nft delete results in segfault #2789

omkhar · 2022-12-19T17:05:50Z

running nft delete set element results in a segfault. trace attached
nft.strace.zip

omkhar · 2022-12-19T17:06:31Z

cmdline:

sudo strace nft delete element ip raw block-list { 240.0.0.0/4 }

omkhar · 2022-12-23T18:32:45Z

hmm, seems to work today

omkhar@ajaxrouter~ $ sudo strace nft delete element ip raw block-list \{ 5.28.62.85/32 \} execve("/usr/bin/nft", ["nft", "delete", "element", "ip", "raw", "block-list", "{", "5.28.62.85/32", "}"], 0x7ffe784b32c0 /* 14 vars */) = 0 brk(NULL) = 0x5559bec4b000 access("/etc/ld.so.preload", R_OK) = -1 ENOENT (No such file or directory) openat(AT_FDCWD, "/usr/lib64/glibc-hwcaps/x86-64-v2/libnftables.so.1", O_RDONLY|O_CLOEXEC) = -1 ENOENT (No such file or directory) newfstatat(AT_FDCWD, "/usr/lib64/glibc-hwcaps/x86-64-v2", 0x7ffed95df610, 0) = -1 ENOENT (No such file or directory) openat(AT_FDCWD, "/usr/lib64/tls/x86_64/x86_64/libnftables.so.1", O_RDONLY|O_CLOEXEC) = -1 ENOENT (No such file or directory) newfstatat(AT_FDCWD, "/usr/lib64/tls/x86_64/x86_64", 0x7ffed95df610, 0) = -1 ENOENT (No such file or directory) openat(AT_FDCWD, "/usr/lib64/tls/x86_64/libnftables.so.1", O_RDONLY|O_CLOEXEC) = -1 ENOENT (No such file or directory) newfstatat(AT_FDCWD, "/usr/lib64/tls/x86_64", 0x7ffed95df610, 0) = -1 ENOENT (No such file or directory) openat(AT_FDCWD, "/usr/lib64/tls/x86_64/libnftables.so.1", O_RDONLY|O_CLOEXEC) = -1 ENOENT (No such file or directory) newfstatat(AT_FDCWD, "/usr/lib64/tls/x86_64", 0x7ffed95df610, 0) = -1 ENOENT (No such file or directory) openat(AT_FDCWD, "/usr/lib64/tls/libnftables.so.1", O_RDONLY|O_CLOEXEC) = -1 ENOENT (No such file or directory) newfstatat(AT_FDCWD, "/usr/lib64/tls", 0x7ffed95df610, 0) = -1 ENOENT (No such file or directory) openat(AT_FDCWD, "/usr/lib64/x86_64/x86_64/libnftables.so.1", O_RDONLY|O_CLOEXEC) = -1 ENOENT (No such file or directory) newfstatat(AT_FDCWD, "/usr/lib64/x86_64/x86_64", 0x7ffed95df610, 0) = -1 ENOENT (No such file or directory) openat(AT_FDCWD, "/usr/lib64/x86_64/libnftables.so.1", O_RDONLY|O_CLOEXEC) = -1 ENOENT (No such file or directory) newfstatat(AT_FDCWD, "/usr/lib64/x86_64", 0x7ffed95df610, 0) = -1 ENOENT (No such file or directory) openat(AT_FDCWD, "/usr/lib64/x86_64/libnftables.so.1", O_RDONLY|O_CLOEXEC) = -1 ENOENT (No such file or directory) newfstatat(AT_FDCWD, "/usr/lib64/x86_64", 0x7ffed95df610, 0) = -1 ENOENT (No such file or directory) openat(AT_FDCWD, "/usr/lib64/libnftables.so.1", O_RDONLY|O_CLOEXEC) = 3 read(3, "\177ELF\2\1\1\0\0\0\0\0\0\0\0\0\3\0>\0\1\0\0\0\0\0\0\0\0\0\0\0"..., 832) = 832 newfstatat(3, "", {st_mode=S_IFREG|0755, st_size=1020992, ...}, AT_EMPTY_PATH) = 0 mmap(NULL, 8192, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x5559bdfbe000 mmap(NULL, 1057000, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x5559bdeb9000 mmap(0x5559bdebc000, 1040616, PROT_READ, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 3, 0) = 0x5559bdebc000 munmap(0x5559bdeb9000, 12288) = 0 munmap(0x5559bdfbb000, 232) = 0 mprotect(0x5559bded5000, 856064, PROT_NONE) = 0 mmap(0x5559bded8000, 589824, PROT_READ|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 3, 0x1c000) = 0x5559bded8000 mmap(0x5559bdf68000, 241664, PROT_READ, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 3, 0xac000) = 0x5559bdf68000 mmap(0x5559bdfa6000, 77824, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 3, 0xe6000) = 0x5559bdfa6000 mmap(0x5559bdfb9000, 4328, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x5559bdfb9000 close(3) = 0 openat(AT_FDCWD, "/usr/lib64/libreadline.so.8", O_RDONLY|O_CLOEXEC) = 3 read(3, "\177ELF\2\1\1\0\0\0\0\0\0\0\0\0\3\0>\0\1\0\0\0\0\0\0\0\0\0\0\0"..., 832) = 832 newfstatat(3, "", {st_mode=S_IFREG|0755, st_size=296632, ...}, AT_EMPTY_PATH) = 0 mmap(NULL, 300160, PROT_READ, MAP_PRIVATE|MAP_DENYWRITE, 3, 0) = 0x5559bde72000 mmap(0x5559bde89000, 131072, PROT_READ|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 3, 0x17000) = 0x5559bde89000 mmap(0x5559bdea9000, 36864, PROT_READ, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 3, 0x37000) = 0x5559bdea9000 mmap(0x5559bdeb2000, 32768, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 3, 0x40000) = 0x5559bdeb2000 mmap(0x5559bdeba000, 5248, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x5559bdeba000 close(3) = 0 openat(AT_FDCWD, "/usr/lib64/libc.so.6", O_RDONLY|O_CLOEXEC) = 3 read(3, "\177ELF\2\1\1\3\0\0\0\0\0\0\0\0\3\0>\0\1\0\0\0@3\2\0\0\0\0\0"..., 832) = 832 pread64(3, "\6\0\0\0\4\0\0\0@\0\0\0\0\0\0\0@\0\0\0\0\0\0\0@\0\0\0\0\0\0\0"..., 784, 64) = 784 newfstatat(3, "", {st_mode=S_IFREG|0755, st_size=2036808, ...}, AT_EMPTY_PATH) = 0 pread64(3, "\6\0\0\0\4\0\0\0@\0\0\0\0\0\0\0@\0\0\0\0\0\0\0@\0\0\0\0\0\0\0"..., 784, 64) = 784 mmap(NULL, 2088784, PROT_READ, MAP_PRIVATE|MAP_DENYWRITE, 3, 0) = 0x5559bdc74000 mmap(0x5559bdc96000, 1511424, PROT_READ|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 3, 0x22000) = 0x5559bdc96000 mmap(0x5559bde07000, 360448, PROT_READ, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 3, 0x193000) = 0x5559bde07000 mmap(0x5559bde5f000, 24576, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 3, 0x1ea000) = 0x5559bde5f000 mmap(0x5559bde65000, 53072, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x5559bde65000 close(3) = 0 openat(AT_FDCWD, "/var/cache/ldconfig/ld.so.cache", O_RDONLY|O_CLOEXEC) = 3 newfstatat(3, "", {st_mode=S_IFREG|0644, st_size=85394, ...}, AT_EMPTY_PATH) = 0 mmap(NULL, 85394, PROT_READ, MAP_PRIVATE, 3, 0) = 0x5559bdc5f000 close(3) = 0 openat(AT_FDCWD, "/usr/lib64/libmnl.so.0", O_RDONLY|O_CLOEXEC) = 3 read(3, "\177ELF\2\1\1\0\0\0\0\0\0\0\0\0\3\0>\0\1\0\0\0\0\0\0\0\0\0\0\0"..., 832) = 832 newfstatat(3, "", {st_mode=S_IFREG|0755, st_size=26760, ...}, AT_EMPTY_PATH) = 0 mmap(NULL, 28688, PROT_READ, MAP_PRIVATE|MAP_DENYWRITE, 3, 0) = 0x5559bdc57000 mprotect(0x5559bdc59000, 16384, PROT_NONE) = 0 mmap(0x5559bdc59000, 8192, PROT_READ|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 3, 0x2000) = 0x5559bdc59000 mmap(0x5559bdc5b000, 4096, PROT_READ, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 3, 0x4000) = 0x5559bdc5b000 mmap(0x5559bdc5d000, 8192, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 3, 0x5000) = 0x5559bdc5d000 close(3) = 0 openat(AT_FDCWD, "/usr/lib64/libnftnl.so.11", O_RDONLY|O_CLOEXEC) = 3 read(3, "\177ELF\2\1\1\0\0\0\0\0\0\0\0\0\3\0>\0\1\0\0\0\0\0\0\0\0\0\0\0"..., 832) = 832 newfstatat(3, "", {st_mode=S_IFREG|0755, st_size=219888, ...}, AT_EMPTY_PATH) = 0 mmap(NULL, 250480, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x5559bdc19000 mmap(0x5559bdc1c000, 234096, PROT_READ, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 3, 0) = 0x5559bdc1c000 munmap(0x5559bdc19000, 12288) = 0 munmap(0x5559bdc56000, 624) = 0 mprotect(0x5559bdc26000, 176128, PROT_NONE) = 0 mmap(0x5559bdc28000, 106496, PROT_READ|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 3, 0xc000) = 0x5559bdc28000 mmap(0x5559bdc44000, 40960, PROT_READ, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 3, 0x28000) = 0x5559bdc44000 mmap(0x5559bdc51000, 20480, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 3, 0x31000) = 0x5559bdc51000 close(3) = 0 openat(AT_FDCWD, "/usr/lib64/libxtables.so.12", O_RDONLY|O_CLOEXEC) = 3 read(3, "\177ELF\2\1\1\0\0\0\0\0\0\0\0\0\3\0>\0\1\0\0\0\0\0\0\0\0\0\0\0"..., 832) = 832 newfstatat(3, "", {st_mode=S_IFREG|0755, st_size=59456, ...}, AT_EMPTY_PATH) = 0 mmap(NULL, 76976, PROT_READ, MAP_PRIVATE|MAP_DENYWRITE, 3, 0) = 0x5559bdc09000 mprotect(0x5559bdc0d000, 40960, PROT_NONE) = 0 mmap(0x5559bdc0d000, 24576, PROT_READ|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 3, 0x4000) = 0x5559bdc0d000 mmap(0x5559bdc13000, 12288, PROT_READ, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 3, 0xa000) = 0x5559bdc13000 mmap(0x5559bdc17000, 8192, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 3, 0xd000) = 0x5559bdc17000 mmap(0x5559bdc19000, 11440, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x5559bdc19000 close(3) = 0 openat(AT_FDCWD, "/usr/lib64/libjansson.so.4", O_RDONLY|O_CLOEXEC) = 3 read(3, "\177ELF\2\1\1\0\0\0\0\0\0\0\0\0\3\0>\0\1\0\0\0 \"\0\0\0\0\0\0"..., 832) = 832 newfstatat(3, "", {st_mode=S_IFREG|0755, st_size=63616, ...}, AT_EMPTY_PATH) = 0 mmap(NULL, 8192, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x5559bdc07000 mmap(NULL, 65632, PROT_READ, MAP_PRIVATE|MAP_DENYWRITE, 3, 0) = 0x5559bdbf6000 mmap(0x5559bdbf8000, 40960, PROT_READ|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 3, 0x2000) = 0x5559bdbf8000 mmap(0x5559bdc02000, 12288, PROT_READ, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 3, 0xc000) = 0x5559bdc02000 mmap(0x5559bdc05000, 8192, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 3, 0xe000) = 0x5559bdc05000 close(3) = 0 openat(AT_FDCWD, "/usr/lib64/libgmp.so.10", O_RDONLY|O_CLOEXEC) = 3 read(3, "\177ELF\2\1\1\0\0\0\0\0\0\0\0\0\3\0>\0\1\0\0\0\0\0\0\0\0\0\0\0"..., 832) = 832 newfstatat(3, "", {st_mode=S_IFREG|0755, st_size=573368, ...}, AT_EMPTY_PATH) = 0 mmap(NULL, 575376, PROT_READ, MAP_PRIVATE|MAP_DENYWRITE, 3, 0) = 0x5559bdb69000 mprotect(0x5559bdb74000, 524288, PROT_NONE) = 0 mmap(0x5559bdb74000, 425984, PROT_READ|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 3, 0xb000) = 0x5559bdb74000 mmap(0x5559bdbdc000, 94208, PROT_READ, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 3, 0x73000) = 0x5559bdbdc000 mmap(0x5559bdbf4000, 8192, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 3, 0x8a000) = 0x5559bdbf4000 close(3) = 0 openat(AT_FDCWD, "/usr/lib64/libtinfow.so.6", O_RDONLY|O_CLOEXEC) = 3 read(3, "\177ELF\2\1\1\0\0\0\0\0\0\0\0\0\3\0>\0\1\0\0\0\0\0\0\0\0\0\0\0"..., 832) = 832 newfstatat(3, "", {st_mode=S_IFREG|0755, st_size=345240, ...}, AT_EMPTY_PATH) = 0 mmap(NULL, 211624, PROT_READ, MAP_PRIVATE|MAP_DENYWRITE, 3, 0) = 0x5559bdb35000 mprotect(0x5559bdb44000, 131072, PROT_NONE) = 0 mmap(0x5559bdb44000, 65536, PROT_READ|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 3, 0xf000) = 0x5559bdb44000 mmap(0x5559bdb54000, 61440, PROT_READ, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 3, 0x1f000) = 0x5559bdb54000 mmap(0x5559bdb64000, 20480, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 3, 0x2e000) = 0x5559bdb64000 close(3) = 0 mmap(NULL, 8192, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x5559bdb33000 arch_prctl(ARCH_SET_FS, 0x5559bdb33fc0) = 0 set_tid_address(0x5559bdb34290) = 46775 set_robust_list(0x5559bdb342a0, 24) = 0 rseq(0x5559bdb348e0, 0x20, 0, 0x53053053) = 0 mprotect(0x5559bde5f000, 16384, PROT_READ) = 0 mprotect(0x5559bdb64000, 16384, PROT_READ) = 0 mprotect(0x5559bdbf4000, 4096, PROT_READ) = 0 mprotect(0x5559bdc05000, 4096, PROT_READ) = 0 mprotect(0x5559bdc17000, 4096, PROT_READ) = 0 mprotect(0x5559bdc5d000, 4096, PROT_READ) = 0 mprotect(0x5559bdc51000, 12288, PROT_READ) = 0 mprotect(0x5559bdeb2000, 8192, PROT_READ) = 0 mprotect(0x5559bdfa6000, 73728, PROT_READ) = 0 mprotect(0x5559bdfcb000, 4096, PROT_READ) = 0 mprotect(0x7ffb4d1e5000, 8192, PROT_READ) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 munmap(0x5559bdc5f000, 85394) = 0 getuid() = 0 geteuid() = 0 getuid() = 0 geteuid() = 0 getrandom("\x2d\xbe\x17\xb1\xf5\x67\x38\x7c", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x5559bec4b000 brk(0x5559beccb000) = 0x5559beccb000 openat(AT_FDCWD, "/etc/iproute2/rt_marks", O_RDONLY) = -1 ENOENT (No such file or directory) openat(AT_FDCWD, "/etc/iproute2/rt_realms", O_RDONLY) = -1 ENOENT (No such file or directory) openat(AT_FDCWD, "/etc/iproute2/group", O_RDONLY) = -1 ENOENT (No such file or directory) openat(AT_FDCWD, "/etc/connlabel.conf", O_RDONLY) = -1 ENOENT (No such file or directory) socket(AF_NETLINK, SOCK_RAW, NETLINK_NETFILTER) = 3 fcntl(3, F_SETFL, O_RDONLY|O_NONBLOCK) = 0 setsockopt(3, SOL_NETLINK, NETLINK_EXT_ACK, [1], 4) = 0 sendto(3, [{nlmsg_len=20, nlmsg_type=0xa10 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST, nlmsg_seq=0, nlmsg_pid=0}, "\x00\x00\x00\x00"], 20, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 20 recvmsg(3, {msg_name={sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, msg_namelen=12, msg_iov=[{iov_base=[{nlmsg_len=44, nlmsg_type=NFNL_SUBSYS_NFTABLES<<8|NFT_MSG_NEWGEN, nlmsg_flags=0, nlmsg_seq=0, nlmsg_pid=46775}, {nfgen_family=AF_UNSPEC, version=NFNETLINK_V0, res_id=htons(76)}, [[{nla_len=8, nla_type=0x1}, "\x00\x00\x00\x4c"], [{nla_len=8, nla_type=0x2}, "\x00\x00\xb6\xb7"], [{nla_len=8, nla_type=0x3}, "\x6e\x66\x74\x00"]]], iov_len=69631}], msg_iovlen=1, msg_controllen=0, msg_flags=0}, 0) = 44 recvmsg(3, {msg_namelen=12}, 0) = -1 EAGAIN (Resource temporarily unavailable) sendto(3, [{nlmsg_len=20, nlmsg_type=NFNL_SUBSYS_NFTABLES<<8|NFT_MSG_GETTABLE, nlmsg_flags=NLM_F_REQUEST|NLM_F_DUMP, nlmsg_seq=0, nlmsg_pid=0}, {nfgen_family=AF_UNSPEC, version=NFNETLINK_V0, res_id=htons(0)}], 20, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 20 recvmsg(3, {msg_name={sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, msg_namelen=12, msg_iov=[{iov_base=[[{nlmsg_len=60, nlmsg_type=NFNL_SUBSYS_NFTABLES<<8|NFT_MSG_NEWTABLE, nlmsg_flags=NLM_F_MULTI, nlmsg_seq=0, nlmsg_pid=46775}, {nfgen_family=AF_INET, version=NFNETLINK_V0, res_id=htons(76)}, [[{nla_len=11, nla_type=0x1}, "\x6d\x61\x6e\x67\x6c\x65\x00"], [{nla_len=8, nla_type=0x2}, "\x00\x00\x00\x00"], [{nla_len=8, nla_type=0x3}, "\x00\x00\x00\x05"], [{nla_len=12, nla_type=0x4}, "\x00\x00\x00\x00\x00\x00\x00\x23"]]], [{nlmsg_len=56, nlmsg_type=NFNL_SUBSYS_NFTABLES<<8|NFT_MSG_NEWTABLE, nlmsg_flags=NLM_F_MULTI, nlmsg_seq=0, nlmsg_pid=46775}, {nfgen_family=AF_INET, version=NFNETLINK_V0, res_id=htons(76)}, [[{nla_len=8, nla_type=0x1}, "\x72\x61\x77\x00"], [{nla_len=8, nla_type=0x2}, "\x00\x00\x00\x00"], [{nla_len=8, nla_type=0x3}, "\x00\x00\x00\x04"], [{nla_len=12, nla_type=0x4}, "\x00\x00\x00\x00\x00\x00\x00\x24"]]], [{nlmsg_len=56, nlmsg_type=NFNL_SUBSYS_NFTABLES<<8|NFT_MSG_NEWTABLE, nlmsg_flags=NLM_F_MULTI, nlmsg_seq=0, nlmsg_pid=46775}, {nfgen_family=AF_INET, version=NFNETLINK_V0, res_id=htons(76)}, [[{nla_len=8, nla_type=0x1}, "\x6e\x61\x74\x00"], [{nla_len=8, nla_type=0x2}, "\x00\x00\x00\x00"], [{nla_len=8, nla_type=0x3}, "\x00\x00\x00\x05"], [{nla_len=12, nla_type=0x4}, "\x00\x00\x00\x00\x00\x00\x00\x25"]]], [{nlmsg_len=60, nlmsg_type=NFNL_SUBSYS_NFTABLES<<8|NFT_MSG_NEWTABLE, nlmsg_flags=NLM_F_MULTI, nlmsg_seq=0, nlmsg_pid=46775}, {nfgen_family=AF_INET, version=NFNETLINK_V0, res_id=htons(76)}, [[{nla_len=11, nla_type=0x1}, "\x66\x69\x6c\x74\x65\x72\x00"], [{nla_len=8, nla_type=0x2}, "\x00\x00\x00\x00"], [{nla_len=8, nla_type=0x3}, "\x00\x00\x00\x03"], [{nla_len=12, nla_type=0x4}, "\x00\x00\x00\x00\x00\x00\x00\x26"]]]], iov_len=69631}], msg_iovlen=1, msg_controllen=0, msg_flags=0}, 0) = 232 recvmsg(3, {msg_name={sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, msg_namelen=12, msg_iov=[{iov_base=[{nlmsg_len=20, nlmsg_type=NLMSG_DONE, nlmsg_flags=NLM_F_MULTI, nlmsg_seq=0, nlmsg_pid=46775}, 0], iov_len=69631}], msg_iovlen=1, msg_controllen=0, msg_flags=0}, 0) = 20 brk(0x5559bed4b000) = 0x5559bed4b000 brk(0x5559bedcb000) = 0x5559bedcb000 brk(0x5559bee4b000) = 0x5559bee4b000 brk(0x5559beecb000) = 0x5559beecb000 sendto(3, [{nlmsg_len=20, nlmsg_type=NFNL_SUBSYS_NFTABLES<<8|NFT_MSG_GETCHAIN, nlmsg_flags=NLM_F_REQUEST|NLM_F_DUMP, nlmsg_seq=0, nlmsg_pid=0}, {nfgen_family=AF_UNSPEC, version=NFNETLINK_V0, res_id=htons(0)}], 20, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 20 