Project

General

Profile

Bug #6021

Updated by Jason Ish about 1 year ago

With 6.0.11, rule reloads with AF_PACKET are not finishing until all threads have seen a packet. 

 Original subject: Unable to get message from server after update to 6.0.11 from 6.0.10 

 Original description: 

 
 Hi, I receive error while try to run suricatasc -c reload-rules. On Suricata 6.0.10 works fine, after update to 6.0.11 command stuck for 10 minutes and then throw this error 
 <pre><code class="python"> 
 [root@server-ubuntu /]# suricatasc -c reload-rules 

 Traceback (most recent call last): 
   File "/usr/bin/suricatasc", line 73, in <module> 
     res = sc.send_command(command, arguments) 
   File "/usr/lib/suricata/python/suricata/sc/suricatasc.py", line 156, in send_command 
     raise SuricataReturnException("Unable to get message from server") 
 suricata.sc.suricatasc.SuricataReturnException: Unable to get message from server 
 [root@server-ubuntu /]# 
 </code></pre> 

 After downgrade to 6.0.10 everything works fine 

 <pre><code class="python"> 
 [root@server-ubuntu /]# suricatasc -c reload-rules 
 {"message": "done", "return": "OK"} 
 [root@server-ubuntu /]# 
 </code></pre>

Back