc0) at tm-threads.c:312
|
|
#3 0x00007f34e4448fa3 in start_thread (arg=<optimized out>) at pthread_create.c:486
|
|
#4 0x00007f34e35f34cf in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:95
|
|
|
|
Thread 29 (Thread 0x7f31410a4700 (LWP 20765)):
|
|
#0 0x00007f34e35e8819 in __GI___poll (fds=0x7f31410a3a00, nfds=1, timeout=100) at ../sysdeps/unix/sysv/linux/poll.c:29
|
|
#1 0x000000000064a19d in ReceiveAFPLoop (tv=0x7f3400fbacd0, data=0x7f30fffff600, slot=0x7f33fbf6ab60) at source-af-packet.c:1544
|
|
#2 0x0000000000686887 in TmThreadsSlotPktAcqLoop (td=0x7f3400fbacd0) at tm-threads.c:312
|
|
#3 0x00007f34e4448fa3 in start_thread (arg=<optimized out>) at pthread_create.c:486
|
|
#4 0x00007f34e35f34cf in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:95
|
|
|
|
Thread 28 (Thread 0x7f3141dc2700 (LWP 20764)):
|
|
#0 0x0000000000546dfd in DetectPrefilterBuildNonPrefilterList (det_ctx=0x7f3107dfe400, mask=131 '\203', alproto=30 '\036') at detect.c:364
|
|
#1 0x00000000005458bd in DetectRunPrefilterPkt (tv=0x7f3400e70310, de_ctx=0x7f341a146110, det_ctx=0x7f3107dfe400, p=0x7f3102ddde30, scratch=0x7f3141dc1660) at detect.c:677
|
|
#2 0x0000000000544f5b in DetectRun (th_v=0x7f3400e70310, de_ctx=0x7f341a146110, det_ctx=0x7f3107dfe400, p=0x7f3102ddde30) at detect.c:126
|
|
#3 0x0000000000544c2a in DetectFlow (tv=0x7f3400e70310, de_ctx=0x7f341a146110, det_ctx=0x7f3107dfe400, p=0x7f3102ddde30) at detect.c:1591
|
|
#4 0x0000000000544b04 in Detect (tv=0x7f3400e70310, p=0x7f3102ddde30, data=0x7f3107dfe400) at detect.c:1665
|
|
--Type <RET> for more, q to quit, c to continue without paging--
|
|
#5 0x00000000005f157e in FlowWorker (tv=0x7f3400e70310, p=0x7f3102ddde30, data=0x7f3102e33b00) at flow-worker.c:540
|
|
#6 0x00000000006814b4 in TmThreadsSlotVarRun (tv=0x7f3400e70310, p=0x7f3102ddde30, slot=0x7f34016a7ce0) at tm-threads.c:117
|
|
#7 0x000000000064e0ce in TmThreadsSlotProcessPkt (tv=0x7f3400e70310, s=0x7f34016a7ce0, p=0x7f3102ddde30) at ./tm-threads.h:192
|
|
#8 0x000000000064d02e in AFPParsePacketV3 (ptv=0x7f310ffff600, pbd=0x7f2bcea00000, ppd=0x7f2bceab2048) at source-af-packet.c:1113
|
|
#9 0x000000000064cbb9 in AFPWalkBlock (ptv=0x7f310ffff600, pbd=0x7f2bcea00000) at source-af-packet.c:1128
|
|
#10 0x000000000064afb7 in AFPReadFromRingV3 (ptv=0x7f310ffff600) at source-af-packet.c:1178
|
|
#11 0x000000000064a337 in ReceiveAFPLoop (tv=0x7f3400e70310, data=0x7f310ffff600, slot=0x7f3417715530) at source-af-packet.c:1571
|
|
#12 0x0000000000686887 in TmThreadsSlotPktAcqLoop (td=0x7f3400e70310) at tm-threads.c:312
|
|
#13 0x00007f34e4448fa3 in start_thread (arg=<optimized out>) at pthread_create.c:486
|
|
#14 0x00007f34e35f34cf in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:95
|
|
|
|
Thread 27 (Thread 0x7f33b0b87700 (LWP 20724)):
|
|
#0 0x00007f34e35e8819 in __GI___poll (fds=0x7f33b0b86a00, nfds=1, timeout=100) at ../sysdeps/unix/sysv/linux/poll.c:29
|
|
#1 0x000000000064a19d in ReceiveAFPLoop (tv=0x7f3418296810, data=0x7f336ffff600, slot=0x7f34119a0940) at source-af-packet.c:1544
|
|
#2 0x0000000000686887 in TmThreadsSlotPktAcqLoop (td=0x7f3418296810) at tm-threads.c:312
|
|
#3 0x00007f34e4448fa3 in start_thread (arg=<optimized out>) at pthread_create.c:486
|
|
#4 0x00007f34e35f34cf in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:95
|
|
|
|
Thread 26 (Thread 0x7f3273ae2700 (LWP 20739)):
|
|
#0 0x00007f34e35e8819 in __GI___poll (fds=0x7f3273ae1a00, nfds=1, timeout=100) at ../sysdeps/unix/sysv/linux/poll.c:29
|
|
#1 0x000000000064a19d in ReceiveAFPLoop (tv=0x7f3413e9e370, data=0x7f326bfff600, slot=0x7f34001be7d0) at source-af-packet.c:1544
|
|
#2 0x0000000000686887 in TmThreadsSlotPktAcqLoop (td=0x7f3413e9e370) at tm-threads.c:312
|
|
#3 0x00007f34e4448fa3 in start_thread (arg=<optimized out>) at pthread_create.c:486
|
|
#4 0x00007f34e35f34cf in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:95
|
|
|
|
Thread 25 (Thread 0x7f3319dc2700 (LWP 20732)):
|
|
#0 0x00007f34e35e8819 in __GI___poll (fds=0x7f3319dc1a00, nfds=1, timeout=100) at ../sysdeps/unix/sysv/linux/poll.c:29
|
|
#1 0x000000000064a19d in ReceiveAFPLoop (tv=0x7f341367a380, data=0x7f32e7fff600, slot=0x7f34161b5860) at source-af-packet.c:1544
|
|
#2 0x0000000000686887 in TmThreadsSlotPktAcqLoop (td=0x7f341367a380) at tm-threads.c:312
|
|
#3 0x00007f34e4448fa3 in start_thread (arg=<optimized out>) at pthread_create.c:486
|
|
#4 0x00007f34e35f34cf in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:95
|
|
|
|
Thread 24 (Thread 0x7f331b7fe700 (LWP 20730)):
|
|
#0 0x00007f34e35e8819 in __GI___poll (fds=0x7f331b7fda00, nfds=1, timeout=100) at ../sysdeps/unix/sysv/linux/poll.c:29
|
|
#1 0x000000000064a19d in ReceiveAFPLoop (tv=0x7f34185c4e90, data=0x7f3307fff600, slot=0x7f34071a03a0) at source-af-packet.c:1544
|
|
#2 0x0000000000686887 in TmThreadsSlotPktAcqLoop (td=0x7f34185c4e90) at tm-threads.c:312
|
|
#3 0x00007f34e4448fa3 in start_thread (arg=<optimized out>) at pthread_create.c:486
|
|
#4 0x00007f34e35f34cf in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:95
|
|
|
|
Thread 23 (Thread 0x7f322ddc2700 (LWP 20746)):
|
|
#0 0x00007f34e3e0ef36 in ?? () from /lib/x86_64-linux-gnu/libhs.so.5
|
|
#1 0x00007f34e3e46b85 in ?? () from /lib/x86_64-linux-gnu/libhs.so.5
|
|
#2 0x00007f34e3d46b16 in avx512_hs_scan () from /lib/x86_64-linux-gnu/libhs.so.5
|
|
#3 0x00000000006d9764 in SCHSSearch (mpm_ctx=0x7f33fb85ac10, mpm_thread_ctx=0x7f31f3dfe4e8, pmq=0x7f31f3dfe518, buf=0x7f2cedb3366c <error: Cannot access memory at address 0x7f2cedb3366c>, buflen=1448) at util-mpm-hs.c:946
|
|
#4 0x0000000000580649 in PrefilterPktPayload (det_ctx=0x7f31f3dfe400, p=0x7f31eeddde30, pectx=0x7f33fb85ac10) at detect-engine-payload.c:125
|
|
#5 0x0000000000583eb3 in Prefilter (det_ctx=0x7f31f3dfe400, sgh=0x7f33fb49d830, p=0x7f31eeddde30, flags=8 '\b') at detect-engine-prefilter.c:169
|
|
#6 0x00000000005458da in DetectRunPrefilterPkt (tv=0x7f3403453710, de_ctx=0x7f341a146110, det_ctx=0x7f31f3dfe400, p=0x7f31eeddde30, scratch=0x7f322ddc1660) at detect.c:682
|
|
#7 0x0000000000544f5b in DetectRun (th_v=0x7f3403453710, de_ctx=0x7f341a146110, det_ctx=0x7f31f3dfe400, p=0x7f31eeddde30) at detect.c:126
|
|
#8 0x0000000000544c2a in DetectFlow (tv=0x7f3403453710, de_ctx=0x7f341a146110, det_ctx=0x7f31f3dfe400, p=0x7f31eeddde30) at detect.c:1591
|
|
#9 0x0000000000544b04 in Detect (tv=0x7f3403453710, p=0x7f31eeddde30, data=0x7f31f3dfe400) at detect.c:1665
|
|
#10 0x00000000005f157e in FlowWorker (tv=0x7f3403453710, p=0x7f31eeddde30, data=0x7f31eee33b00) at flow-worker.c:540
|
|
#11 0x00000000006814b4 in TmThreadsSlotVarRun (tv=0x7f3403453710, p=0x7f31eeddde30, slot=0x7f3418fd6090) at tm-threads.c:117
|
|
#12 0x000000000064e0ce in TmThreadsSlotProcessPkt (tv=0x7f3403453710, s=0x7f3418fd6090, p=0x7f31eeddde30) at ./tm-threads.h:192
|
|
#13 0x000000000064d02e in AFPParsePacketV3 (ptv=0x7f31fbfff600, pbd=0x7f2cedb00000, ppd=0x7f2cedb335d8) at source-af-packet.c:1113
|
|
#14 0x000000000064cbb9 in AFPWalkBlock (ptv=0x7f31fbfff600, pbd=0x7f2cedb00000) at source-af-packet.c:1128
|
|
#15 0x000000000064afb7 in AFPReadFromRingV3 (ptv=0x7f31fbfff600) at source-af-packet.c:1178
|
|
--Type <RET> for more, q to quit, c to continue without paging--
|
|
#16 0x000000000064a337 in ReceiveAFPLoop (tv=0x7f3403453710, data=0x7f31fbfff600, slot=0x7f3418fcbfa0) at source-af-packet.c:1571
|
|
#17 0x0000000000686887 in TmThreadsSlotPktAcqLoop (td=0x7f3403453710) at tm-threads.c:312
|
|
#18 0x00007f34e4448fa3 in start_thread (arg=<optimized out>) at pthread_create.c:486
|
|
#19 0x00007f34e35f34cf in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:95
|
|
|
|
Thread 22 (Thread 0x7f322eae0700 (LWP 20745)):
|
|
#0 0x00007f34e3e0eee6 in ?? () from /lib/x86_64-linux-gnu/libhs.so.5
|
|
#1 0x00007f34e3e46b85 in ?? () from /lib/x86_64-linux-gnu/libhs.so.5
|
|
#2 0x00007f34e3d46b16 in avx512_hs_scan () from /lib/x86_64-linux-gnu/libhs.so.5
|
|
#3 0x00000000006d9764 in SCHSSearch (mpm_ctx=0x7f33fba4d870, mpm_thread_ctx=0x7f3203dfe4e8, pmq=0x7f3203dfe518, buf=0x7f2cf9b9e420 <error: Cannot access memory at address 0x7f2cf9b9e420>, buflen=1460) at util-mpm-hs.c:946
|
|
#4 0x0000000000580551 in PrefilterPktStream (det_ctx=0x7f3203dfe400, p=0x7f31feddde30, pectx=0x7f33fba4d870) at detect-engine-payload.c:102
|
|
#5 0x0000000000583eb3 in Prefilter (det_ctx=0x7f3203dfe400, sgh=0x7f33fb93e380, p=0x7f31feddde30, flags=8 '\b') at detect-engine-prefilter.c:169
|
|
#6 0x00000000005458da in DetectRunPrefilterPkt (tv=0x7f3413788780, de_ctx=0x7f341a146110, det_ctx=0x7f3203dfe400, p=0x7f31feddde30, scratch=0x7f322eadf660) at detect.c:682
|
|
#7 0x0000000000544f5b in DetectRun (th_v=0x7f3413788780, de_ctx=0x7f341a146110, det_ctx=0x7f3203dfe400, p=0x7f31feddde30) at detect.c:126
|
|
#8 0x0000000000544c2a in DetectFlow (tv=0x7f3413788780, de_ctx=0x7f341a146110, det_ctx=0x7f3203dfe400, p=0x7f31feddde30) at detect.c:1591
|
|
#9 0x0000000000544b04 in Detect (tv=0x7f3413788780, p=0x7f31feddde30, data=0x7f3203dfe400) at detect.c:1665
|
|
#10 0x00000000005f157e in FlowWorker (tv=0x7f3413788780, p=0x7f31feddde30, data=0x7f31fee33b00) at flow-worker.c:540
|
|
#11 0x00000000006814b4 in TmThreadsSlotVarRun (tv=0x7f3413788780, p=0x7f31feddde30, slot=0x7f340f0e6390) at tm-threads.c:117
|
|
#12 0x000000000064e0ce in TmThreadsSlotProcessPkt (tv=0x7f3413788780, s=0x7f340f0e6390, p=0x7f31feddde30) at ./tm-threads.h:192
|
|
#13 0x000000000064d02e in AFPParsePacketV3 (ptv=0x7f320bfff600, pbd=0x7f2cf9b00000, ppd=0x7f2cf9b9e398) at source-af-packet.c:1113
|
|
#14 0x000000000064cbb9 in AFPWalkBlock (ptv=0x7f320bfff600, pbd=0x7f2cf9b00000) at source-af-packet.c:1128
|
|
#15 0x000000000064afb7 in AFPReadFromRingV3 (ptv=0x7f320bfff600) at source-af-packet.c:1178
|
|
#16 0x000000000064a337 in ReceiveAFPLoop (tv=0x7f3413788780, data=0x7f320bfff600, slot=0x7f34018cfb70) at source-af-packet.c:1571
|
|
#17 0x0000000000686887 in TmThreadsSlotPktAcqLoop (td=0x7f3413788780) at tm-threads.c:312
|
|
#18 0x00007f34e4448fa3 in start_thread (arg=<optimized out>) at pthread_create.c:486
|
|
#19 0x00007f34e35f34cf in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:95
|
|
|
|
Thread 21 (Thread 0x7f32c58a5700 (LWP 20737)):
|
|
#0 0x00007f34e35e8819 in __GI___poll (fds=0x7f32c58a4a00, nfds=1, timeout=100) at ../sysdeps/unix/sysv/linux/poll.c:29
|
|
#1 0x000000000064a19d in ReceiveAFPLoop (tv=0x7f34065989a0, data=0x7f3293fff600, slot=0x7f34176f8000) at source-af-packet.c:1544
|
|
#2 0x0000000000686887 in TmThreadsSlotPktAcqLoop (td=0x7f34065989a0) at tm-threads.c:312
|
|
#3 0x00007f34e4448fa3 in start_thread (arg=<optimized out>) at pthread_create.c:486
|
|
#4 0x00007f34e35f34cf in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:95
|
|
|
|
Thread 20 (Thread 0x7f331bfff700 (LWP 20729)):
|
|
#0 0x00007f34e35e8819 in __GI___poll (fds=0x7f331bffea00, nfds=1, timeout=100) at ../sysdeps/unix/sysv/linux/poll.c:29
|
|
#1 0x000000000064a19d in ReceiveAFPLoop (tv=0x7f3418817b50, data=0x7f3313fff600, slot=0x7f3400045190) at source-af-packet.c:1544
|
|
#2 0x0000000000686887 in TmThreadsSlotPktAcqLoop (td=0x7f3418817b50) at tm-threads.c:312
|
|
#3 0x00007f34e4448fa3 in start_thread (arg=<optimized out>) at pthread_create.c:486
|
|
#4 0x00007f34e35f34cf in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:95
|
|
|
|
Thread 19 (Thread 0x7f3056ae0700 (LWP 20777)):
|
|
#0 0x00007f34e35e8819 in __GI___poll (fds=0x7f3056adfa00, nfds=1, timeout=100) at ../sysdeps/unix/sysv/linux/poll.c:29
|
|
#1 0x000000000064a19d in ReceiveAFPLoop (tv=0x7f3407493ad0, data=0x7f3033fff600, slot=0x7f3413d8bd60) at source-af-packet.c:1544
|
|
#2 0x0000000000686887 in TmThreadsSlotPktAcqLoop (td=0x7f3407493ad0) at tm-threads.c:312
|
|
#3 0x00007f34e4448fa3 in start_thread (arg=<optimized out>) at pthread_create.c:486
|
|
#4 0x00007f34e35f34cf in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:95
|
|
|
|
Thread 18 (Thread 0x7f331aae0700 (LWP 20731)):
|
|
#0 0x00007f34e35e8819 in __GI___poll (fds=0x7f331aadfa00, nfds=1, timeout=100) at ../sysdeps/unix/sysv/linux/poll.c:29
|
|