recvmsg(3, {msg_name={sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, msg_namelen=12, msg_iov=[{iov_base=[[{nlmsg_len=116, nlmsg_type=NFNL_SUBSYS_NFTABLES<<8|NFT_MSG_NEWCHAIN, nlmsg_flags=NLM_F_MULTI, nlmsg_seq=0, nlmsg_pid=46775}, {nfgen_family=AF_INET, version=NFNETLINK_V0, res_id=htons(76)}, [[{nla_len=11, nla_type=0x1}, "\x6d\x61\x6e\x67\x6c\x65\x00"], [{nla_len=12, nla_type=0x2}, "\x00\x00\x00\x00\x00\x00\x00\x01"], [{nla_len=15, nla_type=0x3}, "\x50\x52\x45\x52\x4f\x55\x54\x49\x4e\x47\x00"], [{nla_len=20, nla_type=0x4}, "\x08\x00\x01\x00\x00\x00\x00\x00\x08\x00\x02\x00\xff\xff\xff\x6a"], [{nla_len=8, nla_type=0x5}, "\x00\x00\x00\x01"], [{nla_len=11, nla_type=0x7}, "\x66\x69\x6c\x74\x65\x72\x00"], [{nla_len=8, nla_type=0xa}, "\x00\x00\x00\x01"], [{nla_len=8, nla_type=0x6}, "\x00\x00\x00\x00"]]], [{nlmsg_len=112, nlmsg_type=NFNL_SUBSYS_NFTABLES<<8|NFT_MSG_NEWCHAIN, nlmsg_flags=NLM_F_MULTI, nlmsg_seq=0, nlmsg_pid=46775}, {nfgen_family=AF_INET, version=NFNETLINK_V0, res_id=htons(76)}, [[{nla_len=11, nla_type=0x1}, "\x6d\x61\x6e\x67\x6c\x65\x00"], [{nla_len=12, nla_type=0x2}, "\x00\x00\x00\x00\x00\x00\x00\x02"], [{nla_len=10, nla_type=0x3}, "\x49\x4e\x50\x55\x54\x00"], [{nla_len=20, nla_type=0x4}, "\x08\x00\x01\x00\x00\x00\x00\x01\x08\x00\x02\x00\xff\xff\xff\x6a"], [{nla_len=8, nla_type=0x5}, "\x00\x00\x00\x01"], [{nla_len=11, nla_type=0x7}, "\x66\x69\x6c\x74\x65\x72\x00"], [{nla_len=8, nla_type=0xa}, "\x00\x00\x00\x01"], [{nla_len=8, nla_type=0x6}, "\x00\x00\x00\x01"]]], [{nlmsg_len=112, nlmsg_type=NFNL_SUBSYS_NFTABLES<<8|NFT_MSG_NEWCHAIN, nlmsg_flags=NLM_F_MULTI, nlmsg_seq=0, nlmsg_pid=46775}, {nfgen_family=AF_INET, version=NFNETLINK_V0, res_id=htons(76)}, [[{nla_len=11, nla_type=0x1}, "\x6d\x61\x6e\x67\x6c\x65\x00"], [{nla_len=12, nla_type=0x2}, "\x00\x00\x00\x00\x00\x00\x00\x03"], [{nla_len=12, nla_type=0x3}, "\x46\x4f\x52\x57\x41\x52\x44\x00"], [{nla_len=20, nla_type=0x4}, "\x08\x00\x01\x00\x00\x00\x00\x02\x08\x00\x02\x00\xff\xff\xff\x6a"], [{nla_len=8, nla_type=0x5}, "\x00\x00\x00\x01"], [{nla_len=11, nla_type=0x7}, "\x66\x69\x6c\x74\x65\x72\x00"], [{nla_len=8, nla_type=0xa}, "\x00\x00\x00\x01"], [{nla_len=8, nla_type=0x6}, "\x00\x00\x00\x01"]]], [{nlmsg_len=112, nlmsg_type=NFNL_SUBSYS_NFTABLES<<8|NFT_MSG_NEWCHAIN, nlmsg_flags=NLM_F_MULTI, nlmsg_seq=0, nlmsg_pid=46775}, {nfgen_family=AF_INET, version=NFNETLINK_V0, res_id=htons(76)}, [[{nla_len=11, nla_type=0x1}, "\x6d\x61\x6e\x67\x6c\x65\x00"], [{nla_len=12, nla_type=0x2}, "\x00\x00\x00\x00\x00\x00\x00\x04"], [{nla_len=11, nla_type=0x3}, "\x4f\x55\x54\x50\x55\x54\x00"], [{nla_len=20, nla_type=0x4}, "\x08\x00\x01\x00\x00\x00\x00\x03\x08\x00\x02\x00\xff\xff\xff\x6a"], [{nla_len=8, nla_type=0x5}, "\x00\x00\x00\x01"], [{nla_len=10, nla_type=0x7}, "\x72\x6f\x75\x74\x65\x00"], [{nla_len=8, nla_type=0xa}, "\x00\x00\x00\x01"], [{nla_len=8, nla_type=0x6}, "\x00\x00\x00\x01"]]], [{nlmsg_len=116, nlmsg_type=NFNL_SUBSYS_NFTABLES<<8|NFT_MSG_NEWCHAIN, nlmsg_flags=NLM_F_MULTI, nlmsg_seq=0, nlmsg_pid=46775}, {nfgen_family=AF_INET, version=NFNETLINK_V0, res_id=htons(76)}, [[{nla_len=11, nla_type=0x1}, "\x6d\x61\x6e\x67\x6c\x65\x00"], [{nla_len=12, nla_type=0x2}, "\x00\x00\x00\x00\x00\x00\x00\x05"], [{nla_len=16, nla_type=0x3}, "\x50\x4f\x53\x54\x52\x4f\x55\x54\x49\x4e\x47\x00"], [{nla_len=20, nla_type=0x4}, "\x08\x00\x01\x00\x00\x00\x00\x04\x08\x00\x02\x00\xff\xff\xff\x6a"], [{nla_len=8, nla_type=0x5}, "\x00\x00\x00\x01"], [{nla_len=11, nla_type=0x7}, "\x66\x69\x6c\x74\x65\x72\x00"], [{nla_len=8, nla_type=0xa}, "\x00\x00\x00\x01"], [{nla_len=8, nla_type=0x6}, "\x00\x00\x00\x00"]]], [{nlmsg_len=112, nlmsg_type=NFNL_SUBSYS_NFTABLES<<8|NFT_MSG_NEWCHAIN, nlmsg_flags=NLM_F_MULTI, nlmsg_seq=0, nlmsg_pid=46775}, {nfgen_family=AF_INET, version=NFNETLINK_V0, res_id=htons(76)}, [[{nla_len=8, nla_type=0x1}, "\x72\x61\x77\x00"], [{nla_len=12, nla_type=0x2}, "\x00\x00\x00\x00\x00\x00\x00\x03"], [{nla_len=15, nla_type=0x3}, "\x50\x52\x45\x52\x4f\x55\x54\x49\x4e\x47\x00"], [{nla_len=20, nla_type=0x4}, "\x08\x00\x01\x00\x00\x00\x00\x00\x08\x00\x02\x00\xff\xff\xfe\xd4"], [{nla_len=8, nla_type=0x5}, "\x00\x00\x00\x01"], [{nla_len=11, nla_type=0x7}, "\x66\x69\x6c\x74\x65\x72\x00"], [{nla_len=8, nla_type=0xa}, "\x00\x00\x00\x01"], [{nla_len=8, nla_type=0x6}, "\x00\x00\x00\x04"]]], [{nlmsg_len=108, nlmsg_type=NFNL_SUBSYS_NFTABLES<<8|NFT_MSG_NEWCHAIN, nlmsg_flags=NLM_F_MULTI, nlmsg_seq=0, nlmsg_pid=46775}, {nfgen_family=AF_INET, version=NFNETLINK_V0, res_id=htons(76)}, [[{nla_len=8, nla_type=0x1}, "\x72\x61\x77\x00"], [{nla_len=12, nla_type=0x2}, "\x00\x00\x00\x00\x00\x00\x00\x04"], [{nla_len=11, nla_type=0x3}, "\x4f\x55\x54\x50\x55\x54\x00"], [{nla_len=20, nla_type=0x4}, "\x08\x00\x01\x00\x00\x00\x00\x03\x08\x00\x02\x00\xff\xff\xfe\xd4"], [{nla_len=8, nla_type=0x5}, "\x00\x00\x00\x01"], [{nla_len=11, nla_type=0x7}, "\x66\x69\x6c\x74\x65\x72\x00"], [{nla_len=8, nla_type=0xa}, "\x00\x00\x00\x01"], [{nla_len=8, nla_type=0x6}, "\x00\x00\x00\x00"]]], [{nlmsg_len=108, nlmsg_type=NFNL_SUBSYS_NFTABLES<<8|NFT_MSG_NEWCHAIN, nlmsg_flags=NLM_F_MULTI, nlmsg_seq=0, nlmsg_pid=46775}, {nfgen_family=AF_INET, version=NFNETLINK_V0, res_id=htons(76)}, [[{nla_len=8, nla_type=0x1}, "\x6e\x61\x74\x00"], [{nla_len=12, nla_type=0x2}, "\x00\x00\x00\x00\x00\x00\x00\x01"], [{nla_len=15, nla_type=0x3}, "\x50\x52\x45\x52\x4f\x55\x54\x49\x4e\x47\x00"], [{nla_len=20, nla_type=0x4}, "\x08\x00\x01\x00\x00\x00\x00\x00\x08\x00\x02\x00\xff\xff\xff\x9c"], [{nla_len=8, nla_type=0x5}, "\x00\x00\x00\x01"], [{nla_len=8, nla_type=0x7}, "\x6e\x61\x74\x00"], [{nla_len=8, nla_type=0xa}, "\x00\x00\x00\x01"], [{nla_len=8, nla_type=0x6}, "\x00\x00\x00\x06"]]], [{nlmsg_len=104, nlmsg_type=NFNL_SUBSYS_NFTABLES<<8|NFT_MSG_NEWCHAIN, nlmsg_flags=NLM_F_MULTI, nlmsg_seq=0, nlmsg_pid=46775}, {nfgen_family=AF_INET, version=NFNETLINK_V0, res_id=htons(76)}, [[{nla_len=8, nla_type=0x1}, "\x6e\x61\x74\x00"], [{nla_len=12, nla_type=0x2}, "\x00\x00\x00\x00\x00\x00\x00\x02"], [{nla_len=10, nla_type=0x3}, "\x49\x4e\x50\x55\x54\x00"], [{nla_len=20, nla_type=0x4}, "\x08\x00\x01\x00\x00\x00\x00\x01\x08\x00\x02\x00\x00\x00\x00\x64"], [{nla_len=8, nla_type=0x5}, "\x00\x00\x00\x01"], [{nla_len=8, nla_type=0x7}, "\x6e\x61\x74\x00"], [{nla_len=8, nla_type=0xa}, "\x00\x00\x00\x01"], [{nla_len=8, nla_type=0x6}, "\x00\x00\x00\x00"]]], [{nlmsg_len=104, nlmsg_type=NFNL_SUBSYS_NFTABLES<<8|NFT_MSG_NEWCHAIN, nlmsg_flags=NLM_F_MULTI, nlmsg_seq=0, nlmsg_pid=46775}, {nfgen_family=AF_INET, version=NFNETLINK_V0, res_id=htons(76)}, [[{nla_len=8, nla_type=0x1}, "\x6e\x61\x74\x00"], [{nla_len=12, nla_type=0x2}, "\x00\x00\x00\x00\x00\x00\x00\x03"], [{nla_len=11, nla_type=0x3}, "\x4f\x55\x54\x50\x55\x54\x00"], [{nla_len=20, nla_type=0x4}, "\x08\x00\x01\x00\x00\x00\x00\x03\x08\x00\x02\x00\xff\xff\xff\x9c"], [{nla_len=8, nla_type=0x5}, "\x00\x00\x00\x01"], [{nla_len=8, nla_type=0x7}, "\x6e\x61\x74\x00"], [{nla_len=8, nla_type=0xa}, "\x00\x00\x00\x01"], [{nla_len=8, nla_type=0x6}, "\x00\x00\x00\x00"]]], [{nlmsg_len=108, nlmsg_type=NFNL_SUBSYS_NFTABLES<<8|NFT_MSG_NEWCHAIN, nlmsg_flags=NLM_F_MULTI, nlmsg_seq=0, nlmsg_pid=46775}, {nfgen_family=AF_INET, version=NFNETLINK_V0, res_id=htons(76)}, [[{nla_len=8, nla_type=0x1}, "\x6e\x61\x74\x00"], [{nla_len=12, nla_type=0x2}, "\x00\x00\x00\x00\x00\x00\x00\x04"], [{nla_len=16, nla_type=0x3}, "\x50\x4f\x53\x54\x52\x4f\x55\x54\x49\x4e\x47\x00"], [{nla_len=20, nla_type=0x4}, "\x08\x00\x01\x00\x00\x00\x00\x04\x08\x00\x02\x00\x00\x00\x00\x64"], [{nla_len=8, nla_type=0x5}, "\x00\x00\x00\x01"], [{nla_len=8, nla_type=0x7}, "\x6e\x61\x74\x00"], [{nla_len=8, nla_type=0xa}, "\x00\x00\x00\x01"], [{nla_len=8, nla_type=0x6}, "\x00\x00\x00\x01"]]], [{nlmsg_len=112, nlmsg_type=NFNL_SUBSYS_NFTABLES<<8|NFT_MSG_NEWCHAIN, nlmsg_flags=NLM_F_MULTI, nlmsg_seq=0, nlmsg_pid=46775}, {nfgen_family=AF_INET, version=NFNETLINK_V0, res_id=htons(76)}, [[{nla_len=11, nla_type=0x1}, "\x66\x69\x6c\x74\x65\x72\x00"], [{nla_len=12, nla_type=0x2}, "\x00\x00\x00\x00\x00\x00\x00\x01"], [{nla_len=10, nla_type=0x3}, "\x49\x4e\x50\x55\x54\x00"], [{nla_len=