Dear Maintainer, I tried to get some more information and was able to record a crash with rr.
When continuing from below backtrace [2] it continues into a recursion until the segfault is reached. Therefore this might not be an nmap bug. This led me to this bug report [1], which mentions upstream lua-lpeg version 1.0.1 fixes this issue, or alternatively has a patch for lua-lpeg 1.0.0. Kind regards Bernhard [1] https://bugs.debian.org/942031 [2] (rr) bt #0 0x00007f233d19d4cc in hascaptures (tree=0x556ae6cfca74, tree@entry=0x556ae6cfca94) at lpcode.c:144 #1 0x00007f233d19d4cc in hascaptures (tree=tree@entry=0x556ae6cfca8c) at lpcode.c:144 #2 0x00007f233d19d4cc in hascaptures (tree=0x556ae6cfca84, tree@entry=0x556ae6cfca94) at lpcode.c:144 #3 0x00007f233d19d4cc in hascaptures (tree=tree@entry=0x556ae6cfca8c) at lpcode.c:144 #4 0x00007f233d19d4cc in hascaptures (tree=0x556ae6cfca84, tree@entry=0x556ae6cfc9fc) at lpcode.c:144 #5 0x00007f233d19d4cc in hascaptures (tree=tree@entry=0x556ae6cfc9f4) at lpcode.c:144 #6 0x00007f233d19e1ec in codecapture (fl=0x7f233d19f280 <fullset_>, tt=-1, tree=0x556ae6cfc9ec, compst=0x7ffff3bd2930) at lpcode.c:720 #7 codegen (compst=compst@entry=0x7ffff3bd2930, tree=tree@entry=0x556ae6cfc9ec, opt=opt@entry=0, tt=tt@entry=-1, fl=fl@entry=0x7f233d19f280 <fullset_>) at lpcode.c:905 #8 0x00007f233d19e7f9 in codegrammar (compst=compst@entry=0x7ffff3bd2930, grammar=grammar@entry=0x556ae6cfc974) at lpcode.c:850 #9 0x00007f233d19e17b in codegen (compst=compst@entry=0x7ffff3bd2930, tree=tree@entry=0x556ae6cfc974, opt=opt@entry=0, tt=tt@entry=-1, fl=fl@entry=0x7f233d19f280 <fullset_>) at lpcode.c:907 #10 0x00007f233d19e30c in codecapture (fl=0x7f233d19f280 <fullset_>, tt=-1, tree=0x556ae6cfc96c, compst=0x7ffff3bd2930) at lpcode.c:726 #11 codegen (compst=compst@entry=0x7ffff3bd2930, tree=tree@entry=0x556ae6cfc96c, opt=opt@entry=0, tt=tt@entry=-1, fl=fl@entry=0x7f233d19f280 <fullset_>) at lpcode.c:905 #12 0x00007f233d19e30c in codecapture (fl=0x7f233d19f280 <fullset_>, tt=-1, tree=0x556ae6cfc964, compst=0x7ffff3bd2930) at lpcode.c:726 #13 codegen (compst=compst@entry=0x7ffff3bd2930, tree=0x556ae6cfc964, tree@entry=0x556ae6cfc86c, opt=opt@entry=0, tt=tt@entry=-1, fl=fl@entry=0x7f233d19f280 <fullset_>) at lpcode.c:905 #14 0x00007f233d19e30c in codecapture (fl=0x7f233d19f280 <fullset_>, tt=-1, tree=0x556ae6cfc864, compst=0x7ffff3bd2930) at lpcode.c:726 #15 codegen (compst=compst@entry=0x7ffff3bd2930, tree=tree@entry=0x556ae6cfc864, opt=opt@entry=0, tt=tt@entry=-1, fl=fl@entry=0x7f233d19f280 <fullset_>) at lpcode.c:905 #16 0x00007f233d19e7f9 in codegrammar (compst=compst@entry=0x7ffff3bd2930, grammar=grammar@entry=0x556ae6cfc704) at lpcode.c:850 #17 0x00007f233d19e17b