#1 0x000000000064a19d in ReceiveAFPLoop (tv=0x7f34185db5e0, data=0x7f32f7fff600, slot=0x7f3404914640) at source-af-packet.c:1544
|
|
#2 0x0000000000686887 in TmThreadsSlotPktAcqLoop (td=0x7f34185db5e0) at tm-threads.c:312
|
|
#3 0x00007f34e4448fa3 in start_thread (arg=<optimized out>) at pthread_create.c:486
|
|
#4 0x00007f34e35f34cf in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:95
|
|
|
|
Thread 17 (Thread 0x7f33b3fff700 (LWP 20720)):
|
|
--Type <RET> for more, q to quit, c to continue without paging--
|
|
#0 0x00007f34e35e8819 in __GI___poll (fds=0x7f33b3ffea00, nfds=1, timeout=100) at ../sysdeps/unix/sysv/linux/poll.c:29
|
|
#1 0x000000000064a19d in ReceiveAFPLoop (tv=0x7f33ecf4d090, data=0x7f33abfff600, slot=0x7f34174a5950) at source-af-packet.c:1544
|
|
#2 0x0000000000686887 in TmThreadsSlotPktAcqLoop (td=0x7f33ecf4d090) at tm-threads.c:312
|
|
#3 0x00007f34e4448fa3 in start_thread (arg=<optimized out>) at pthread_create.c:486
|
|
#4 0x00007f34e35f34cf in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:95
|
|
|
|
Thread 16 (Thread 0x7f32c72e1700 (LWP 20735)):
|
|
#0 0x00007f34e35e8819 in __GI___poll (fds=0x7f32c72e0a00, nfds=1, timeout=100) at ../sysdeps/unix/sysv/linux/poll.c:29
|
|
#1 0x000000000064a19d in ReceiveAFPLoop (tv=0x7f3402454180, data=0x7f32b3fff600, slot=0x7f3408aea1e0) at source-af-packet.c:1544
|
|
#2 0x0000000000686887 in TmThreadsSlotPktAcqLoop (td=0x7f3402454180) at tm-threads.c:312
|
|
#3 0x00007f34e4448fa3 in start_thread (arg=<optimized out>) at pthread_create.c:486
|
|
#4 0x00007f34e35f34cf in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:95
|
|
|
|
Thread 15 (Thread 0x7f3272dc4700 (LWP 20740)):
|
|
#0 0x00007f34e35e8819 in __GI___poll (fds=0x7f3272dc3a00, nfds=1, timeout=100) at ../sysdeps/unix/sysv/linux/poll.c:29
|
|
#1 0x000000000064a19d in ReceiveAFPLoop (tv=0x7f34027b4180, data=0x7f325ffff600, slot=0x7f340d1dbd20) at source-af-packet.c:1544
|
|
#2 0x0000000000686887 in TmThreadsSlotPktAcqLoop (td=0x7f34027b4180) at tm-threads.c:312
|
|
#3 0x00007f34e4448fa3 in start_thread (arg=<optimized out>) at pthread_create.c:486
|
|
#4 0x00007f34e35f34cf in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:95
|
|
|
|
Thread 14 (Thread 0x7f335edc4700 (LWP 20726)):
|
|
#0 0x00007f34e35e8819 in __GI___poll (fds=0x7f335edc3a00, nfds=1, timeout=100) at ../sysdeps/unix/sysv/linux/poll.c:29
|
|
#1 0x000000000064a19d in ReceiveAFPLoop (tv=0x7f3412f545a0, data=0x7f334bfff600, slot=0x7f3411b7bc80) at source-af-packet.c:1544
|
|
#2 0x0000000000686887 in TmThreadsSlotPktAcqLoop (td=0x7f3412f545a0) at tm-threads.c:312
|
|
#3 0x00007f34e4448fa3 in start_thread (arg=<optimized out>) at pthread_create.c:486
|
|
#4 0x00007f34e35f34cf in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:95
|
|
|
|
Thread 13 (Thread 0x7f32720a6700 (LWP 20741)):
|
|
#0 0x00007f34e35e8819 in __GI___poll (fds=0x7f32720a5a00, nfds=1, timeout=100) at ../sysdeps/unix/sysv/linux/poll.c:29
|
|
#1 0x000000000064a19d in ReceiveAFPLoop (tv=0x7f3405345a90, data=0x7f324ffff600, slot=0x7f3411ce33c0) at source-af-packet.c:1544
|
|
#2 0x0000000000686887 in TmThreadsSlotPktAcqLoop (td=0x7f3405345a90) at tm-threads.c:312
|
|
#3 0x00007f34e4448fa3 in start_thread (arg=<optimized out>) at pthread_create.c:486
|
|
#4 0x00007f34e35f34cf in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:95
|
|
|
|
Thread 12 (Thread 0x7f309a0a6700 (LWP 20773)):
|
|
#0 0x00007f34e35e8819 in __GI___poll (fds=0x7f309a0a5a00, nfds=1, timeout=100) at ../sysdeps/unix/sysv/linux/poll.c:29
|
|
#1 0x000000000064a19d in ReceiveAFPLoop (tv=0x7f33fc445540, data=0x7f3077fff600, slot=0x7f33fe9e47f0) at source-af-packet.c:1544
|
|
#2 0x0000000000686887 in TmThreadsSlotPktAcqLoop (td=0x7f33fc445540) at tm-threads.c:312
|
|
#3 0x00007f34e4448fa3 in start_thread (arg=<optimized out>) at pthread_create.c:486
|
|
#4 0x00007f34e35f34cf in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:95
|
|
|
|
Thread 11 (Thread 0x7f33190a4700 (LWP 20733)):
|
|
