[LARTC] Operation failed: such conntrack doesn't exist - when it - nic-lartc

From: nic-lartc@studentergaarden.dk
To: lartc@vger.kernel.org
Subject: [LARTC] Operation failed: such conntrack doesn't exist - when it
Date: Tue, 31 Jul 2007 12:30:52 +0000	[thread overview]
Message-ID: <46AF2B7C.8060204@studentergaarden.dk> (raw)

Hi gurus I want to destroy all state table entries/reset all connections 
for a particular client. When I issue conntrack -L -s <ip number>, it 
lists loads of state entries. When I issue conntrack -D -s <same ip 
number> it answers "NFNETLINK answers: No such file or directory 
Operation failed: such conntrack doesn't exist."

I have googled the problem, but can find only either unanswered or 
"there was actually really a bug in conntrack on that kernel verision, 
it is now fixed" posts from a while back.

Is this an error or is my syntax wrong/I am doing something silly?

Debugging info, including kernel version and strace (I am root):

dragon:/home/nicolas# conntrack -L -s 172.16.98.255
tcp      6 431690 ESTABLISHED src\x172.16.98.255 dst 9.85.135.xxx 
sportI56 dport€ packets=4 bytes\x1033 src 9.85.135.xxx 
dst\x130.226.169.xxx sport€ dportI56 packets=3 bytes\x1091 [ASSURED] 
mark=0 use=1
tcp      6 431983 ESTABLISHED src\x172.16.98.255 dst 7.46.110.xxx 
sport\x1050 dport\x1863 packets27 bytes\x16935 src 7.46.110.xxx 
dst\x130.226.169.xxx sport\x1863 dport\x1050 packets\x177 bytes\x17375 
[ASSURED] mark=0 use=1
tcp      6 315337 ESTABLISHED src\x172.16.98.255 dst€.252.91.xxx 
sportH82 dport€ packets\x16 bytesg68 src€.252.91.xxx 
dst\x130.226.169.xxx sport€ dportH82 packets\x13 bytes†26 [ASSURED] 
mark=0 use=2

... more cut for clarity ...

dragon:/home/nicolas# conntrack -D -s 172.16.98.255
NFNETLINK answers: No such file or directory
Operation failed: such conntrack doesn't exist

dragon:/home/nicolas# uname -a
Linux dragon 2.6.18-4-686 #1 SMP Wed May 9 23:03:12 UTC 2007 i686 GNU/Linux
(Debian Etch)