20, nla_type=0x4}, "\x08\x00\x01\x00\x00\x00\x00\x01\x08\x00\x02\x00\x00\x00\x00\x00"], [{nla_len=8, nla_type=0x5}, "\x00\x00\x00\x00"], [{nla_len=11, nla_type=0x7}, "\x66\x69\x6c\x74\x65\x72\x00"], [{nla_len=8, nla_type=0xa}, "\x00\x00\x00\x01"], [{nla_len=8, nla_type=0x6}, "\x00\x00\x00\x09"]]], [{nlmsg_len=112, nlmsg_type=NFNL_SUBSYS_NFTABLES<<8|NFT_MSG_NEWCHAIN, nlmsg_flags=NLM_F_MULTI, nlmsg_seq=0, nlmsg_pid=46775}, {nfgen_family=AF_INET, version=NFNETLINK_V0, res_id=htons(76)}, [[{nla_len=11, nla_type=0x1}, "\x66\x69\x6c\x74\x65\x72\x00"], [{nla_len=12, nla_type=0x2}, "\x00\x00\x00\x00\x00\x00\x00\x02"], [{nla_len=12, nla_type=0x3}, "\x46\x4f\x52\x57\x41\x52\x44\x00"], [{nla_len=20, nla_type=0x4}, "\x08\x00\x01\x00\x00\x00\x00\x02\x08\x00\x02\x00\x00\x00\x00\x00"], [{nla_len=8, nla_type=0x5}, "\x00\x00\x00\x01"], [{nla_len=11, nla_type=0x7}, "\x66\x69\x6c\x74\x65\x72\x00"], [{nla_len=8, nla_type=0xa}, "\x00\x00\x00\x01"], [{nla_len=8, nla_type=0x6}, "\x00\x00\x00\x0e"]]], [{nlmsg_len=112, nlmsg_type=NFNL_SUBSYS_NFTABLES<<8|NFT_MSG_NEWCHAIN, nlmsg_flags=NLM_F_MULTI, nlmsg_seq=0, nlmsg_pid=46775}, {nfgen_family=AF_INET, version=NFNETLINK_V0, res_id=htons(76)}, [[{nla_len=11, nla_type=0x1}, "\x66\x69\x6c\x74\x65\x72\x00"], [{nla_len=12, nla_type=0x2}, "\x00\x00\x00\x00\x00\x00\x00\x03"], [{nla_len=11, nla_type=0x3}, "\x4f\x55\x54\x50\x55\x54\x00"], [{nla_len=20, nla_type=0x4}, "\x08\x00\x01\x00\x00\x00\x00\x03\x08\x00\x02\x00\x00\x00\x00\x00"], [{nla_len=8, nla_type=0x5}, "\x00\x00\x00\x01"], [{nla_len=11, nla_type=0x7}, "\x66\x69\x6c\x74\x65\x72\x00"], [{nla_len=8, nla_type=0xa}, "\x00\x00\x00\x01"], [{nla_len=8, nla_type=0x6}, "\x00\x00\x00\x01"]]]], iov_len=69631}], msg_iovlen=1, msg_controllen=0, msg_flags=0}, 0) = 1548 recvmsg(3, {msg_name={sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, msg_namelen=12, msg_iov=[{iov_base=[{nlmsg_len=20, nlmsg_type=NLMSG_DONE, nlmsg_flags=NLM_F_MULTI, nlmsg_seq=0, nlmsg_pid=46775}, 0], iov_len=69631}], msg_iovlen=1, msg_controllen=0, msg_flags=0}, 0) = 20 sendto(3, [{nlmsg_len=20, nlmsg_type=NFNL_SUBSYS_NFTABLES<<8|NFT_MSG_GETSET, nlmsg_flags=NLM_F_REQUEST|NLM_F_DUMP, nlmsg_seq=0, nlmsg_pid=0}, {nfgen_family=AF_UNSPEC, version=NFNETLINK_V0, res_id=htons(0)}], 20, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 20 recvmsg(3, {msg_name={sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, msg_namelen=12, msg_iov=[{iov_base=[[{nlmsg_len=100, nlmsg_type=NFNL_SUBSYS_NFTABLES<<8|NFT_MSG_NEWSET, nlmsg_flags=NLM_F_MULTI, nlmsg_seq=0, nlmsg_pid=46775}, {nfgen_family=AF_INET, version=NFNETLINK_V0, res_id=htons(76)}, [[{nla_len=8, nla_type=0x1}, "\x72\x61\x77\x00"], [{nla_len=14, nla_type=0x2}, "\x64\x6f\x68\x2d\x62\x6c\x6f\x63\x6b\x00"], [{nla_len=12, nla_type=0x10}, "\x00\x00\x00\x00\x00\x00\x00\x01"], [{nla_len=8, nla_type=0x3}, "\x00\x00\x00\x04"], [{nla_len=8, nla_type=0x4}, "\x00\x00\x00\x07"], [{nla_len=8, nla_type=0x5}, "\x00\x00\x00\x04"], [{nla_len=16, nla_type=0xd}, "\x00\x04\x02\x00\x00\x00\x02\x04\x01\x00\x00\x00"], {nla_len=4, nla_type=0x9}]], [{nlmsg_len=100, nlmsg_type=NFNL_SUBSYS_NFTABLES<<8|NFT_MSG_NEWSET, nlmsg_flags=NLM_F_MULTI, nlmsg_seq=0, nlmsg_pid=46775}, {nfgen_family=AF_INET, version=NFNETLINK_V0, res_id=htons(76)}, [[{nla_len=8, nla_type=0x1}, "\x72\x61\x77\x00"], [{nla_len=15, nla_type=0x2}, "\x62\x6c\x6f\x63\x6b\x2d\x6c\x69\x73\x74\x00"], [{nla_len=12, nla_type=0x10}, "\x00\x00\x00\x00\x00\x00\x00\x02"], [{nla_len=8, nla_type=0x3}, "\x00\x00\x00\x04"], [{nla_len=8, nla_type=0x4}, "\x00\x00\x00\x07"], [{nla_len=8, nla_type=0x5}, "\x00\x00\x00\x04"], [{nla_len=16, nla_type=0xd}, "\x00\x04\x02\x00\x00\x00\x02\x04\x01\x00\x00\x00"], {nla_len=4, nla_type=0x9}]], [{nlmsg_len=96, nlmsg_type=NFNL_SUBSYS_NFTABLES<<8|NFT_MSG_NEWSET, nlmsg_flags=NLM_F_MULTI, nlmsg_seq=0, nlmsg_pid=46775}, {nfgen_family=AF_INET, version=NFNETLINK_V0, res_id=htons(76)}, [[{nla_len=8, nla_type=0x1}, "\x6e\x61\x74\x00"], [{nla_len=11, nla_type=0x2}, "\x75\x73\x2d\x64\x6e\x73\x00"], [{nla_len=12, nla_type=0x10}, "\x00\x00\x00\x00\x00\x00\x00\x05"], [{nla_len=8, nla_type=0x3}, "\x00\x00\x00\x04"], [{nla_len=8, nla_type=0x4}, "\x00\x00\x00\x07"], [{nla_len=8, nla_type=0x5}, "\x00\x00\x00\x04"], [{nla_len=16, nla_type=0xd}, "\x00\x04\x02\x00\x00\x00\x02\x04\x01\x00\x00\x00"], {nla_len=4, nla_type=0x9}]], [{nlmsg_len=124, nlmsg_type=NFNL_SUBSYS_NFTABLES<<8|NFT_MSG_NEWSET, nlmsg_flags=NLM_F_MULTI, nlmsg_seq=0, nlmsg_pid=46775}, {nfgen_family=AF_INET, version=NFNETLINK_V0, res_id=htons(76)}, [[{nla_len=11, nla_type=0x1}, "\x66\x69\x6c\x74\x65\x72\x00"], [{nla_len=11, nla_type=0x2}, "\x5f\x5f\x73\x65\x74\x30\x00"], [{nla_len=12, nla_type=0x10}, "\x00\x00\x00\x00\x00\x00\x00\x14"], [{nla_len=8, nla_type=0x3}, "\x00\x00\x00\x03"], [{nla_len=8, nla_type=0x4}, "\x00\x00\x00\x0d"], [{nla_len=8, nla_type=0x5}, "\x00\x00\x00\x02"], [{nla_len=32, nla_type=0xd}, "\x00\x04\x02\x00\x00\x00\x03\x14\x00\x04\x07\x00\x00\x00\x01\x0c\x00\x04\x08\x00\x00\x00\x01\x04\x02\x00\x00\x00"], [{nla_len=12, nla_type=0x9}, "\x08\x00\x01\x00\x00\x00\x00\x02"]]], [{nlmsg_len=124, nlmsg_type=NFNL_SUBSYS_NFTABLES<<8|NFT_MSG_NEWSET, nlmsg_flags=NLM_F_MULTI, nlmsg_seq=0, nlmsg_pid=46775}, {nfgen_family=AF_INET, version=NFNETLINK_V0, res_id=htons(76)}, [[{nla_len=11, nla_type=0x1}, "\x66\x69\x6c\x74\x65\x72\x00"], [{nla_len=11, nla_type=0x2}, "\x5f\x5f\x73\x65\x74\x31\x00"], [{nla_len=12, nla_type=0x10}, "\x00\x00\x00\x00\x00\x00\x00\x16"], [{nla_len=8, nla_type=0x3}, "\x00\x00\x00\x03"], [{nla_len=8, nla_type=0x4}, "\x00\x00\x00\x0d"], [{nla_len=8, nla_type=0x5}, "\x00\x00\x00\x02"], [{nla_len=32, nla_type=0xd}, "\x00\x04\x02\x00\x00\x00\x03\x14\x00\x04\x07\x00\x00\x00\x01\x0c\x00\x04\x08\x00\x00\x00\x01\x04\x02\x00\x00\x00"], [{nla_len=12, nla_type=0x9}, "\x08\x00\x01\x00\x00\x00\x00\x02"]]]], iov_len=69631}], msg_iovlen=1, msg_controllen=0, msg_flags=0}, 0) = 544 recvmsg(3, {msg_name={sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, msg_namelen=12, msg_iov=[{iov_base=[{nlmsg_len=20, nlmsg_type=NLMSG_DONE, nlmsg_flags=NLM_F_MULTI, nlmsg_seq=0, nlmsg_pid=46775}, 0], iov_len=69631}], msg_iovlen=1, msg_controllen=0, msg_flags=0}, 0) = 20 sendto(3, [{nlmsg_len=20, nlmsg_type=NFNL_SUBSYS_NFTABLES<<8|NFT_MSG_GETFLOWTABLE, nlmsg_flags=NLM_F_REQUEST|NLM_F_DUMP, nlmsg_seq=0, nlmsg_pid=0}, {nfgen_family=AF_UNSPEC, version=NFNETLINK_V0, res_id=htons(0)}], 20, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 20 recvmsg(3, {msg_name={sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, msg_namelen=12, msg_iov=[{iov_base=[{nlmsg_len=20, nlmsg_type=NLMSG_DONE, nlmsg_flags=NLM_F_MULTI, nlmsg_seq=0, nlmsg_pid=46775}, 0], iov_len=69631}], msg_iovlen=1, msg_controllen=0, msg_flags=0}, 0) = 20 sendto(3, [{nlmsg_len=32, nlmsg_type=NFNL_SUBSYS_NFTABLES<<8|NFT_MSG_GETOBJ, nlmsg_flags=NLM_F_REQUEST|NLM_F_DUMP, nlmsg_seq=0, nlmsg_pid=0}, {nfgen_family=AF_INET, version=NFNETLINK_V0, res_id=htons(0)}, [{nla_len=11, nla_type=0x1}, "\x6d\x61\x6e\x67\x6c\x65\x00"]], 32, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 32 recvmsg(3, {msg_name={sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, msg_namelen=12, msg_iov=[{iov_base=[{nlmsg_len=20, nlmsg_type=NLMSG_DONE, nlmsg_flags=NLM_F_MULTI, nlmsg_seq=0, nlmsg_pid=46775}, 0], iov_len=69631}], msg_iovlen=1, msg_controllen=0, msg_flags=0}, 0) = 20 sendto(3, [{nlmsg_len=44, nlmsg_type=NFNL_SUBSYS_NFTABLES<<8|NFT_MSG_GETSETELEM, nlmsg_flags=NLM_F_REQUEST|NLM_F_DUMP, nlmsg_seq=0, nlmsg_pid=0}, {nfgen_family=AF_INET, version=NFNETLINK_V0, res_id=htons(0)}, [[{nla_len=14, nla_type=0x2}, "\x64\x6f\x68\x2d\x62\x6c\x6f\x63\x6b\x00"], [{nla_len=8, nla_type=0x1}, "\x72\x61\x77\x00"]]], 44, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 44 recvmsg(3, {msg_name={sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, msg_namelen=12, msg_iov=[{iov_base=[{nlmsg_len=32448, nlmsg_type=NFNL_SUBSYS_NFTABLES<<8|NFT_MSG_NEWSETELEM, nlmsg_flags=NLM_F_MULTI, nlmsg_seq=0, nlmsg_pid=46775}, {nfgen_family=AF_INET, version=NFNETLINK_V0, res_id=htons(76)}, [[{nla_len=8, nla_type=0x1}, "\x72\x61\x77\x00"], [{nla_len=14, nla_type=0x2}, "\x64\x6f\x68\x2d\x62\x6c\x6f\x63\x6b\x00"], [{nla_len=32404, nla_type=0x3}, "\x18\x00\x01\x00\x0c\x00\x01\x00\x08\x00\x01\x00\xdf\x06\x06\x07\x08\x00\x03\x00\x00\x00\x00\x01\x10\x00\x01\x00\x0c\x00\x01\x00"...]]], iov_len=69631}], msg_iovlen=1, msg_controllen=0, msg_flags=0}, 0) = 32448 brk(0x5559bef4b000) = 0x5559bef4b000 recvmsg(3, {msg_name={sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, msg_namelen=12, msg_iov=[{iov_base=[{nlmsg_len=10752, nlmsg_type=NFNL_SUBSYS_NFTABLES<<8|NFT_MSG_NEWSETELEM, nlmsg_flags=NLM_F_MULTI, nlmsg_seq=0, nlmsg_pid=46775}, {nfgen_family=AF_INET, version=NFNETLINK_V0, res_id=htons(76)}, [[{nla_len=8, nla_type=0x1}, "\x72\x61\x77\x00"], [{nla_len=14, nla_type=0x2}, "\x64\x6f\x68\x2d\x62\x6c\x6f\x63\x6b\x00"], [{nla_len=10708, nla_type=0x3}, "\x18\x00\x01\x00\x0c\x00\x01\x00\x08\x00\x01\x00\x40\x4e\xc8\x02\x08\x00\x03\x00\x00\x00\x00\x01\x10\x00\x01\x00\x0c\x00\x01\x00"...]]], iov_len=69631}], msg_iovlen=1, msg_controllen=0, msg_flags=0}, 0) = 10752 recvmsg(3, {msg_name={sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, msg_namelen=12, msg_iov=[{iov_base=[[{nlmsg_len=48, nlmsg_type=NFNL_SUBSYS_NFTABLES<<8|NFT_MSG_NEWSETELEM, nlmsg_flags=NLM_F_MULTI, nlmsg_seq=0, nlmsg_pid=46775}, {nfgen_family=AF_INET, version=NFNETLINK_V0, res_id=htons(76)}, [[{nla_len=8, nla_type=0x1}, "\x72\x61\x77\x00"], [{nla_len=14, nla_type=0x2}, "\x64\x6f\x68\x2d\x62\x6c\x6f\x63\x6b\x00"], {nla_len=4, nla_type=0x3}]], [{nlmsg_len=20, nlmsg_type=NLMSG_DONE, nlmsg_flags=NLM_F_MULTI, nlmsg_seq=0, nlmsg_pid=46775}, 0]], iov_len=69631}], msg_iovlen=1, msg_controllen=0, msg_flags=0}, 0) = 68 brk(0x5559befcb000) = 0x5559befcb000 brk(0x5559bf04b000) = 0x5559bf04b000 sysinfo({uptime=80575, loads=[704, 416, 0], totalram=7997931520, freeram=7092445184, sharedram=1617920, bufferram=75333632, totalswap=1073737728, freeswap=1073737728, procs=134, totalhigh=0, freehigh=0, mem_unit=1}) = 0 sendto(3, [{nlmsg_len=44, nlmsg_type=NFNL_SUBSYS_NFTABLES<<8|NFT_MSG_GETSETELEM, nlmsg_flags=NLM_F_REQUEST|NLM_F_DUMP, nlmsg_seq=0, nlmsg_pid=0}, {nfgen_family=AF_INET, version=NFNETLINK_V0, res_id=htons(0)}, [[{nla_len=15, nla_type=0x2}, "\x62\x6c\x6f\x63\x6b\x2d\x6c\x69\x73\x74\x00"], [{nla_len=8, nla_type=0x1}, "\x72\x61\x77\x00"]]], 44, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 44 recvmsg(3, {msg_name={sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, msg_namelen=12, msg_iov=[{iov_base=[{nlmsg_len=32436, nlmsg_type=NFNL_SUBSYS_NFTABLES<<8|NFT_MSG_NEWSETELEM, nlmsg_flags=NLM_F_MULTI, nlmsg_seq=0, nlmsg_pid=46775}, {nfgen_family=AF_INET, version=NFNETLINK_V0, res_id=htons(76)}, [[{nla_len=8, nla_type=0x1}, "\x72\x61\x77\x00"], [{nla_len=15, nla_type=0x2}, "\x62\x6c\x6f\x63\x6b\x2d\x6c\x69\x73\x74\x00"], [{nla_len=32392, nla_type=0x3}, "\x1c\x00\x01\x00\x0c\x00\x01\x00\x08\x00\x01\x00\xe0\x00\x00\x00\x0a\x00\x06\x00\x01\x04\x01\x00\x00\x00\x00\x00\x18\x00\x01\x00"...]]], iov_len=69631}], msg_iovlen=1, msg_controllen=0, msg_flags=0}, 0) = 32436 recvmsg(3, {msg_name={sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, msg_namelen=12, msg_iov=[{iov_base=[{nlmsg_len=32448, nlmsg_type=NFNL_SUBSYS_NFTABLES<<8|NFT_MSG_NEWSETELEM, nlmsg_flags=NLM_F_MULTI, nlmsg_seq=0, nlmsg_pid=46775}, {nfgen_family=AF_INET, version=NFNETLINK_V0, res_id=htons(76)}, [[{nla_len=8, nla_type=0x1}, "\x72\x61\x77\x00"], [{nla_len=15, nla_type=0x2}, "\x62\x6c\x6f\x63\x6b\x2d\x6c\x69\x73\x74\x00"], [{nla_len=32404, nla_type=0x3}, "\x18\x00\x01\x00\x0c\x00\x01\x00\x08\x00\x01\x00\xc9\x57\xf4\x0b\x08\x00\x03\x00\x00\x00\x00\x01\x10\x00\x01\x00\x0c\x00\x01\x00"...]]], iov_len=69631}], msg_iovlen=1, msg_controllen=0, msg_flags=0}, 0) = 32448 recvmsg(3, {msg_name={sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, msg_namelen=12, msg_iov=[{iov_base=[{nlmsg_len=32448, nlmsg_type=NFNL_SUBSYS_NFTABLES<<8|NFT_MSG_NEWSETELEM, nlmsg_flags=NLM_F_MULTI, nlmsg_seq=0, nlmsg_pid=46775}, {nfgen_family=AF_INET, version=NFNETLINK_V0, res_id=htons(76)}, [[{nla_len=8, nla_type=0x1}, "\x72\x61\x77\x00"], [{nla_len=15, nla_type=0x2}, "\x62\x6c\x6f\x63\x6b\x2d\x6c\x69\x73\x74\x00"], [{nla_len=32404, nla_type=0x3}, "\x18\x00\x01\x00\x0c\x00\x01\x00\x08\x00\x01\x00\xb9\xb4\x8f\x93\x08\x00\x03\x00\x00\x00\x00\x01\x10\x00\x01\x00\x0c\x00\x01\x00"...]]], iov_len=69631}], msg_iovlen=1, msg_controllen=0, msg_flags=0}, 0) = 32448 brk(0x5559bf0cb000) = 0x5559bf0cb000 recvmsg(3, {msg_name={sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, msg_namelen=12, msg_iov=[{iov_base=[{nlmsg_len=32448, nlmsg_type=NFNL_SUBSYS_NFTABLES<<8|NFT_MSG_NEWSETELEM, nlmsg_flags=NLM_F_MULTI, nlmsg_seq=0, nlmsg_pid=46775}, {nfgen_family=AF_INET, version=NFNETLINK_V0, res_id=htons(76)}, [[{nla_len=8, nla_type=0x1}, "\x72\x61\x77\x00"], [{nla_len=15, nla_type=0x2}, "\x62\x6c\x6f\x63\x6b\x2d\x6c\x69\x73\x74\x00"], [{nla_len=32404, nla_type=0x3}, "\x18\x00\x01\x00\x0c\x00\x01\x00\x08\x00\x01\x00\xa3\xe3\xe1\x00\x08\x00\x03\x00\x00\x00\x00\x01\x10\x00\x01\x00\x0c\x00\x01\x00"...]]], iov_len=69631}], msg_iovlen=1, msg_controllen=0, msg_flags=0}, 0) = 32448 brk(0x5559bf14b000) = 0x5559bf14b000 recvmsg(3, {msg_name={sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, msg_namelen=12, msg_iov=[{iov_base=[{nlmsg_len=32448, nlmsg_type=NFNL_SUBSYS_NFTABLES<<8|NFT_MSG_NEWSETELEM, nlmsg_flags=NLM_F_MULTI, nlmsg_seq=0, nlmsg_pid=46775}, {nfgen_family=AF_INET, version=NFNETLINK_V0, res_id=htons(76)}, [[{nla_len=8, nla_type=0x1}, "\x72\x61\x77\x00"], [{nla_len=15, nla_type=0x2}, "\x62\x6c\x6f\x63\x6b\x2d\x6c\x69\x73\x74\x00"], [{nla_len=32404, nla_type=0x3}, "\x18\x00\x01\x00\x0c\x00\x01\x00\x08\x00\x01\x00\x8c\xa8\x00\x00\x08\x00\x03\x00\x00\x00\x00\x01\x10\x00\x01\x00\x0c\x00\x01\x00"...]]], iov_len=69631}], msg_iovlen=1, msg_controllen=0, msg_flags=0}, 0) = 32448 brk(0x5559bf1cb000) = 0x5559bf1cb000 recvmsg(3, {msg_name={sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, msg_namelen=12, msg_iov=[{iov_base=[{nlmsg_len=32448, nlmsg_type=NFNL_SUBSYS_NFTABLES<<8|NFT_MSG_NEWSETELEM, nlmsg_flags=NLM_F_MULTI, nlmsg_seq=0, nlmsg_pid=46775}, {nfgen_family=AF_INET, version=NFNETLINK_V0, res_id=htons(76)}, [[{nla_len=8, nla_type=0x1}, "\x72\x61\x77\x00"], [{nla_len=15, nla_type=0x2}, "\x62\x6c\x6f\x63\x6b\x2d\x6c\x69\x73\x74\x00"], [{nla_len=32404, nla_type=0x3}, "\x18\x00\x01\x00\x0c\x00\x01\x00\x08\x00\x01\x00\x6d\xbc\x7d\x06\x08\x00\x03\x00\x00\x00\x00\x01\x10\x00\x01\x00\x0c\x00\x01\x00"...]]], iov_len=69631}], msg_iovlen=1, msg_controllen=0, msg_flags=0}, 0) = 32448 brk(0x5559bf24b000) = 0x5559bf24b000 recvmsg(3, {msg_name={sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, msg_namelen=12, msg_iov=[{iov_base=[{nlmsg_len=32448, nlmsg_type=NFNL_SUBSYS_NFTABLES<<8|NFT_MSG_NEWSETELEM, nlmsg_flags=NLM_F_MULTI, nlmsg_seq=0, nlmsg_pid=46775}, {nfgen_family=AF_INET, version=NFNETLINK_V0, res_id=htons(76)}, [[{nla_len=8, nla_type=0x1}, "\x72\x61\x77\x00"], [{nla_len=15, nla_type=0x2}, "\x62\x6c\x6f\x63\x6b\x2d\x6c\x69\x73\x74\x00"], [{nla_len=32404, nla_type=0x3}, "\x18\x00\x01\x00\x0c\x00\x01\x00\x08\x00\x01\x00\x67\x5b\xac\x00\x08\x00\x03\x00\x00\x00\x00\x01\x10\x00\x01\x00\x0c\x00\x01\x00"...]]], iov_len=69631}], msg_iovlen=1, msg_controllen=0, msg_flags=0}, 0) = 32448 brk(0x5559bf2cb000) = 0x5559bf2cb000 