#0 0x00007f34e35e8819 in __GI___poll (fds=0x7f33190a3a00, nfds=1, timeout=100) at ../sysdeps/unix/sysv/linux/poll.c:29
|
|
#1 0x000000000064a19d in ReceiveAFPLoop (tv=0x7f34027f7610, data=0x7f32d7fff600, slot=0x7f33fe2ab880) at source-af-packet.c:1544
|
|
#2 0x0000000000686887 in TmThreadsSlotPktAcqLoop (td=0x7f34027f7610) at tm-threads.c:312
|
|
#3 0x00007f34e4448fa3 in start_thread (arg=<optimized out>) at pthread_create.c:486
|
|
#4 0x00007f34e35f34cf in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:95
|
|
|
|
Thread 10 (Thread 0x7f3143fff700 (LWP 20761)):
|
|
#0 PacketPoolGetPacket () at tmqh-packetpool.c:195
|
|
#1 0x00000000005230fd in PacketGetFromQueueOrAlloc () at decode.c:185
|
|
#2 0x000000000064cc89 in AFPParsePacketV3 (ptv=0x7f313bfff600, pbd=0x7f2c17a00000, ppd=0x7f2c17a71098) at source-af-packet.c:1038
|
|
#3 0x000000000064cbb9 in AFPWalkBlock (ptv=0x7f313bfff600, pbd=0x7f2c17a00000) at source-af-packet.c:1128
|
|
#4 0x000000000064afb7 in AFPReadFromRingV3 (ptv=0x7f313bfff600) at source-af-packet.c:1178
|
|
#5 0x000000000064a337 in ReceiveAFPLoop (tv=0x7f34178a4c30, data=0x7f313bfff600, slot=0x7f33fef851c0) at source-af-packet.c:1571
|
|
#6 0x0000000000686887 in TmThreadsSlotPktAcqLoop (td=0x7f34178a4c30) at tm-threads.c:312
|
|
--Type <RET> for more, q to quit, c to continue without paging--
|
|
#7 0x00007f34e4448fa3 in start_thread (arg=<optimized out>) at pthread_create.c:486
|
|
#8 0x00007f34e35f34cf in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:95
|
|
|
|
Thread 9 (Thread 0x7f309adc4700 (LWP 20772)):
|
|
#0 0x00007f34e35e8819 in __GI___poll (fds=0x7f309adc3a00, nfds=1, timeout=100) at ../sysdeps/unix/sysv/linux/poll.c:29
|
|
#1 0x000000000064a19d in ReceiveAFPLoop (tv=0x7f33fd0d80a0, data=0x7f3087fff600, slot=0x7f340c074e30) at source-af-packet.c:1544
|
|
#2 0x0000000000686887 in TmThreadsSlotPktAcqLoop (td=0x7f33fd0d80a0) at tm-threads.c:312
|
|
#3 0x00007f34e4448fa3 in start_thread (arg=<optimized out>) at pthread_create.c:486
|
|
#4 0x00007f34e35f34cf in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:95
|
|
|
|
Thread 8 (Thread 0x7f3099388700 (LWP 20774)):
|
|
#0 0x00007f34e3eb6409 in ?? () from /lib/x86_64-linux-gnu/libhs.so.5
|
|
#1 0x00007f34e3d57a21 in ?? () from /lib/x86_64-linux-gnu/libhs.so.5
|
|
#2 0x00007f34e3e46b0c in ?? () from /lib/x86_64-linux-gnu/libhs.so.5
|
|
#3 0x00007f34e3d46b16 in avx512_hs_scan () from /lib/x86_64-linux-gnu/libhs.so.5
|
|
#4 0x00000000006d9764 in SCHSSearch (mpm_ctx=0x7f33fbbaa850, mpm_thread_ctx=0x7f305fdfe4e8, pmq=0x7f305fdfe518, buf=0x7f2b0f675090 <error: Cannot access memory at address 0x7f2b0f675090>, buflen=264) at util-mpm-hs.c:946
|
|
#5 0x0000000000580649 in PrefilterPktPayload (det_ctx=0x7f305fdfe400, p=0x7f305addde30, pectx=0x7f33fbbaa850) at detect-engine-payload.c:125
|
|
#6 0x0000000000583eb3 in Prefilter (det_ctx=0x7f305fdfe400, sgh=0x7f33fb2a8b10, p=0x7f305addde30, flags=4 '\004') at detect-engine-prefilter.c:169
|
|
#7 0x00000000005458da in DetectRunPrefilterPkt (tv=0x7f34159f1350, de_ctx=0x7f341a146110, det_ctx=0x7f305fdfe400, p=0x7f305addde30, scratch=0x7f3099387660) at detect.c:682
|
|
#8 0x0000000000544f5b in DetectRun (th_v=0x7f34159f1350, de_ctx=0x7f341a146110, det_ctx=0x7f305fdfe400, p=0x7f305addde30) at detect.c:126
|
|
#9 0x0000000000544c2a in DetectFlow (tv=0x7f34159f1350, de_ctx=0x7f341a146110, det_ctx=0x7f305fdfe400, p=0x7f305addde30) at detect.c:1591
|
|
#10 0x0000000000544b04 in Detect (tv=0x7f34159f1350, p=0x7f305addde30, data=0x7f305fdfe400) at detect.c:1665
|
|
#11 0x00000000005f157e in FlowWorker (tv=0x7f34159f1350, p=0x7f305addde30, data=0x7f305ae33b00) at flow-worker.c:540
|
|
#12 0x00000000006814b4 in TmThreadsSlotVarRun (tv=0x7f34159f1350, p=0x7f305addde30, slot=0x7f3413bc5ca0) at tm-threads.c:117
|
|
#13 0x000000000064e0ce in TmThreadsSlotProcessPkt (tv=0x7f34159f1350, s=0x7f3413bc5ca0, p=0x7f305addde30) at ./tm-threads.h:192
|
|
#14 0x000000000064d02e in AFPParsePacketV3 (ptv=0x7f3067fff600, pbd=0x7f2b0f600000, ppd=0x7f2b0f675000) at source-af-packet.c:1113
|
|
