openvassd using 100% CPU, but scans never seem to do anything. No network traffic once scan is supposedly started.
Tasks switch to running state according to gvmd.log:
==> gsad.log <==
gsad main:MESSAGE:2018-10-18 11h06.09 utc:29743: Starting GSAD version 8.0+beta1
gsad gmp:MESSAGE:2018-10-18 11h07.06 utc:29744: Authentication success for ‘admin’ from 127.0.0.1
gsad main:WARNING:2018-10-18 13h14.54 UTC:29744: MHD: Failed to send data in request for `/img/next_inactive.svg’.
gsad main:MESSAGE:2018-10-18 13h32.39 utc:2806: Starting GSAD version 8.0+beta1
gsad gmp:MESSAGE:2018-10-18 13h33.11 utc:2807: Authentication success for ‘admin’ from 127.0.0.1
gsad main:MESSAGE:2018-10-18 14h12.49 utc:15953: Starting GSAD version 8.0+beta1==> gvmd.log <==
event task:MESSAGE:2018-10-18 14h02.52 UTC:13888: Status of task Scan Suspect Host (6eb52866-2d3d-45c8-9744-0c42cf846a6d) has changed to Stopped
md main:MESSAGE:2018-10-18 14h11.22 utc:15844: Greenbone Vulnerability Manager version 8.0+beta1 (DB revision 191)
util gpgme:MESSAGE:2018-10-18 14h11.22 utc:15845: Setting GnuPG dir to ‘/usr/local/var/lib/gvm/gvmd/gnupg’
util gpgme:MESSAGE:2018-10-18 14h11.22 utc:15845: Using OpenPGP engine version ‘2.2.4’
md main:WARNING:2018-10-18 14h11.22 utc:15864: openvas_scanner_connect_unix: Failed to connect to scanner (/usr/local/var/run/openvassd.sock): Connection refused
md otp:MESSAGE:2018-10-18 14h11.32 utc:15873: Waiting for scanner to load: No information provided. (Message: SCANNER_LOADING <|> 0 <|> 0
)
md otp:MESSAGE:2018-10-18 14h11.42 utc:15879: Waiting for scanner to load NVTs: 14550 / 47825.
md otp:MESSAGE:2018-10-18 14h11.52 utc:15884: Waiting for scanner to load NVTs: 26700 / 47825.
md otp:MESSAGE:2018-10-18 14h12.02 utc:15888: Waiting for scanner to load NVTs: 39450 / 47825.==> openvassd.log <==
sd main:MESSAGE:2018-10-18 12h40.22 utc:3531: Total time to scan all hosts : 5101 seconds
sd main:MESSAGE:2018-10-18 13h01.37 utc:23712: openvassd 6.0+beta1 started
lib misc:MESSAGE:2018-10-18 13h13.29 utc:29035: [29035] nsend():send Broken pipe
lib misc:MESSAGE:2018-10-18 13h14.34 utc:29314: [29314] nsend():send Broken pipe
sd main:MESSAGE:2018-10-18 13h26.22 utc:2935: openvassd 6.0+beta1 started
sd main:MESSAGE:2018-10-18 13h32.29 utc:2786: openvassd 6.0+beta1 started
lib misc:MESSAGE:2018-10-18 13h51.13 utc:13251: [13251] nsend():send Broken pipe
sd main:MESSAGE:2018-10-18 13h52.24 utc:13584: openvassd 6.0+beta1 started
sd main:MESSAGE:2018-10-18 13h52.38 utc:13689: openvassd 6.0+beta1 started
sd main:MESSAGE:2018-10-18 14h12.09 utc:15868: openvassd 6.0+beta1 started==> gsad.log <==
gsad gmp:MESSAGE:2018-10-18 14h12.57 utc:15954: Authentication success for ‘admin’ from 127.0.0.1==> gvmd.log <==
event task:MESSAGE:2018-10-18 14h13.01 UTC:16023: Status of task Scan Suspect Host (6eb52866-2d3d-45c8-9744-0c42cf846a6d) has changed to Requested
event task:MESSAGE:2018-10-18 14h13.01 UTC:16023: Task Scan Suspect Host (6eb52866-2d3d-45c8-9744-0c42cf846a6d) has been requested to start by admin
event task:MESSAGE:2018-10-18 14h13.10 UTC:16029: Status of task Scan Suspect Host (6eb52866-2d3d-45c8-9744-0c42cf846a6d) has changed to Running
Strace of openvassd -f:
wait4(-1, NULL, WNOHANG, NULL) = 17310
wait4(-1, NULL, WNOHANG, NULL) = 0
accept(3, {sa_family=AF_UNIX}, [110->2]) = 7
pipe2([8, 9], O_CLOEXEC) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x7f8b05ceeb90) = 17339
close(9) = 0
fcntl(8, F_SETFD, 0) = 0
fstat(8, {st_mode=S_IFIFO|0600, st_size=0, …}) = 0
read(8, “201810180952\n”, 4096) = 13
close(8) = 0
wait4(17339, [{WIFEXITED(s) && WEXITSTATUS(s) == 0}], 0, NULL) = 17339
— SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=17339, si_uid=0, si_status=0, si_utime=0, si_stime=0} —
wait4(17, 0x7ffd35394c64, WNOHANG, NULL) = -1 ECHILD (No child processes)
rt_sigreturn({mask=[]}) = 17339
write(5, “*2\r\n$11\r\nSRANDMEMBER\r\n$11\r\nnvtic”…, 40) = 40
read(5, “$12\r\n201810180952\r\n”, 16384) = 19
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x7f8b05ceeb90) = 17342
close(7) = 0
socket(AF_UNIX, SOCK_STREAM, 0) = 7
fcntl(7, F_GETFL) = 0x2 (flags O_RDWR)
fcntl(7, F_SETFL, O_RDWR|O_NONBLOCK) = 0
connect(7, {sa_family=AF_UNIX, sun_path="/var/run/redis/redis-server.sock"}, 110) = 0
fcntl(7, F_GETFL) = 0x802 (flags O_RDWR|O_NONBLOCK)
fcntl(7, F_SETFL, O_RDWR) = 0
write(7, “*3\r\n$6\r\nCONFIG\r\n$3\r\nGET\r\n$9\r\ndat”…, 40) = 40
read(7, “*2\r\n$9\r\ndatabases\r\n$2\r\n16\r\n”, 16384) = 27
write(7, “*4\r\n$6\r\nHSETNX\r\n$19\r\nGVM.__Globa”…, 56) = 56
read(7, “:0\r\n”, 16384) = 4
write(7, “*4\r\n$6\r\nHSETNX\r\n$19\r\nGVM.__Globa”…, 56) = 56
read(7, “:1\r\n”, 16384) = 4
write(7, “*2\r\n$6\r\nSELECT\r\n$1\r\n2\r\n”, 23) = 23
read(7, “+OK\r\n”, 16384) = 5
write(7, “*1\r\n$4\r\nPING\r\n”, 14) = 14
read(7, “+PONG\r\n”, 16384) = 7
rt_sigaction(SIGPIPE, {sa_handler=SIG_IGN, sa_mask=[], sa_flags=SA_RESTORER, sa_restorer=0x7f8b047faf20}, {sa_handler=SIG_DFL, sa_mask=[], sa_flags=SA_RESTORER, sa_restorer=0x7f8b047faf20}, 8) = 0
write(7, “*1\r\n$7\r\nFLUSHDB\r\n”, 17) = 17
read(7, “+OK\r\n”, 16384) = 5
rt_sigaction(SIGPIPE, {sa_handler=SIG_DFL, sa_mask=[], sa_flags=SA_RESTORER, sa_restorer=0x7f8b047faf20}, NULL, 8) = 0
write(7, “*2\r\n$6\r\nSELECT\r\n$1\r\n0\r\n”, 23) = 23
read(7, “+OK\r\n”, 16384) = 5
write(7, “*3\r\n$4\r\nHDEL\r\n$19\r\nGVM.__GlobalD”…, 47) = 47
read(7, “:1\r\n”, 16384) = 4
close(7) = 0
socket(AF_UNIX, SOCK_STREAM, 0) = 7
fcntl(7, F_GETFL) = 0x2 (flags O_RDWR)
fcntl(7, F_SETFL, O_RDWR|O_NONBLOCK) = 0
connect(7, {sa_family=AF_UNIX, sun_path="/var/run/redis/redis-server.sock"}, 110) = 0
fcntl(7, F_GETFL) = 0x802 (flags O_RDWR|O_NONBLOCK)
fcntl(7, F_SETFL, O_RDWR) = 0
write(7, “*3\r\n$7\r\nHEXISTS\r\n$19\r\nGVM.__Glob”…, 50) = 50