recvmsg(3, {msg_name={sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, msg_namelen=12, msg_iov=[{iov_base=[{nlmsg_len=32448, nlmsg_type=NFNL_SUBSYS_NFTABLES<<8|NFT_MSG_NEWSETELEM, nlmsg_flags=NLM_F_MULTI, nlmsg_seq=0, nlmsg_pid=46775}, {nfgen_family=AF_INET, version=NFNETLINK_V0, res_id=htons(76)}, [[{nla_len=8, nla_type=0x1}, "\x72\x61\x77\x00"], [{nla_len=15, nla_type=0x2}, "\x62\x6c\x6f\x63\x6b\x2d\x6c\x69\x73\x74\x00"], [{nla_len=32404, nla_type=0x3}, "\x18\x00\x01\x00\x0c\x00\x01\x00\x08\x00\x01\x00\x43\xcf\x5a\x9a\x08\x00\x03\x00\x00\x00\x00\x01\x10\x00\x01\x00\x0c\x00\x01\x00"...]]], iov_len=69631}], msg_iovlen=1, msg_controllen=0, msg_flags=0}, 0) = 32448 recvmsg(3, {msg_name={sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, msg_namelen=12, msg_iov=[{iov_base=[{nlmsg_len=18928, nlmsg_type=NFNL_SUBSYS_NFTABLES<<8|NFT_MSG_NEWSETELEM, nlmsg_flags=NLM_F_MULTI, nlmsg_seq=0, nlmsg_pid=46775}, {nfgen_family=AF_INET, version=NFNETLINK_V0, res_id=htons(76)}, [[{nla_len=8, nla_type=0x1}, "\x72\x61\x77\x00"], [{nla_len=15, nla_type=0x2}, "\x62\x6c\x6f\x63\x6b\x2d\x6c\x69\x73\x74\x00"], [{nla_len=18884, nla_type=0x3}, "\x18\x00\x01\x00\x0c\x00\x01\x00\x08\x00\x01\x00\x2a\x02\x00\x00\x08\x00\x03\x00\x00\x00\x00\x01\x10\x00\x01\x00\x0c\x00\x01\x00"...]]], iov_len=69631}], msg_iovlen=1, msg_controllen=0, msg_flags=0}, 0) = 18928 brk(0x5559bf34b000) = 0x5559bf34b000 recvmsg(3, {msg_name={sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, msg_namelen=12, msg_iov=[{iov_base=[[{nlmsg_len=48, nlmsg_type=NFNL_SUBSYS_NFTABLES<<8|NFT_MSG_NEWSETELEM, nlmsg_flags=NLM_F_MULTI, nlmsg_seq=0, nlmsg_pid=46775}, {nfgen_family=AF_INET, version=NFNETLINK_V0, res_id=htons(76)}, [[{nla_len=8, nla_type=0x1}, "\x72\x61\x77\x00"], [{nla_len=15, nla_type=0x2}, "\x62\x6c\x6f\x63\x6b\x2d\x6c\x69\x73\x74\x00"], {nla_len=4, nla_type=0x3}]], [{nlmsg_len=20, nlmsg_type=NLMSG_DONE, nlmsg_flags=NLM_F_MULTI, nlmsg_seq=0, nlmsg_pid=46775}, 0]], iov_len=69631}], msg_iovlen=1, msg_controllen=0, msg_flags=0}, 0) = 68 brk(0x5559bf3cb000) = 0x5559bf3cb000 brk(0x5559bf44b000) = 0x5559bf44b000 brk(0x5559bf4cb000) = 0x5559bf4cb000 brk(0x5559bf54b000) = 0x5559bf54b000 brk(0x5559bf5cb000) = 0x5559bf5cb000 brk(0x5559bf64b000) = 0x5559bf64b000 brk(0x5559bf6cb000) = 0x5559bf6cb000 brk(0x5559bf74b000) = 0x5559bf74b000 brk(0x5559bf7cb000) = 0x5559bf7cb000 brk(0x5559bf84b000) = 0x5559bf84b000 sendto(3, [{nlmsg_len=28, nlmsg_type=NFNL_SUBSYS_NFTABLES<<8|NFT_MSG_GETOBJ, nlmsg_flags=NLM_F_REQUEST|NLM_F_DUMP, nlmsg_seq=0, nlmsg_pid=0}, {nfgen_family=AF_INET, version=NFNETLINK_V0, res_id=htons(0)}, [{nla_len=8, nla_type=0x1}, "\x72\x61\x77\x00"]], 28, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 28 recvmsg(3, {msg_name={sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, msg_namelen=12, msg_iov=[{iov_base=[{nlmsg_len=20, nlmsg_type=NLMSG_DONE, nlmsg_flags=NLM_F_MULTI, nlmsg_seq=0, nlmsg_pid=46775}, 0], iov_len=69631}], msg_iovlen=1, msg_controllen=0, msg_flags=0}, 0) = 20 sendto(3, [{nlmsg_len=40, nlmsg_type=NFNL_SUBSYS_NFTABLES<<8|NFT_MSG_GETSETELEM, nlmsg_flags=NLM_F_REQUEST|NLM_F_DUMP, nlmsg_seq=0, nlmsg_pid=0}, {nfgen_family=AF_INET, version=NFNETLINK_V0, res_id=htons(0)}, [[{nla_len=11, nla_type=0x2}, "\x75\x73\x2d\x64\x6e\x73\x00"], [{nla_len=8, nla_type=0x1}, "\x6e\x61\x74\x00"]]], 40, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 40 recvmsg(3, {msg_name={sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, msg_namelen=12, msg_iov=[{iov_base=[{nlmsg_len=388, nlmsg_type=NFNL_SUBSYS_NFTABLES<<8|NFT_MSG_NEWSETELEM, nlmsg_flags=NLM_F_MULTI, nlmsg_seq=0, nlmsg_pid=46775}, {nfgen_family=AF_INET, version=NFNETLINK_V0, res_id=htons(76)}, [[{nla_len=8, nla_type=0x1}, "\x6e\x61\x74\x00"], [{nla_len=11, nla_type=0x2}, "\x75\x73\x2d\x64\x6e\x73\x00"], [{nla_len=348, nla_type=0x3}, "\x18\x00\x01\x00\x0c\x00\x01\x00\x08\x00\x01\x00\xc0\xa8\xc8\xbf\x08\x00\x03\x00\x00\x00\x00\x01\x10\x00\x01\x00\x0c\x00\x01\x00"...]]], iov_len=69631}], msg_iovlen=1, msg_controllen=0, msg_flags=0}, 0) = 388 recvmsg(3, {msg_name={sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, msg_namelen=12, msg_iov=[{iov_base=[[{nlmsg_len=44, nlmsg_type=NFNL_SUBSYS_NFTABLES<<8|NFT_MSG_NEWSETELEM, nlmsg_flags=NLM_F_MULTI, nlmsg_seq=0, nlmsg_pid=46775}, {nfgen_family=AF_INET, version=NFNETLINK_V0, res_id=htons(76)}, [[{nla_len=8, nla_type=0x1}, "\x6e\x61\x74\x00"], [{nla_len=11, nla_type=0x2}, "\x75\x73\x2d\x64\x6e\x73\x00"], {nla_len=4, nla_type=0x3}]], [{nlmsg_len=20, nlmsg_type=NLMSG_DONE, nlmsg_flags=NLM_F_MULTI, nlmsg_seq=0, nlmsg_pid=46775}, 0]], iov_len=69631}], msg_iovlen=1, msg_controllen=0, msg_flags=0}, 0) = 64 sendto(3, [{nlmsg_len=28, nlmsg_type=NFNL_SUBSYS_NFTABLES<<8|NFT_MSG_GETOBJ, nlmsg_flags=NLM_F_REQUEST|NLM_F_DUMP, nlmsg_seq=0, nlmsg_pid=0}, {nfgen_family=AF_INET, version=NFNETLINK_V0, res_id=htons(0)}, [{nla_len=8, nla_type=0x1}, "\x6e\x61\x74\x00"]], 28, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 28 recvmsg(3, {msg_name={sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, msg_namelen=12, msg_iov=[{iov_base=[{nlmsg_len=20, nlmsg_type=NLMSG_DONE, nlmsg_flags=NLM_F_MULTI, nlmsg_seq=0, nlmsg_pid=46775}, 0], iov_len=69631}], msg_iovlen=1, msg_controllen=0, msg_flags=0}, 0) = 20 sendto(3, [{nlmsg_len=32, nlmsg_type=NFNL_SUBSYS_NFTABLES<<8|NFT_MSG_GETOBJ, nlmsg_flags=NLM_F_REQUEST|NLM_F_DUMP, nlmsg_seq=0, nlmsg_pid=0}, {nfgen_family=AF_INET, version=NFNETLINK_V0, res_id=htons(0)}, [{nla_len=11, nla_type=0x1}, "\x66\x69\x6c\x74\x65\x72\x00"]], 32, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 32 recvmsg(3, {msg_name={sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, msg_namelen=12, msg_iov=[{iov_base=[{nlmsg_len=20, nlmsg_type=NLMSG_DONE, nlmsg_flags=NLM_F_MULTI, nlmsg_seq=0, nlmsg_pid=46775}, 0], iov_len=69631}], msg_iovlen=1, msg_controllen=0, msg_flags=0}, 0) = 20 sendto(3, [{nlmsg_len=20, nlmsg_type=NFNL_SUBSYS_NFTABLES<<8|NFT_MSG_GETGEN, nlmsg_flags=NLM_F_REQUEST, nlmsg_seq=0, nlmsg_pid=0}, {nfgen_family=AF_UNSPEC, version=NFNETLINK_V0, res_id=htons(0)}], 20, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 20 recvmsg(3, {msg_name={sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, msg_namelen=12, msg_iov=[{iov_base=[{nlmsg_len=44, nlmsg_type=NFNL_SUBSYS_NFTABLES<<8|NFT_MSG_NEWGEN, nlmsg_flags=0, nlmsg_seq=0, nlmsg_pid=46775}, {nfgen_family=AF_UNSPEC, version=NFNETLINK_V0, res_id=htons(76)}, [[{nla_len=8, nla_type=0x1}, "\x00\x00\x00\x4c"], [{nla_len=8, nla_type=0x2}, "\x00\x00\xb6\xb7"], [{nla_len=8, nla_type=0x3}, "\x6e\x66\x74\x00"]]], iov_len=69631}], msg_iovlen=1, msg_controllen=0, msg_flags=0}, 0) = 44 recvmsg(3, {msg_namelen=12}, 0) = -1 EAGAIN (Resource temporarily unavailable) getsockopt(3, SOL_SOCKET, SO_SNDBUF, [212992], [4]) = 0 setsockopt(3, SOL_SOCKET, SO_SNDBUFFORCE, [2097152], 4) = 0 getsockopt(3, SOL_SOCKET, SO_RCVBUF, [212992], [4]) = 0 sendmsg(3, {msg_name={sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, msg_namelen=12, msg_iov=[{iov_base=[[{nlmsg_len=20, nlmsg_type=NFNL_MSG_BATCH_BEGIN, nlmsg_flags=NLM_F_REQUEST, nlmsg_seq=0, nlmsg_pid=0}, {nfgen_family=AF_UNSPEC, version=NFNETLINK_V0, res_id=htons(2560)}], [{nlmsg_len=88, nlmsg_type=NFNL_SUBSYS_NFTABLES<<8|NFT_MSG_DELSETELEM, nlmsg_flags=NLM_F_REQUEST, nlmsg_seq=1, nlmsg_pid=0}, {nfgen_family=AF_INET, version=NFNETLINK_V0, res_id=htons(0)}, [[{nla_len=8, nla_type=0x1}, "\x72\x61\x77\x00"], [{nla_len=15, nla_type=0x2}, "\x62\x6c\x6f\x63\x6b\x2d\x6c\x69\x73\x74\x00"], [{nla_len=44, nla_type=NLA_F_NESTED|0x3}, "\x10\x00\x01\x80\x0c\x00\x01\x80\x08\x00\x01\x00\x05\x1c\x3e\x55\x18\x00\x02\x80\x08\x00\x03\x00\x00\x00\x00\x01\x0c\x00\x01\x80"...]]], [{nlmsg_len=20, nlmsg_type=NFNL_MSG_BATCH_END, nlmsg_flags=NLM_F_REQUEST, nlmsg_seq=2, nlmsg_pid=0}, {nfgen_family=AF_UNSPEC, version=NFNETLINK_V0, res_id=htons(2560)}]], iov_len=128}], msg_iovlen=1, msg_controllen=0, msg_flags=0}, 0) = 128 pselect6(4, [3], NULL, NULL, {tv_sec=0, tv_nsec=0}, NULL) = 0 (Timeout) close(3) = 0 brk(0x5559bf7c9000) = 0x5559bf7c9000 exit_group(0) = ? +++ exited with 0 +++

omkhar · 2022-12-26T03:09:21Z

seems to be happening again

omkhar · 2022-12-26T03:09:45Z

~ $ swupd info Distribution: Clear Linux OS Installed version: 37860 Version URL: https://cdn.download.clearlinux.org/update Content URL: https://cdn.download.clearlinux.org/update

omkhar · 2022-12-26T14:24:06Z

[Mon Dec 26 09:05:17 2022] Code: 89 f4 55 89 d5 ba f0 03 00 00 53 48 89 fb 48 81 ec 18 04 00 00 4c 8b 7e 18 48 8d 7c 24 20 31 f6 0f 29 44 24 10 e8 b5 3f fb ff <41> 8b 4f 48 83 f9 06 0f 87 2d 03 00 00 48 8d 15 ad b4 04 00 89 c8 [Mon Dec 26 09:05:17 2022] nft[19714]: segfault at 55750000004a ip 0000557543e4c95b sp 00007ffea406d740 error 4 cpu 1 in libnftables.so.1.1.0[557543e00000+90000] likely on CPU 1 (core 1, socket 0)
from dmesg

fenrus75 · 2022-12-26T14:38:28Z

any chance you can just do this from inside GDB and then type "bt" ? (suggestion: first run gdb on the binary to get the debug symbols loaded.. exit gdb and then do the full run)

…

On Mon, Dec 26, 2022 at 6:24 AM Omkhar Arasaratnam ***@***.***> wrote: [Mon Dec 26 09:05:17 2022] Code: 89 f4 55 89 d5 ba f0 03 00 00 53 48 89 fb 48 81 ec 18 04 00 00 4c 8b 7e 18 48 8d 7c 24 20 31 f6 0f 29 44 24 10 e8 b5 3f fb ff <41> 8b 4f 48 83 f9 06 0f 87 2d 03 00 00 48 8d 15 ad b4 04 00 89 c8 [Mon Dec 26 09:05:17 2022] nft[19714]: segfault at 55750000004a ip 0000557543e4c95b sp 00007ffea406d740 error 4 cpu 1 in libnftables.so.1.1.0[557543e00000+90000] likely on CPU 1 (core 1, socket 0) from dmesg — Reply to this email directly, view it on GitHub <#2789 (comment)>, or unsubscribe <https://github.com/notifications/unsubscribe-auth/AAJ54FPLNVBQZVN3YE6K3ALWPGTBDANCNFSM6AAAAAATDSSN6U> . You are receiving this because you are subscribed to this thread.Message ID: ***@***.***>

omkhar · 2022-12-26T15:12:27Z

here you are

GNU gdb (GDB) 12.1
Copyright (C) 2022 Free Software Foundation, Inc.
License GPLv3+: GNU GPL version 3 or later <http://gnu.org/licenses/gpl.html>
This is free software: you are free to change and redistribute it.
There is NO WARRANTY, to the extent permitted by law.
Type "show copying" and "show warranty" for details.
This GDB was configured as "x86_64-generic-linux-gnu".
Type "show configuration" for configuration details.
For bug reporting instructions, please see:
<https://www.gnu.org/software/gdb/bugs/>.
Find the GDB manual and other documentation resources online at:
    <http://www.gnu.org/software/gdb/documentation/>.

For help, type "help".
Type "apropos word" to search for commands related to "word"...
Reading symbols from nft...
Reading symbols from /usr/lib/debug/.build-id/f8/6d1c4f751b39647c1ad708beb4db86cd0b476b.debug...
(gdb) run delete element ip raw block-list \{ 255.255.255.255/8 \}
Starting program: /usr/bin/nft delete element ip raw block-list \{ 255.255.255.255/8 \}
[Thread debugging using libthread_db enabled]
Using host libthread_db library "/usr/lib64/libthread_db.so.1".

Program received signal SIGSEGV, Segmentation fault.
erec_print (octx=octx@entry=0x5555555662e8, erec=erec@entry=0x555555587090, debug_mask=debug_mask@entry=0) at /usr/src/debug/nftables-1.0.5.x86_64/src/erec.c:143
143	/usr/src/debug/nftables-1.0.5.x86_64/src/erec.c: No such file or directory.
(gdb) bt
#0  erec_print (octx=octx@entry=0x5555555662e8, erec=erec@entry=0x555555587090, debug_mask=debug_mask@entry=0) at /usr/src/debug/nftables-1.0.5.x86_64/src/erec.c:143
#1  0x00005555554c4563 in erec_print_list (debug_mask=0, list=0x7fffffffc4a0, octx=0x5555555662e8) at /usr/src/debug/nftables-1.0.5.x86_64/src/erec.c:218
#2  nft_run_cmd_from_buffer (nft=0x5555555662a0, buf=buf@entry=0x555555586b60 "delete element ip raw block-list { 255.255.255.255/8 }")
    at /usr/src/debug/nftables-1.0.5.x86_64/src/libnftables.c:589
#3  0x0000555555558b23 in main (argc=9, argv=0x7fffffffc678) at /usr/src/debug/nftables-1.0.5.x86_64/src/main.c:521

omkhar · 2022-12-26T15:21:07Z

fwiw it appears that nftables was bumped to 1.0.6 on 12/22, although I'm not sure whether this might be embedded in one of the cited fixes

https://www.netfilter.org/projects/nftables/files/changes-nftables-1.0.6.txt

fenrus75 · 2022-12-26T15:27:26Z

I'll update ours as well; on our holiday schedule it may be a day or two before it gets out as a release

…

On Mon, Dec 26, 2022 at 7:21 AM Omkhar Arasaratnam ***@***.***> wrote: fwiw it appears that nftables was bumped to 1.0.6 on 12/22, although I'm not sure whether this might be embedded in one of the cited fixes https://www.netfilter.org/projects/nftables/files/changes-nftables-1.0.6.txt — Reply to this email directly, view it on GitHub <#2789 (comment)>, or unsubscribe <https://github.com/notifications/unsubscribe-auth/AAJ54FKA2MURQT6JVHB2WD3WPGZW3ANCNFSM6AAAAAATDSSN6U> . You are receiving this because you commented.Message ID: ***@***.***>

omkhar · 2022-12-26T15:50:44Z

Between gdb and poking around the nftable repo it definitely looks like it segfaults while trying to process the deletion, let’s see what 1.0.6 brings

omkhar · 2022-12-29T03:58:53Z

I got nft-1.0.6, I'm afraid it does not help:

$ nft --version
nftables v1.0.6 (Lester Gooch #5)

GNU gdb (GDB) 12.1
Copyright (C) 2022 Free Software Foundation, Inc.
License GPLv3+: GNU GPL version 3 or later <http://gnu.org/licenses/gpl.html>
This is free software: you are free to change and redistribute it.
There is NO WARRANTY, to the extent permitted by law.
Type "show copying" and "show warranty" for details.
This GDB was configured as "x86_64-generic-linux-gnu".
Type "show configuration" for configuration details.
For bug reporting instructions, please see:
<https://www.gnu.org/software/gdb/bugs/>.
Find the GDB manual and other documentation resources online at:
    <http://www.gnu.org/software/gdb/documentation/>.

For help, type "help".
Type "apropos word" to search for commands related to "word"...
Reading symbols from nft...
Reading symbols from /usr/lib/debug//usr/bin/nft-1.0.6.x86_64.debug...
(gdb) run delete element ip raw block-list \{ 255.255.255.255/8 \}
Starting program: /usr/bin/nft delete element ip raw block-list \{ 255.255.255.255/8 \}
[Thread debugging using libthread_db enabled]
Using host libthread_db library "/usr/lib64/libthread_db.so.1".

Program received signal SIGSEGV, Segmentation fault.
0x00005555554b556b in ?? () from /usr/lib64/libnftables.so.1
(gdb) bt
#0  0x00005555554b556b in ?? () from /usr/lib64/libnftables.so.1
#1  0x00005555554bd153 in nft_run_cmd_from_buffer () from /usr/lib64/libnftables.so.1
#2  0x0000555555558b23 in main (argc=9, argv=0x7fffffffcfe8) at /builddir/build/BUILD/nftables-1.0.6/src/main.c:521
(gdb)

omkhar · 2023-01-02T01:48:17Z

it seems to be getting worse?

=================================================================
==11946==ERROR: AddressSanitizer: heap-use-after-free on address 0x60d00000021c at pc 0x559ae160d5b3 bp 0x7ffc37bcb800 sp 0x7ffc37bcb7f8
READ of size 4 at 0x60d00000021c thread T0
    #0 0x559ae160d5b2 in 0? /builddir/build/BUILD/nftables-1.0.6/src/intervals.c:424
    #1 0x559ae15cb05a in interval_set_eval.lto_priv.0 (/usr/lib64/libnftables.so.1+0xaf05a)
    #2 0x559ae15e1c0d in setelem_evaluate.lto_priv.0 (/usr/lib64/libnftables.so.1+0xc5c0d)
    #3 0x559ae166b715 in nft_evaluate (/usr/lib64/libnftables.so.1+0x14f715)
    #4 0x559ae16749b4 in nft_run_cmd_from_buffer (/usr/lib64/libnftables.so.1+0x1589b4)
    #5 0x559ae20c0e7e in main (/usr/bin/nft+0x8e7e)
    #6 0x559ae1341146 in __libc_start_call_main ../sysdeps/nptl/libc_start_call_main.h:58
    #7 0x559ae1341204 in __libc_start_main_impl ../csu/libc-start.c:381
    #8 0x559ae20c1420 in _start ../sysdeps/x86_64/start.S:115

0x60d00000021c is located 60 bytes inside of 144-byte region [0x60d0000001e0,0x60d000000270)
freed by thread T0 here:
    #0 0x559ae18ea618 in __interceptor_free ../../../../gcc-12.2.0/libsanitizer/asan/asan_malloc_linux.cpp:52
    #1 0x559ae160c315 in 4 /builddir/build/BUILD/nftables-1.0.6/src/intervals.c:349
    #2 0x559ae160c315 in 0? /builddir/build/BUILD/nftables-1.0.6/src/intervals.c:420

previously allocated by thread T0 here:
    #0 0x559ae18eb927 in __interceptor_calloc ../../../../gcc-12.2.0/libsanitizer/asan/asan_malloc_linux.cpp:77
    #1 0x559ae15c5076 in set_elem_expr_alloc (/usr/lib64/libnftables.so.1+0xa9076)

SUMMARY: AddressSanitizer: heap-use-after-free /builddir/build/BUILD/nftables-1.0.6/src/intervals.c:424 in 0?
Shadow bytes around the buggy address:
  0x0c1a7fff7ff0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
  0x0c1a7fff8000: fa fa fa fa fa fa fa fa fd fd fd fd fd fd fd fd
  0x0c1a7fff8010: fd fd fd fd fd fd fd fd fd fd fa fa fa fa fa fa
  0x0c1a7fff8020: fa fa fd fd fd fd fd fd fd fd fd fd fd fd fd fd
  0x0c1a7fff8030: fd fd fd fd fa fa fa fa fa fa fa fa fd fd fd fd
=>0x0c1a7fff8040: fd fd fd[fd]fd fd fd fd fd fd fd fd fd fd fa fa
  0x0c1a7fff8050: fa fa fa fa fa fa 00 00 00 00 00 00 00 00 00 00
  0x0c1a7fff8060: 00 00 00 00 00 00 00 00 fa fa fa fa fa fa fa fa
  0x0c1a7fff8070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
  0x0c1a7fff8080: 00 00 fa fa fa fa fa fa fa fa 00 00 00 00 00 00
  0x0c1a7fff8090: 00 00 00 00 00 00 00 00 00 00 00 00 fa fa fa fa
Shadow byte legend (one shadow byte represents 8 application bytes):
  Addressable:           00
  Partially addressable: 01 02 03 04 05 06 07 
  Heap left redzone:       fa
  Freed heap region:       fd
  Stack left redzone:      f1
  Stack mid redzone:       f2
  Stack right redzone:     f3
  Stack after return:      f5
  Stack use after scope:   f8
  Global redzone:          f9
  Global init order:       f6
  Poisoned by user:        f7
  Container overflow:      fc
  Array cookie:            ac
  Intra object redzone:    bb
  ASan internal:           fe
  Left alloca redzone:     ca
  Right alloca redzone:    cb
==11946==ABORTING
=================================================================
==11997==ERROR: AddressSanitizer: heap-use-after-free on address 0x60d00000021c at pc 0x558767e0d5b3 bp 0x7fff27933640 sp 0x7fff27933638
READ of size 4 at 0x60d00000021c thread T0
    #0 0x558767e0d5b2 in 0? /builddir/build/BUILD/nftables-1.0.6/src/intervals.c:424
    #1 0x558767dcb05a in interval_set_eval.lto_priv.0 (/usr/lib64/libnftables.so.1+0xaf05a)
    #2 0x558767de1c0d in setelem_evaluate.lto_priv.0 (/usr/lib64/libnftables.so.1+0xc5c0d)
    #3 0x558767e6b715 in nft_evaluate (/usr/lib64/libnftables.so.1+0x14f715)
    #4 0x558767e749b4 in nft_run_cmd_from_buffer (/usr/lib64/libnftables.so.1+0x1589b4)
    #5 0x558768710e7e in main (/usr/bin/nft+0x8e7e)
    #6 0x558767af7146 in __libc_start_call_main ../sysdeps/nptl/libc_start_call_main.h:58
    #7 0x558767af7204 in __libc_start_main_impl ../csu/libc-start.c:381
    #8 0x558768711420 in _start ../sysdeps/x86_64/start.S:115

0x60d00000021c is located 60 bytes inside of 144-byte region [0x60d0000001e0,0x60d000000270)
freed by thread T0 here:
AddressSanitizer:DEADLYSIGNAL
AddressSanitizer: nested bug in the same thread, aborting.

fenrus75 · 2023-01-02T02:57:22Z

this is actually great; a much more detailed error message (hopefully the nftables folks can also use this since it's very detailed now)

…

On Sun, Jan 1, 2023 at 5:48 PM Omkhar Arasaratnam ***@***.***> wrote: it seems to be getting worse? ================================================================= ==11946==ERROR: AddressSanitizer: heap-use-after-free on address 0x60d00000021c at pc 0x559ae160d5b3 bp 0x7ffc37bcb800 sp 0x7ffc37bcb7f8 READ of size 4 at 0x60d00000021c thread T0 #0 0x559ae160d5b2 in 0? /builddir/build/BUILD/nftables-1.0.6/src/intervals.c:424 #1 0x559ae15cb05a in interval_set_eval.lto_priv.0 (/usr/lib64/libnftables.so.1+0xaf05a) #2 0x559ae15e1c0d in setelem_evaluate.lto_priv.0 (/usr/lib64/libnftables.so.1+0xc5c0d) #3 0x559ae166b715 in nft_evaluate (/usr/lib64/libnftables.so.1+0x14f715) #4 0x559ae16749b4 in nft_run_cmd_from_buffer (/usr/lib64/libnftables.so.1+0x1589b4) #5 0x559ae20c0e7e in main (/usr/bin/nft+0x8e7e) #6 0x559ae1341146 in __libc_start_call_main ../sysdeps/nptl/libc_start_call_main.h:58 #7 0x559ae1341204 in __libc_start_main_impl ../csu/libc-start.c:381 #8 0x559ae20c1420 in _start ../sysdeps/x86_64/start.S:115 0x60d00000021c is located 60 bytes inside of 144-byte region [0x60d0000001e0,0x60d000000270) freed by thread T0 here: #0 0x559ae18ea618 in __interceptor_free ../../../../gcc-12.2.0/libsanitizer/asan/asan_malloc_linux.cpp:52 #1 0x559ae160c315 in 4 /builddir/build/BUILD/nftables-1.0.6/src/intervals.c:349 #2 0x559ae160c315 in 0? /builddir/build/BUILD/nftables-1.0.6/src/intervals.c:420 previously allocated by thread T0 here: #0 0x559ae18eb927 in __interceptor_calloc ../../../../gcc-12.2.0/libsanitizer/asan/asan_malloc_linux.cpp:77 #1 0x559ae15c5076 in set_elem_expr_alloc (/usr/lib64/libnftables.so.1+0xa9076) SUMMARY: AddressSanitizer: heap-use-after-free /builddir/build/BUILD/nftables-1.0.6/src/intervals.c:424 in 0? Shadow bytes around the buggy address: 0x0c1a7fff7ff0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 0x0c1a7fff8000: fa fa fa fa fa fa fa fa fd fd fd fd fd fd fd fd 0x0c1a7fff8010: fd fd fd fd fd fd fd fd fd fd fa fa fa fa fa fa 0x0c1a7fff8020: fa fa fd fd fd fd fd fd fd fd fd fd fd fd fd fd 0x0c1a7fff8030: fd fd fd fd fa fa fa fa fa fa fa fa fd fd fd fd =>0x0c1a7fff8040: fd fd fd[fd]fd fd fd fd fd fd fd fd fd fd fa fa 0x0c1a7fff8050: fa fa fa fa fa fa 00 00 00 00 00 00 00 00 00 00 0x0c1a7fff8060: 00 00 00 00 00 00 00 00 fa fa fa fa fa fa fa fa 0x0c1a7fff8070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 0x0c1a7fff8080: 00 00 fa fa fa fa fa fa fa fa 00 00 00 00 00 00 0x0c1a7fff8090: 00 00 00 00 00 00 00 00 00 00 00 00 fa fa fa fa Shadow byte legend (one shadow byte represents 8 application bytes): Addressable: 00 Partially addressable: 01 02 03 04 05 06 07 Heap left redzone: fa Freed heap region: fd Stack left redzone: f1 Stack mid redzone: f2 Stack right redzone: f3 Stack after return: f5 Stack use after scope: f8 Global redzone: f9 Global init order: f6 Poisoned by user: f7 Container overflow: fc Array cookie: ac Intra object redzone: bb ASan internal: fe Left alloca redzone: ca Right alloca redzone: cb ==11946==ABORTING ================================================================= ==11997==ERROR: AddressSanitizer: heap-use-after-free on address 0x60d00000021c at pc 0x558767e0d5b3 bp 0x7fff27933640 sp 0x7fff27933638 READ of size 4 at 0x60d00000021c thread T0 #0 0x558767e0d5b2 in 0? /builddir/build/BUILD/nftables-1.0.6/src/intervals.c:424 #1 0x558767dcb05a in interval_set_eval.lto_priv.0 (/usr/lib64/libnftables.so.1+0xaf05a) #2 0x558767de1c0d in setelem_evaluate.lto_priv.0 (/usr/lib64/libnftables.so.1+0xc5c0d) #3 0x558767e6b715 in nft_evaluate (/usr/lib64/libnftables.so.1+0x14f715) #4 0x558767e749b4 in nft_run_cmd_from_buffer (/usr/lib64/libnftables.so.1+0x1589b4) #5 0x558768710e7e in main (/usr/bin/nft+0x8e7e) #6 0x558767af7146 in __libc_start_call_main ../sysdeps/nptl/libc_start_call_main.h:58 #7 0x558767af7204 in __libc_start_main_impl ../csu/libc-start.c:381 #8 0x558768711420 in _start ../sysdeps/x86_64/start.S:115 0x60d00000021c is located 60 bytes inside of 144-byte region [0x60d0000001e0,0x60d000000270) freed by thread T0 here: AddressSanitizer:DEADLYSIGNAL AddressSanitizer: nested bug in the same thread, aborting. — Reply to this email directly, view it on GitHub <#2789 (comment)>, or unsubscribe <https://github.com/notifications/unsubscribe-auth/AAJ54FKQUSTVUGKXRSYH3ILWQIXWZANCNFSM6AAAAAATDSSN6U> . You are receiving this because you commented.Message ID: ***@***.***>

omkhar · 2023-01-16T12:00:54Z

Fixed in https://git.netfilter.org/nftables/commit/?id=ce04d25b4a116ef04f27d0b71994f61a24114d6d

fenrus75 · 2023-01-16T15:59:42Z

thanks! adding to our package

…

On Mon, Jan 16, 2023 at 4:01 AM Omkhar Arasaratnam ***@***.***> wrote: Fixed in https://git.netfilter.org/nftables/commit/?id=ce04d25b4a116ef04f27d0b71994f61a24114d6d — Reply to this email directly, view it on GitHub <#2789 (comment)>, or unsubscribe <https://github.com/notifications/unsubscribe-auth/AAJ54FKBIHXBCJABIHY3XDTWSU2ABANCNFSM6AAAAAATDSSN6U> . You are receiving this because you commented.Message ID: ***@***.***>

omkhar added bug new labels Dec 19, 2022

This comment was marked as outdated.

Sign in to view

omkhar closed this as completed Dec 23, 2022

omkhar reopened this Dec 26, 2022

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

nft delete results in segfault #2789

nft delete results in segfault #2789

omkhar commented Dec 19, 2022 •

edited

Loading

omkhar commented Dec 19, 2022

This comment was marked as outdated.

omkhar commented Dec 23, 2022

omkhar commented Dec 26, 2022

omkhar commented Dec 26, 2022

omkhar commented Dec 26, 2022

fenrus75 commented Dec 26, 2022 via email

omkhar commented Dec 26, 2022 •

edited

Loading

omkhar commented Dec 26, 2022

fenrus75 commented Dec 26, 2022 via email

omkhar commented Dec 26, 2022

omkhar commented Dec 29, 2022 •

edited

Loading

omkhar commented Jan 2, 2023

fenrus75 commented Jan 2, 2023 via email

omkhar commented Jan 16, 2023

fenrus75 commented Jan 16, 2023 via email

nft delete results in segfault #2789

nft delete results in segfault #2789

Comments

omkhar commented Dec 19, 2022 • edited Loading

omkhar commented Dec 19, 2022

This comment was marked as outdated.

omkhar commented Dec 23, 2022

omkhar commented Dec 26, 2022

omkhar commented Dec 26, 2022

omkhar commented Dec 26, 2022

fenrus75 commented Dec 26, 2022 via email

omkhar commented Dec 26, 2022 • edited Loading

omkhar commented Dec 26, 2022

fenrus75 commented Dec 26, 2022 via email

omkhar commented Dec 26, 2022

omkhar commented Dec 29, 2022 • edited Loading

omkhar commented Jan 2, 2023

fenrus75 commented Jan 2, 2023 via email

omkhar commented Jan 16, 2023

fenrus75 commented Jan 16, 2023 via email

omkhar commented Dec 19, 2022 •

edited

Loading

omkhar commented Dec 26, 2022 •

edited

Loading

omkhar commented Dec 29, 2022 •

edited

Loading