in codegen (compst=compst@entry=0x7ffff3bd2930, tree=tree@entry=0x556ae6cfc704, opt=opt@entry=0, tt=tt@entry=-1, fl=fl@entry=0x7f233d19f280 <fullset_>) at lpcode.c:907 #18 0x00007f233d19e973 in compile (L=L@entry=0x556ae88bb058, p=0x556ae6cfc6f8) at lpcode.c:977 #19 0x00007f233d19bbc4 in prepcompile (L=L@entry=0x556ae88bb058, p=<optimized out>, idx=1) at lptree.c:1099 #20 0x00007f233d19d01b in lp_match (L=0x556ae88bb058) at lptree.c:1154 #21 0x00007f233d16a585 in luaD_precall (L=L@entry=0x556ae88bb058, func=func@entry=0x556ae88bb190, nresults=nresults@entry=-1) at ldo.c:365 #22 0x00007f233d16a735 in luaD_precall (L=L@entry=0x556ae88bb058, func=func@entry=0x556ae88bb190, nresults=nresults@entry=-1) at ldo.c:344 #23 0x00007f233d1775d5 in luaV_execute (L=L@entry=0x556ae88bb058) at lvm.c:1149 #24 0x00007f233d16a820 in unroll (L=0x556ae88bb058, ud=<optimized out>) at ldo.c:555 #25 0x00007f233d169d82 in luaD_rawrunprotected (L=L@entry=0x556ae88bb058, f=f@entry=0x7f233d16a830 <resume>, ud=ud@entry=0x7ffff3bd2e1c) at ldo.c:142 #26 0x00007f233d16aa35 in lua_resume (L=L@entry=0x556ae88bb058, from=from@entry=0x556ae673a328, nargs=<optimized out>, nargs@entry=2) at ldo.c:662 #27 0x00007f233d17cc57 in auxresume (L=L@entry=0x556ae673a328, co=co@entry=0x556ae88bb058, narg=2) at lcorolib.c:39 #28 0x00007f233d17cfa7 in luaB_coresume (L=0x556ae673a328) at lcorolib.c:60 #29 0x00007f233d16a585 in luaD_precall (L=L@entry=0x556ae673a328, func=func@entry=0x556ae84e7620, nresults=nresults@entry=3) at ldo.c:365 #30 0x00007f233d16a735 in luaD_precall (L=L@entry=0x556ae673a328, func=func@entry=0x556ae84e7620, nresults=nresults@entry=3) at ldo.c:344 #31 0x00007f233d177355 in luaV_execute (L=L@entry=0x556ae673a328) at lvm.c:1134 #32 0x00007f233d16a998 in luaD_call (L=L@entry=0x556ae673a328, func=<optimized out>, nResults=nResults@entry=0) at ldo.c:496 #33 0x00007f233d16a9c1 in luaD_callnoyield (L=L@entry=0x556ae673a328, func=<optimized out>, nResults=nResults@entry=0) at ldo.c:506 #34 0x00007f233d1664cc in lua_callk (L=L@entry=0x556ae673a328, nargs=nargs@entry=2, nresults=nresults@entry=0, ctx=ctx@entry=0, k=k@entry=0x0) at lapi.c:924 #35 0x0000556ae5dfd773 in run_main (L=0x556ae673a328) at nse_main.cc:668 #36 0x00007f233d16a585 in luaD_precall (L=L@entry=0x556ae673a328, func=0x556ae84e73d0, nresults=0) at ldo.c:365 #37 0x00007f233d16a963 in luaD_precall (nresults=<optimized out>, func=<optimized out>, L=0x556ae673a328) at ldo.c:495 #38 luaD_call (L=L@entry=0x556ae673a328, func=<optimized out>, nResults=<optimized out>) at ldo.c:495 #39 0x00007f233d16a9c1 in luaD_callnoyield (L=0x556ae673a328, func=<optimized out>, nResults=<optimized out>) at ldo.c:506 #40 0x00007f233d169d82 in