strace

dragon:/home/nicolas# strace conntrack -D -s 172.16.98.255

execve("/usr/sbin/conntrack", ["conntrack", "-D", "-s", 
"172.16.98.255"], [/* 19 vars */]) = 0
uname({sys="Linux", node="dragon", ...}) = 0
brk(0)                                  = 0x804e000
access("/etc/ld.so.nohwcap", F_OK)      = -1 ENOENT (No such file or 
directory)
mmap2(NULL, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 
0) = 0xb7fde000
access("/etc/ld.so.preload", R_OK)      = -1 ENOENT (No such file or 
directory)
mmap2(NULL, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 
0) = 0xb7fdd000
open("/etc/ld.so.cache", O_RDONLY)      = 3
fstat64(3, {st_mode=S_IFREG|0644, st_size\x17386, ...}) = 0
mmap2(NULL, 17386, PROT_READ, MAP_PRIVATE, 3, 0) = 0xb7fd8000
close(3)                                = 0
access("/etc/ld.so.nohwcap", F_OK)      = -1 ENOENT (No such file or 
directory)
open("/usr/lib/libnetfilter_conntrack.so.1", O_RDONLY) = 3
read(3, "\177ELF\1\1\1\0\0\0\0\0\0\0\0\0\3\0\3\0\1\0\0\0000\24\0"..., 
512) = 512
fstat64(3, {st_mode=S_IFREG|0644, st_size\x19232, ...}) = 0
mmap2(NULL, 22420, PROT_READ|PROT_EXEC, MAP_PRIVATE|MAP_DENYWRITE, 3, 0) 
= 0xb7fd2000
mmap2(0xb7fd7000, 4096, PROT_READ|PROT_WRITE, 
MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 3, 0x4) = 0xb7fd7000
close(3)                                = 0
access("/etc/ld.so.nohwcap", F_OK)      = -1 ENOENT (No such file or 
directory)
open("/lib/tls/i686/cmov/libdl.so.2", O_RDONLY) = 3
read(3, "\177ELF\1\1\1\0\0\0\0\0\0\0\0\0\3\0\3\0\1\0\0\0\20\f\0"..., 
512) = 512
fstat64(3, {st_mode=S_IFREG|0644, st_size•92, ...}) = 0
mmap2(NULL, 12404, PROT_READ|PROT_EXEC, MAP_PRIVATE|MAP_DENYWRITE, 3, 0) 
= 0xb7fce000
mmap2(0xb7fd0000, 8192, PROT_READ|PROT_WRITE, 
MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 3, 0x1) = 0xb7fd0000
close(3)                                = 0
access("/etc/ld.so.nohwcap", F_OK)      = -1 ENOENT (No such file or 
directory)
open("/lib/tls/i686/cmov/libc.so.6", O_RDONLY) = 3
read(3, "\177ELF\1\1\1\0\0\0\0\0\0\0\0\0\3\0\3\0\1\0\0\0\240O\1"..., 
512) = 512
fstat64(3, {st_mode=S_IFREG|0644, st_size\x1241392, ...}) = 0
mmap2(NULL, 1247388, PROT_READ|PROT_EXEC, MAP_PRIVATE|MAP_DENYWRITE, 3, 
0) = 0xb7e9d000
mmap2(0xb7fc4000, 28672, PROT_READ|PROT_WRITE, 
MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 3, 0x127) = 0xb7fc4000
mmap2(0xb7fcb000, 10396, PROT_READ|PROT_WRITE, 
MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0xb7fcb000
close(3)                                = 0
access("/etc/ld.so.nohwcap", F_OK)      = -1 ENOENT (No such file or 
directory)
open("/usr/lib/libnfnetlink.so.1", O_RDONLY) = 3
read(3, "\177ELF\1\1\1\0\0\0\0\0\0\0\0\0\3\0\3\0\1\0\0\0\220\v\0"..., 
512) = 512
fstat64(3, {st_mode=S_IFREG|0644, st_size\x10956, ...}) = 0
mmap2(NULL, 14252, PROT_READ|PROT_EXEC, MAP_PRIVATE|MAP_DENYWRITE, 3, 0) 
= 0xb7e99000
mmap2(0xb7e9c000, 4096, PROT_READ|PROT_WRITE, 
MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 3, 0x2) = 0xb7e9c000
close(3)                                = 0
mmap2(NULL, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 
0) = 0xb7e98000
mprotect(0xb7fc4000, 20480, PROT_READ)  = 0
set_thread_area({entry_number:-1 -> 6, base_addr:0xb7e98ae0, 
limit:1048575, seg_32bit:1, contents:0, read_exec_only:0, 
limit_in_pages:1, seg_not_present:0, useable:1}) = 0
munmap(0xb7fd8000, 17386)               = 0
brk(0)                                  = 0x804e000
brk(0x806f000)                          = 0x806f000
socket(PF_NETLINK, SOCK_RAW, 12)        = 3
getsockname(3, {sa_family¯_NETLINK, pid=0, groups\0000000}, [12]) = 0
time(NULL)                              = 1185884349
bind(3, {sa_family¯_NETLINK, pid=0, groups\0000000}, 12) = 0
getsockname(3, {sa_family¯_NETLINK, pid\x1925, groups\0000000}, [12]) = 0
bind(3, {sa_family¯_NETLINK, pid\x1925, groups\0000000}, 12) = 0
open("/usr/lib/libnetfilter_conntrack//nfct_l3proto_ipv4-0.0.31.so", 
O_RDONLY) = 4
read(4, "\177ELF\1\1\1\0\0\0\0\0\0\0\0\0\3\0\3\0\1\0\0\0000\5\0"..., 
512) = 512
fstat64(4, {st_mode=S_IFREG|0644, st_size708, ...}) = 0
mmap2(NULL, 6632, PROT_READ|PROT_EXEC, MAP_PRIVATE|MAP_DENYWRITE, 4, 0) 
= 0xb7fdb000
mmap2(0xb7fdc000, 4096, PROT_READ|PROT_WRITE, 
MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 4, 0) = 0xb7fdc000
close(4)                                = 0
sendmsg(3, {msg_name(12)={sa_family¯_NETLINK, pid=0, groups\0000000}, 
msg_iov(1)=[{"8\0\0\0\2\1\5\3\277(\257F\0\0\0\0\2\0\0\0$\0\1\200\24\0"..., 
56}], msg_controllen=0, msg_flags=0}, 0) = 56
recvmsg(3, {msg_name(12)={sa_family¯_NETLINK, pid=0, groups\0000000}, 
msg_iov(1)=[{"$\0\0\0\2\0\0\0\277(\257F\205\7\0\0\376\377\377\3778\0"..., 
8192}], msg_controllen=0, msg_flags=0}, 0) = 36
dup(2)                                  = 4
fcntl64(4, F_GETFL)                     = 0x8002 (flags O_RDWR|O_LARGEFILE)
fstat64(4, {st_mode=S_IFCHR|0620, st_rdev=makedev(136, 0), ...}) = 0
mmap2(NULL, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 
0) = 0xb7fda000
_llseek(4, 0, 0xbfa51594, SEEK_CUR)     = -1 ESPIPE (Illegal seek)
write(4, "NFNETLINK answers: No such file "..., 45NFNETLINK answers: No 
such file or directory
) = 45
close(4)                                = 0
munmap(0xb7fda000, 4096)                = 0
close(3)                                = 0
write(2, "Operation failed: such conntrack"..., 47Operation failed: such 
conntrack doesn't exist
) = 47
exit_group(1)                           = ?
Process 1925 detached

_______________________________________________
LARTC mailing list
LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc