Management threads

Mimi · September 10, 2020, 12:05pm

What’s the four (4) Management threads of suricata ?

Jeff_Lucovsky · September 10, 2020, 12:13pm

The flow manager/recycler and stats threads.

Here’s an example:

# ps -p $(pidof suricata) -L
    PID     LWP TTY          TIME CMD
 896270  896270 pts/3    00:00:59 Suricata-Main
 896270  896474 pts/3    00:00:00 W#01-enp0s25
 896270  896475 pts/3    00:00:00 W#02-enp0s25
 896270  896476 pts/3    00:00:00 W#03-enp0s25
 896270  896477 pts/3    00:00:00 W#04-enp0s25
 896270  896478 pts/3    00:00:00 W#05-enp0s25
 896270  896479 pts/3    00:00:00 W#06-enp0s25
 896270  896480 pts/3    00:00:00 W#07-enp0s25
 896270  896481 pts/3    00:00:00 W#08-enp0s25
 896270  896482 pts/3    00:00:00 W#09-enp0s25
 896270  896483 pts/3    00:00:00 W#10-enp0s25
 896270  896484 pts/3    00:00:00 W#11-enp0s25
 896270  896485 pts/3    00:00:00 W#12-enp0s25
 896270  896486 pts/3    00:00:00 W#13-enp0s25
 896270  896487 pts/3    00:00:00 W#14-enp0s25
 896270  896488 pts/3    00:00:00 W#15-enp0s25
 896270  896489 pts/3    00:00:00 W#16-enp0s25
 896270  896490 pts/3    00:00:06 FM#01
 896270  896491 pts/3    00:00:05 FR#01
 896270  896492 pts/3    00:00:00 CW
 896270  896493 pts/3    00:00:00 CS
 896270  896494 pts/3    00:00:00 US

The management threads are CW, CS, FM#01 and FR#01

Mimi · September 10, 2020, 12:20pm

What is their role ?

Jeff_Lucovsky · September 11, 2020, 11:51am

Flow management/recycling, counters/stats.

Topic		Replies	Views
Suricata kernel drops only in specific threads Help	1	492	November 27, 2021
Workers mode : forced to one thread? Help pfsense	18	4763	June 15, 2021
Suricata 6.0.4: SURICATA STREAM pkt seen on wrong thread Help	6	1229	June 7, 2022
Running suricata in single threaded mode with windivert module Help windows , suricata	10	597	March 8, 2023
Stateful rules and multi-threading Help community	0	469	October 7, 2021

Management threads

Related Topics