luaD_rawrunprotected (L=L@entry=0x556ae673a328, f=f@entry=0x7f233d165050 <f_call>, ud=ud@entry=0x7ffff3bd3210) at ldo.c:142 #41 0x00007f233d16ac4b in luaD_pcall (L=L@entry=0x556ae673a328, func=func@entry=0x7f233d165050 <f_call>, u=u@entry=0x7ffff3bd3210, old_top=32, ef=<optimized out>) at ldo.c:727 #42 0x00007f233d166594 in lua_pcallk (L=0x556ae673a328, nargs=nargs@entry=1, nresults=nresults@entry=0, errfunc=errfunc@entry=1, ctx=ctx@entry=0, k=k@entry=0x0) at lapi.c:968 #43 0x0000556ae5dfde78 in script_scan (targets=std::vector of length 1, capacity 100 = {...}, scantype=scantype@entry=SCRIPT_SCAN) at nse_main.cc:826 #44 0x0000556ae5dab425 in nmap_main (argc=<optimized out>, argv=0x7ffff3bd43b8) at nmap.cc:2240 #45 0x0000556ae5d80e65 in main (argc=7, argv=0x7ffff3bd43b8) at main.cc:237
# Bullseye/testing amd64 qemu VM 2019-11-19 apt update apt dist-upgrade apt install dpkg-dev devscripts systemd-coredump htop gdb rr nmap nmap-dbgsym lua-lpeg-dbgsym liblua5.3-0-dbg mkdir /home/benutzer/source/lua-lpeg/orig -p cd /home/benutzer/source/lua-lpeg/orig apt source lua-lpeg cd mkdir /home/benutzer/source/nmap/orig -p cd /home/benutzer/source/nmap/orig apt source nmap cd i=0 ; while nmap --min-rtt-timeout 300ms -sV -p 22 bitbucket.org; do echo $i ; i=$(($i+1)); done script -a "typescript_$(date +%Y-%m-%d_%H-%M-%S)" -c "coredumpctl gdb 1063" set width 0 set pagination off bt echo 1 > /proc/sys/kernel/perf_event_paranoid i=0 ; while rr nmap --min-rtt-timeout 300ms -sV -p 22 bitbucket.org; do echo $i ; i=$(($i+1)); done script -a "typescript_$(date +%Y-%m-%d_%H-%M-%S)" -c "rr replay /home/benutzer/.local/share/rr/nmap-3" set width 0 set pagination off directory /home/benutzer/source/lua-lpeg/orig/lua-lpeg-1.0.0 directory /home/benutzer/source/nmap/orig/nmap-7.80+dfsg1 b main cont b *0x00007f233d19d4cc cont ############# benutzer@debian:~$ i=0 ; while nmap --min-rtt-timeout 300ms -sV -p 22 bitbucket.org; do echo $i ; i=$(($i+1)); done Starting Nmap 7.80 ( https://nmap.org ) at 2019-11-19 17:03 CET Nmap scan report for bitbucket.org (18.205.93.1) Host is up (0.099s latency). Other addresses for bitbucket.org (not scanned): 18.205.93.0 18.205.93.2 2406:da00:ff00::22cd:e0db 2406:da00:ff00::22c0:3470 2406:da00:ff00::22c5:2ef4 2406:da00:ff00::22c2:513 2406:da00:ff00::22e9:9f55 2406:da00:ff00::6b17:d1f5 2406:da00:ff00::22c3:9b0a 2406:da00:ff00::34cc:ea4a PORT STATE SERVICE VERSION 22/tcp open ssh (protocol 2.0) 1 service unrecognized despite returning data. If you know the service/version, please submit the following fingerprint at https://nmap.org/cgi-bin/submit.cgi?new-service : SF-Port22-TCP:V=7.80%I=7%D=11/19%Time=5DD41264%P=x86_64-pc-linux-gnu%r(NUL SF:L,23,"SSH-2\.0-conker_31073e5a11\x20app-191\r\n"); Service