read(7, “:1\r\n”, 16384) = 4
write(7, “*2\r\n$6\r\nSELECT\r\n$1\r\n1\r\n”, 23) = 23
read(7, “+OK\r\n”, 16384) = 5
write(7, “*2\r\n$11\r\nSRANDMEMBER\r\n$11\r\nnvtic”…, 40) = 40
read(7, “$12\r\n201810180952\r\n”, 16384) = 19
close(7) = 0
wait4(-1, NULL, WNOHANG, NULL) = 0
accept(3, 0x7ffd35395390, [110]) = ? ERESTARTSYS (To be restarted if SA_RESTART is set)
— SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=17342, si_uid=0, si_status=SIGKILL, si_utime=0, si_stime=0} —
wait4(17, 0x7ffd35394da4, WNOHANG, NULL) = -1 ECHILD (No child processes)
rt_sigreturn({mask=[]}) = -1 EINTR (Interrupted system call)
socket(AF_UNIX, SOCK_STREAM, 0) = 7
fcntl(7, F_GETFL) = 0x2 (flags O_RDWR)
fcntl(7, F_SETFL, O_RDWR|O_NONBLOCK) = 0
connect(7, {sa_family=AF_UNIX, sun_path="/var/run/redis/redis-server.sock"}, 110) = 0
fcntl(7, F_GETFL) = 0x802 (flags O_RDWR|O_NONBLOCK)
fcntl(7, F_SETFL, O_RDWR) = 0
write(7, “*3\r\n$6\r\nCONFIG\r\n$3\r\nGET\r\n$9\r\ndat”…, 40) = 40
read(7, “*2\r\n$9\r\ndatabases\r\n$2\r\n16\r\n”, 16384) = 27
write(7, “*4\r\n$6\r\nHSETNX\r\n$19\r\nGVM.__Globa”…, 56) = 56
read(7, “:0\r\n”, 16384) = 4
write(7, “*4\r\n$6\r\nHSETNX\r\n$19\r\nGVM.__Globa”…, 56) = 56
read(7, “:1\r\n”, 16384) = 4
write(7, “*2\r\n$6\r\nSELECT\r\n$1\r\n2\r\n”, 23) = 23
read(7, “+OK\r\n”, 16384) = 5
write(7, “*1\r\n$4\r\nPING\r\n”, 14) = 14
read(7, “+PONG\r\n”, 16384) = 7
rt_sigaction(SIGPIPE, {sa_handler=SIG_IGN, sa_mask=[], sa_flags=SA_RESTORER, sa_restorer=0x7f8b047faf20}, {sa_handler=SIG_DFL, sa_mask=[], sa_flags=SA_RESTORER, sa_restorer=0x7f8b047faf20}, 8) = 0
write(7, “*1\r\n$7\r\nFLUSHDB\r\n”, 17) = 17
read(7, “+OK\r\n”, 16384) = 5
rt_sigaction(SIGPIPE, {sa_handler=SIG_DFL, sa_mask=[], sa_flags=SA_RESTORER, sa_restorer=0x7f8b047faf20}, NULL, 8) = 0
write(7, “*2\r\n$6\r\nSELECT\r\n$1\r\n0\r\n”, 23) = 23
read(7, “+OK\r\n”, 16384) = 5
write(7, “*3\r\n$4\r\nHDEL\r\n$19\r\nGVM.__GlobalD”…, 47) = 47
read(7, “:1\r\n”, 16384) = 4
close(7) = 0
socket(AF_UNIX, SOCK_STREAM, 0) = 7
fcntl(7, F_GETFL) = 0x2 (flags O_RDWR)
fcntl(7, F_SETFL, O_RDWR|O_NONBLOCK) = 0
connect(7, {sa_family=AF_UNIX, sun_path="/var/run/redis/redis-server.sock"}, 110) = 0
fcntl(7, F_GETFL) = 0x802 (flags O_RDWR|O_NONBLOCK)
fcntl(7, F_SETFL, O_RDWR) = 0
write(7, “*3\r\n$7\r\nHEXISTS\r\n$19\r\nGVM.__Glob”…, 50) = 50
read(7, “:1\r\n”, 16384) = 4
write(7, “*2\r\n$6\r\nSELECT\r\n$1\r\n1\r\n”, 23) = 23
read(7, “+OK\r\n”, 16384) = 5
write(7, “*2\r\n$11\r\nSRANDMEMBER\r\n$11\r\nnvtic”…, 40) = 40
read(7, “$12\r\n201810180952\r\n”, 16384) = 19
close(7) = 0
wait4(-1, NULL, WNOHANG, NULL) = 17342
wait4(-1, NULL, WNOHANG, NULL) = 0
Not sure if it is stuck in some kind of error state. Zero information is given as to what its doing in the logs.
Ubuntu 18.04.1 LTS
Build from source code using the versions listed here: GVM-10 (beta)
No errors or issues during install.