#15 0x000000000064cbb9 in AFPWalkBlock (ptv=0x7f3067fff600, pbd=0x7f2b0f600000) at source-af-packet.c:1128
|
|
#16 0x000000000064afb7 in AFPReadFromRingV3 (ptv=0x7f3067fff600) at source-af-packet.c:1178
|
|
#17 0x000000000064a337 in ReceiveAFPLoop (tv=0x7f34159f1350, data=0x7f3067fff600, slot=0x7f3403717cd0) at source-af-packet.c:1571
|
|
#18 0x0000000000686887 in TmThreadsSlotPktAcqLoop (td=0x7f34159f1350) at tm-threads.c:312
|
|
#19 0x00007f34e4448fa3 in start_thread (arg=<optimized out>) at pthread_create.c:486
|
|
#20 0x00007f34e35f34cf in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:95
|
|
|
|
Thread 7 (Thread 0x7f32c65c3700 (LWP 20736)):
|
|
#0 0x00007f34e35e8819 in __GI___poll (fds=0x7f32c65c2a00, nfds=1, timeout=100) at ../sysdeps/unix/sysv/linux/poll.c:29
|
|
#1 0x000000000064a19d in ReceiveAFPLoop (tv=0x7f34062ed0c0, data=0x7f32a3fff600, slot=0x7f340d09efa0) at source-af-packet.c:1544
|
|
#2 0x0000000000686887 in TmThreadsSlotPktAcqLoop (td=0x7f34062ed0c0) at tm-threads.c:312
|
|
#3 0x00007f34e4448fa3 in start_thread (arg=<optimized out>) at pthread_create.c:486
|
|
#4 0x00007f34e35f34cf in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:95
|
|
|
|
Thread 6 (Thread 0x7f2f4dffb700 (LWP 20803)):
|
|
#0 0x00007f34e35eb037 in __GI___select (nfds=18, readfds=0x7f2f4dffa988, writefds=0x0, exceptfds=0x0, timeout=0x7f2f4dffaa10) at ../sysdeps/unix/sysv/linux/select.c:41
|
|
#1 0x00000000006893f9 in UnixMain (this=0xb4e890 <command>) at unix-manager.c:650
|
|
#2 0x0000000000688f8f in UnixManager (th_v=0x7f33ff702120, thread_data=0x7f2f38000de0) at unix-manager.c:1125
|
|
#3 0x0000000000686c56 in TmThreadsManagement (td=0x7f33ff702120) at tm-threads.c:541
|
|
#4 0x00007f34e4448fa3 in start_thread (arg=<optimized out>) at pthread_create.c:486
|
|
#5 0x00007f34e35f34cf in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:95
|
|
|
|
Thread 5 (Thread 0x7f2f4e7fc700 (LWP 20802)):
|
|
#0 futex_abstimed_wait_cancelable (private=0, abstime=0x7f2f4e7fbac8, expected=0, futex_word=0x7f33eccd96b8) at ../sysdeps/unix/sysv/linux/futex-internal.h:205
|
|
#1 __pthread_cond_wait_common (abstime=0x7f2f4e7fbac8, mutex=0x7f33edd66c10, cond=0x7f33eccd9690) at pthread_cond_wait.c:539
|
|
#2 __pthread_cond_timedwait (cond=0x7f33eccd9690, mutex=0x7f33edd66c10, abstime=0x7f2f4e7fbac8) at pthread_cond_wait.c:667
|
|
#3 0x000000000051c431 in StatsMgmtThread (arg=0x7f3400efe2c0) at counters.c:415
|
|
#4 0x00007f34e4448fa3 in start_thread (arg=<optimized out>) at pthread_create.c:486
|
|
#5 0x00007f34e35f34cf in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:95
|
|
|
|
--Type <RET> for more, q to quit, c to continue without paging--
|
|
Thread 4 (Thread 0x7f33e1051700 (LWP 20719)):
|
|
#0 suricata::dcerpc::dcerpc_udp::DCERPCUDPState::get_tx (self=0x7f33ac3a3f70, tx_id=702) at src/dcerpc/dcerpc_udp.rs:109
|
|
#1 suricata::dcerpc::dcerpc_udp::rs_dcerpc_udp_get_tx (state=0x7f33ac3a3f70, tx_id=702) at src/dcerpc/dcerpc_udp.rs:276
|
|
#2 0x00000000004d034d in RustDCERPCUDPGetTx (state=0x7f33ac3a3f70, tx_id=702) at app-layer-dcerpc-udp.c:87
|
|
#3 0x0000000000506fd6 in AppLayerParserGetTx (ipproto=17 '\021', alproto=9, alstate=0x7f33ac3a3f70, tx_id=702) at app-layer-parser.c:1077
|
|
#4 0x0000000000505db0 in AppLayerDefaultGetTxIterator (ipproto=17 '\021', alproto=9, alstate=0x7f33ac3a3f70, min_tx_id=702, max_tx_id=949, state=0x7f33e10505b8) at app-layer-parser.c:657
|
|
#5 0x0000000000545d91 in DetectRunTx (tv=0x7f33ec1eab10, de_ctx=0x7f341a146110, det_ctx=0x7f33bbdfe330, p=0x7f33b6ddde30, f=0x7f21ea044f80, scratch=0x7f33e1050660) at detect.c:1304
|
|
#6 0x0000000000544fe5 in DetectRun (th_v=0x7f33ec1eab10, de_ctx=0x7f341a146110, det_ctx=0x7f33bbdfe330, p=0x7f33b6ddde30) at detect.c:136
|
|
#7 0x0000000000544c2a in DetectFlow (tv=0x7f33ec1eab10, de_ctx=0x7f341a146110, det_ctx=0x7f33bbdfe330, p=0x7f33b6ddde30) at detect.c:1591
|
|
#8 0x0000000000544b04 in Detect (tv=0x7f33ec1eab10, p=0x7f33b6ddde30, data=0x7f33bbdfe330) at detect.c:1665
|
|
#9 0x00000000005f157e in FlowWorker (tv=0x7f33ec1eab10, p=0x7f33b6ddde30, data=0x7f33b6e33b00) at flow-worker.c:540
|
|
#10 0x00000000006814b4 in TmThreadsSlotVarRun (tv=0x7f33ec1eab10, p=0x7f33b6ddde30, slot=0x7f3415d33520) at tm-threads.c:117
|
|
#11 0x000000000064e0ce in TmThreadsSlotProcessPkt (tv=0x7f33ec1eab10, s=0x7f3415d33520, p=0x7f33b6ddde30) at ./tm-threads.h:192
|
|
#12 0x000000000064d02e in AFPParsePacketV3 (ptv=0x7f33c3fff600, pbd=0x7f2f05100000, ppd=0x7f2f05161cc0) at source-af-packet.c:1113
|
|
#13 0x000000000064cbb9 in AFPWalkBlock (ptv=0x7f33c3fff600, pbd=0x7f2f05100000) at source-af-packet.c:1128
|
|
#14 0x000000000064afb7 in AFPReadFromRingV3 (ptv=0x7f33c3fff600) at source-af-packet.c:1178
|
|
#15 0x000000000064a337 in ReceiveAFPLoop (tv=0x7f33ec1eab10, data=0x7f33c3fff600, slot=0x7f341733fe70) at source-af-packet.c:1571
|
|
#16 0x0000000000686887 in TmThreadsSlotPktAcqLoop (td=0x7f33ec1eab10) at tm-threads.c:312
|
|
#17 0x00007f34e4448fa3 in start_thread (arg=<optimized out>) at pthread_create.c:486
|
|
#18 0x00007f34e35f34cf in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:95
|
|
|
|
Thread 3 (Thread 0x7f2f4effd700 (LWP 20801)):
|
|
#0 futex_abstimed_wait_cancelable (private=0, abstime=0x7f2f4effcad8, expected=0, futex_word=0x7f33e9cfa128) at ../sysdeps/unix/sysv/linux/futex-internal.h:205
|
|
#1 __pthread_cond_wait_common (abstime=0x7f2f4effcad8, mutex=0x7f33e9cf3f50, cond=0x7f33e9cfa100) at pthread_cond_wait.c:539
|
|
#2 __pthread_cond_timedwait (cond=0x7f33e9cfa100, mutex=0x7f33e9cf3f50, abstime=0x7f2f4effcad8) at pthread_cond_wait.c:667
|
|
#3 0x000000000051bf8a in StatsWakeupThread (arg=0x7f3401ab8ec0) at counters.c:487
|
|
#4 0x00007f34e4448fa3 in start_thread (arg=<optimized out>) at pthread_create.c:486
|
|
#5 0x00007f34e35f34cf in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:95
|
|
|
|
Thread 2 (Thread 0x7f34e3372f80 (LWP 19886)):
|
|
#0 0x00007f34e35c0720 in __GI___nanosleep (requested_time=requested_time@entry=0x7fffdc0b1b70, remaining=remaining@entry=0x0) at ../sysdeps/unix/sysv/linux/nanosleep.c:28
|
|
#1 0x00007f34e35eb874 in usleep (useconds=<optimized out>) at ../sysdeps/posix/usleep.c:32
|
|
#2 0x000000000067c642 in SuricataMainLoop (suri=0xb58230 <suricata>) at suricata.c:2648
|
|
#3 0x0000000000679659 in SuricataMain (argc=9, argv=0x7fffdc0b1d28) at suricata.c:2809
|
|
#4 0x00000000004c8982 in main (argc=9, argv=0x7fffdc0b1d28) at main.c:22
|
|
|
|
Thread 1 (Thread 0x7f33b18a5700 (LWP 20723)):
|
|
#0 __GI_raise (sig=sig@entry=6) at ../sysdeps/unix/sysv/linux/raise.c:50
|
|
#1 0x00007f34e351c535 in __GI_abort () at abort.c:79
|
|
|
|
|
|
|
|
|
|
#2 0x000000000091ba67 in std::sys::unix::abort_internal () at library/std/src/sys/unix/mod.rs:235
|
|
#3 0x000000000090a745 in std::sys_common::util::abort () at library/std/src/sys_common/util.rs:19
|
|
#4 0x000000000090c7be in std::panicking::rust_panic () at library/std/src/panicking.rs:644
|
|
#5 0x000000000090c636 in std::panicking::rust_panic_with_hook () at library/std/src/panicking.rs:612
|
|
#6 0x000000000090c0d7 in std::panicking::begin_panic_handler::{{closure}} () at library/std/src/panicking.rs:497
|
|
#7 0x000000000090713c in std::sys_common::backtrace::__rust_end_short_backtrace () at library/std/src/sys_common/backtrace.rs:141
|
|
#8 0x000000000090c069 in rust_begin_unwind () at library/std/src/panicking.rs:495
|
|
#9 0x0000000000972991 in core::panicking::panic_fmt () at library/core/src/panicking.rs:92
|
|
#10 0x00000000009728dd in core::panicking::panic () at library/core/src/panicking.rs:50
|
|
#11 0x00000000007feb23 in <brotli_decompressor::reader::DecompressorCustomIo<ErrType,R,BufferType,AllocU8,AllocU32,AllocHC> as brotli_decompressor::io_wrappers::CustomRead<ErrType>>::read (self=0x7f2221d2fcf0, buf=...)
|
|
at /rustc/e1884a8e3c3e813aada8254edfa120e85bf5ffca/library/core/src/option.rs:386
|
|
#12 <brotli_decompressor::reader::DecompressorCustomAlloc<R,BufferType,AllocU8,AllocU32,AllocHC> as std::io::Read>::read (self=0x7f2221d2fcf0, buf=...)
|
|
at /root/.cargo/registry/src/github.com-1ecc6299db9ec823/brotli-decompressor-2.3.1/src/reader.rs:85
|
|
#13 <brotli_decompressor::reader::Decompressor<R> as std::io::Read>::read (self=0x7f2221d2fcf0, buf=...) at /root/.cargo/registry/src/github.com-1ecc6299db9ec823/brotli-decompressor-2.3.1/src/reader.rs:178
|
|
#14 0x00000000007d321d in suricata::http2::decompression::http2_decompress (decoder=0x7f2221d2fcf0, input=..., output=0x7f33b18a3fe0) at src/http2/decompression.rs:120
|
|
#15 suricata::http2::decompression::HTTP2DecoderHalf::decompress (self=0x7f2221d2fce8, input=..., output=0x7f33b18a3fe0) at src/http2/decompression.rs:178
|
|
#16 0x0000000000774739 in suricata::http2::decompression::HTTP2Decoder::decompress (self=<optimized out>, input=..., output=0x7f33b18a3fe0, dir=8) at src/http2/decompression.rs:211
|
|
--Type <RET> for more, q to quit, c to continue without paging--
|
|
#17 suricata::http2::http2::HTTP2Transaction::decompress (self=<optimized out>, input=..., dir=8, sfcm=0xb3b1f0 <sfc>, over=<optimized out>, files=0x7f23f6406080, flags=8706) at src/http2/http2.rs:181
|
|
#18 suricata::http2::http2::HTTP2State::parse_frames (self=<optimized out>, input=..., il=<optimized out>, dir=<optimized out>) at src/http2/http2.rs:812
|
|
#19 0x0000000000775245 in suricata::http2::http2::HTTP2State::parse_tc (self=0x7f23f6405ff0, input=...) at src/http2/http2.rs:912
|
|
#20 suricata::http2::http2::rs_http2_parse_tc (flow=<optimized out>, state=0x7f23f6405ff0, _pstate=<optimized out>, input=<optimized out>, input_len=3155, _data=<optimized out>, _flags=<optimized out>) at src/http2/http2.rs:1029
|
|
#21 0x00000000005078e7 in AppLayerParserParse (tv=0x7f33e75f5650, alp_tctx=0x7f3372e99290, f=0x7f2184491490, alproto=29, flags=8 '\b', input=0x7f2221394281 "", input_len=3155) at app-layer-parser.c:1273
|
|
#22 0x00000000004cd8fa in AppLayerHandleTCPData (tv=0x7f33e75f5650, ra_ctx=0x7f3372e74df0, p=0x7f3372ddde30, f=0x7f2184491490, ssn=0x7f2606faf7d0, stream=0x7f33b18a43d0, data=0x7f2221394281 "", data_len=3155, flags=8 '\b')
|
|
at app-layer.c:706
|
|
#23 0x00000000006730b6 in ReassembleUpdateAppLayer (tv=0x7f33e75f5650, ra_ctx=0x7f3372e74df0, ssn=0x7f2606faf7d0, stream=0x7f33b18a43d0, p=0x7f3372ddde30, dir=UPDATE_DIR_OPPOSING) at stream-tcp-reassemble.c:1174
|
|
#24 0x0000000000672a9d in StreamTcpReassembleAppLayer (tv=0x7f33e75f5650, ra_ctx=0x7f3372e74df0, ssn=0x7f2606faf7d0, stream=0x7f2606faf7e0, p=0x7f3372ddde30, dir=UPDATE_DIR_OPPOSING) at stream-tcp-reassemble.c:1237
|
|
#25 0x000000000067482b in StreamTcpReassembleHandleSegmentUpdateACK (tv=0x7f33e75f5650, ra_ctx=0x7f3372e74df0, ssn=0x7f2606faf7d0, stream=0x7f2606faf7e0, p=0x7f3372ddde30) at stream-tcp-reassemble.c:1808
|
|
#26 0x0000000000674689 in StreamTcpReassembleHandleSegment (tv=0x7f33e75f5650, ra_ctx=0x7f3372e74df0, ssn=0x7f2606faf7d0, stream=0x7f2606faf860, p=0x7f3372ddde30, pq=0x7f3372e74ae8) at stream-tcp-reassemble.c:1851
|
|
#27 0x000000000066c56d in HandleEstablishedPacketToServer (tv=0x7f33e75f5650, ssn=0x7f2606faf7d0, p=0x7f3372ddde30, stt=0x7f3372e74ae0, pq=0x7f3372e74ae8) at stream-tcp.c:2318
|
|
#28 0x0000000000660f36 in StreamTcpPacketStateEstablished (tv=0x7f33e75f5650, p=0x7f3372ddde30, stt=0x7f3372e74ae0, ssn=0x7f2606faf7d0, pq=0x7f3372e74ae8) at stream-tcp.c:2688
|
|
#29 0x000000000065b2cd in StreamTcpStateDispatch (tv=0x7f33e75f5650, p=0x7f3372ddde30, stt=0x7f3372e74ae0, ssn=0x7f2606faf7d0, pq=0x7f3372e74ae8, state=4 '\004') at stream-tcp.c:4703
|
|
#30 0x0000000000659349 in StreamTcpPacket (tv=0x7f33e75f5650, p=0x7f3372ddde30, stt=0x7f3372e74ae0, pq=0x7f3372e33b30) at stream-tcp.c:4889
|
|
#31 0x000000000065b95a in StreamTcp (tv=0x7f33e75f5650, p=0x7f3372ddde30, data=0x7f3372e74ae0, pq=0x7f3372e33b30) at stream-tcp.c:5225
|
|
#32 0x00000000005f1930 in FlowWorkerStreamTCPUpdate (tv=0x7f33e75f5650, fw=0x7f3372e33b00, p=0x7f3372ddde30, detect_thread=0x7f3377dfe400) at flow-worker.c:364
|
|
#33 0x00000000005f14f5 in FlowWorker (tv=0x7f33e75f5650, p=0x7f3372ddde30, data=0x7f3372e33b00) at flow-worker.c:524
|
|
#34 0x00000000006814b4 in TmThreadsSlotVarRun (tv=0x7f33e75f5650, p=0x7f3372ddde30, slot=0x7f341327a0c0) at tm-threads.c:117
|
|
#35 0x000000000064e0ce in TmThreadsSlotProcessPkt (tv=0x7f33e75f5650, s=0x7f341327a0c0, p=0x7f3372ddde30) at ./tm-threads.h:192
|
|
#36 0x000000000064d02e in AFPParsePacketV3 (ptv=0x7f337ffff600, pbd=0x7f2eab100000, ppd=0x7f2eab15ad10) at source-af-packet.c:1113
|
|
#37 0x000000000064cbb9 in AFPWalkBlock (ptv=0x7f337ffff600, pbd=0x7f2eab100000) at source-af-packet.c:1128
|
|
#38 0x000000000064afb7 in AFPReadFromRingV3 (ptv=0x7f337ffff600) at source-af-packet.c:1178
|
|
#39 0x000000000064a337 in ReceiveAFPLoop (tv=0x7f33e75f5650, data=0x7f337ffff600, slot=0x7f340122d7b0) at source-af-packet.c:1571
|
|
#40 0x0000000000686887 in TmThreadsSlotPktAcqLoop (td=0x7f33e75f5650) at tm-threads.c:312
|
|
#41 0x00007f34e4448fa3 in start_thread (arg=<optimized out>) at pthread_create.c:486
|
|
#42 0x00007f34e35f34cf in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:95
|