detection performed. Please report any incorrect results at https://nmap.org/submit/ . Nmap done: 1 IP address (1 host up) scanned in 6.79 seconds 0 Starting Nmap 7.80 ( https://nmap.org ) at 2019-11-19 17:03 CET Nmap scan report for bitbucket.org (18.205.93.1) Host is up (0.098s latency). Other addresses for bitbucket.org (not scanned): 18.205.93.0 18.205.93.2 2406:da00:ff00::22c2:513 2406:da00:ff00::3403:4be7 2406:da00:ff00::22c3:9b0a 2406:da00:ff00::22c0:3470 2406:da00:ff00::22e9:9f55 2406:da00:ff00::22c5:2ef4 2406:da00:ff00::6b17:d1f5 2406:da00:ff00::22cd:e0db PORT STATE SERVICE VERSION 22/tcp open ssh (protocol 2.0) 1 service unrecognized despite returning data. If you know the service/version, please submit the following fingerprint at https://nmap.org/cgi-bin/submit.cgi?new-service : SF-Port22-TCP:V=7.80%I=7%D=11/19%Time=5DD4126B%P=x86_64-pc-linux-gnu%r(NUL SF:L,23,"SSH-2\.0-conker_31073e5a11\x20app-130\r\n"); Service detection performed. Please report any incorrect results at https://nmap.org/submit/ . Nmap done: 1 IP address (1 host up) scanned in 6.72 seconds 1 Starting Nmap 7.80 ( https://nmap.org ) at 2019-11-19 17:03 CET Nmap scan report for bitbucket.org (18.205.93.1) Host is up (0.097s latency). Other addresses for bitbucket.org (not scanned): 18.205.93.0 18.205.93.2 2406:da00:ff00::22c2:513 2406:da00:ff00::3403:4be7 2406:da00:ff00::22c3:9b0a 2406:da00:ff00::22c0:3470 2406:da00:ff00::22e9:9f55 2406:da00:ff00::22c5:2ef4 2406:da00:ff00::6b17:d1f5 2406:da00:ff00::22cd:e0db PORT STATE SERVICE VERSION 22/tcp open ssh (protocol 2.0) 1 service unrecognized despite returning data. If you know the service/version, please submit the following fingerprint at https://nmap.org/cgi-bin/submit.cgi?new-service : SF-Port22-TCP:V=7.80%I=7%D=11/19%Time=5DD41272%P=x86_64-pc-linux-gnu%r(NUL SF:L,23,"SSH-2\.0-conker_31073e5a11\x20app-133\r\n"); Service detection performed. Please report any incorrect results at https://nmap.org/submit/ . Nmap done: 1 IP address (1 host up) scanned in 6.72 seconds 2 Starting Nmap 7.80 ( https://nmap.org ) at 2019-11-19 17:04 CET Nmap scan report for bitbucket.org (18.205.93.1) Host is up (0.098s latency). Other addresses for bitbucket.org (not scanned): 18.205.93.0 18.205.93.2 2406:da00:ff00::22c2:513 2406:da00:ff00::3403:4be7 2406:da00:ff00::22c3:9b0a 2406:da00:ff00::22c0:3470 2406:da00:ff00::22e9:9f55 2406:da00:ff00::22c5:2ef4 2406:da00:ff00::6b17:d1f5 2406:da00:ff00::22cd:e0db PORT STATE SERVICE VERSION 22/tcp open ssh (protocol 2.0) 1 service unrecognized despite returning data. If you know the service/version, please submit the following fingerprint at https://nmap.org/cgi-bin/submit.cgi?new-service : SF-Port22-TCP:V=7.80%I=7%D=11/19%Time=5DD41279%P=x86_64-pc-linux-gnu%r(NUL SF:L,23,"SSH-2\.0-conker_31073e5a11\x20app-190\r\n"); Service detection performed. Please report any incorrect results at https://nmap.org/submit/ . Nmap done: 1 IP address (1 host up) scanned in 6.70 seconds 3 Starting Nmap 7.80 ( https://nmap.org ) at 2019-11-19 17:04 CET Nmap scan report for bitbucket.org (18.205.93.1) Host is up (0.098s latency). Other addresses for bitbucket.org (not scanned): 18.205.93.0 18.205.93.2 2406:da00:ff00::22c2:513 2406:da00:ff00::3403:4be7 2406:da00:ff00::22c3:9b0a 2406:da00:ff00::22c0:3470 2406:da00:ff00::22e9:9f55 2406:da00:ff00::22c5:2ef4 2406:da00:ff00::6b17:d1f5 2406:da00:ff00::22cd:e0db PORT STATE SERVICE VERSION 22/tcp open ssh (protocol 2.0) 1 service unrecognized despite returning data. If you know the service/version, please submit the following fingerprint at https://nmap.org/cgi-bin/submit.cgi?new-service : SF-Port22-TCP:V=7.80%I=7%D=11/19%Time=5DD4127F%P=x86_64-pc-linux-gnu%r(NUL SF:L,23,"SSH-2\.0-conker_31073e5a11\x20app-131\r\n"); Service detection performed. Please report any incorrect results at https://nmap.org/submit/ . Nmap done: 1 IP address (1 host up) scanned in 6.71 seconds 4 Starting Nmap 7.80 ( https://nmap.org ) at 2019-11-19 17:04 CET Speicherzugriffsfehler (Speicherabzug geschrieben) Nov 19 17:04:22 debian kernel: nmap[1063]: segfault at 7fffe4b34ff8 ip 00007f90224cd4c7 sp 00007fffe4b35000 error 6 in liblua5.3-lpeg.so.2.0.0[7f90224c7000+a000] Nov 19 17:04:22 debian kernel: Code: 8d 50 f1 80 fa 01 77 0b b8 01 00 00 00 5b c3 0f 1f 40 00 48 8b 15 09 3b 20 00 0f b6 04 02 3c 01 74 21 3c 02 75 2d 48 8d 7b 08 <e8> 64 ba ff ff 85 c0 75 d5 48 63 43 04 48 8d 1c c3 eb ba 66 0f 1f Nov 19 17:04:22 debian systemd[1]: Created slice system-systemd\x2dcoredump.slice. Nov 19 17:04:22 debian systemd[1]: Started Process Core Dump (PID 1064/UID 0). Nov 19 17:04:23 debian systemd-coredump[1065]: Process 1063 (nmap) of user 1000 dumped core. Stack trace of thread 1063: #0 0x00007f90224cd4c7 hascaptures (liblua5.3-lpeg.so.2) #1 0x00007f90224cd4cc hascaptures (liblua5.3-lpeg.so.2) #2 0x00007f90224cd4cc hascaptures (liblua5.3-lpeg.so.2) #3 0x00007f90224cd4cc hascaptures (liblua5.3-lpeg.so.2) #4 0x00007f90224cd4cc hascaptures (liblua5.3-lpeg.so.2) #5 0x00007f90224cd4cc hascaptures (liblua5.3-lpeg.so.2) #6 0x00007f90224cd4cc hascaptures (liblua5.3-lpeg.so.2) #7 0x00007f90224cd4cc hascaptures (liblua5.3-lpeg.so.2) #8 0x00007f90224cd4cc hascaptures (liblua5.3-lpeg.so.2) #9 0x00007f90224cd4cc hascaptures (liblua5.3-lpeg.so.2) #10 0x00007f90224cd4cc hascaptures (liblua5.3-lpeg.so.2) #11 0x00007f90224cd4cc hascaptures (liblua5.3-lpeg.so.2) #12 0x00007f90224cd4cc hascaptures (liblua5.3-lpeg.so.2) #13 0x00007f90224cd4cc hascaptures (liblua5.3-lpeg.so.2) #14 0x00007f90224cd4cc hascaptures (liblua5.3-lpeg.so.2) #15 0x00007f90224cd4cc hascaptures (liblua5.3-lpeg.so.2) #16 0x00007f90224cd4cc hascaptures (liblua5.3-lpeg.so.2) #17 0x00007f90224cd4cc hascaptures (liblua5.3-lpeg.so.2) #18 0x00007f90224cd4cc hascaptures (liblua5.3-lpeg.so.2) #19 0x00007f90224cd4cc hascaptures (liblua5.3-lpeg.so.2) #20 0x00007f90224cd4cc hascaptures (liblua5.3-lpeg.so.2) #21 0x00007f90224cd4cc hascaptures (liblua5.3-lpeg.so.2) #22 0x00007f90224cd4cc hascaptures (liblua5.3-lpeg.so.2) #23 0x00007f90224cd4cc hascaptures (liblua5.3-lpeg.so.2) #24 0x00007f90224cd4cc hascaptures (liblua5.3-lpeg.so.2) #25 0x00007f90224cd4cc hascaptures (liblua5.3-lpeg.so.2) #26 0x00007f90224cd4cc hascaptures (liblua5.3-lpeg.so.2) #27 0x00007f90224cd4cc hascaptures (liblua5.3-lpeg.so.2) #28 0x00007f90224cd4cc hascaptures (liblua5.3-lpeg.so.2) #29 0x00007f90224cd4cc hascaptures (liblua5.3-lpeg.so.2) #30 0x00007f90224cd4cc hascaptures (liblua5.3-lpeg.so.2) #31 0x00007f90224cd4cc hascaptures (liblua5.3-lpeg.so.2) #32 0x00007f90224cd4cc hascaptures (liblua5.3-lpeg.so.2) #33 0x00007f90224cd4cc hascaptures (liblua5.3-lpeg.so.2) #34 0x00007f90224cd4cc hascaptures (liblua5.3-lpeg.so.2) #35 0x00007f90224cd4cc hascaptures (liblua5.3-lpeg.so.2) #36 0x00007f90224cd4cc hascaptures (liblua5.3-lpeg.so.2) #37 0x00007f90224cd4cc hascaptures (liblua5.3-lpeg.so.2) #38 0x00007f90224cd4cc hascaptures (liblua5.3-lpeg.so.2) #39 0x00007f90224cd4cc hascaptures (liblua5.3-lpeg.so.2) #40 0x00007f90224cd4cc hascaptures (liblua5.3-lpeg.so.2) #41 0x00007f90224cd4cc hascaptures (liblua5.3-lpeg.so.2) #42 0x00007f90224cd4cc hascaptures (liblua5.3-lpeg.so.2) #43 0x00007f90224cd4cc hascaptures (liblua5.3-lpeg.so.2) #44 0x00007f90224cd4cc hascaptures (liblua5.3-lpeg.so.2) #45 0x00007f90224cd4cc hascaptures (liblua5.3-lpeg.so.2) #46 0x00007f90224cd4cc hascaptures (liblua5.3-lpeg.so.2) #47 0x00007f90224cd4cc hascaptures (liblua5.3-lpeg.so.2) #48 0x00007f90224cd4cc hascaptures (liblua5.3-lpeg.so.2) #49 0x00007f90224cd4cc hascaptures (liblua5.3-lpeg.so.2) #50 0x00007f90224cd4cc hascaptures (liblua5.3-lpeg.so.2) #51 0x00007f90224cd4cc hascaptures (liblua5.3-lpeg.so.2) #52 0x00007f90224cd4cc hascaptures (liblua5.3-lpeg.so.2) #53 0x00007f90224cd4cc hascaptures (liblua5.3-lpeg.so.2) #54 0x00007f90224cd4cc hascaptures (liblua5.3-lpeg.so.2) #55 0x00007f90224cd4cc hascaptures (liblua5.3-lpeg.so.2) #56 0x00007f90224cd4cc hascaptures (liblua5.3-lpeg.so.2) #57 0x00007f90224cd4cc hascaptures (liblua5.3-lpeg.so.2) #58 0x00007f90224cd4cc hascaptures (liblua5.3-lpeg.so.2) #59 0x00007f90224cd4cc hascaptures (liblua5.3-lpeg.so.2) #60 0x00007f90224cd4cc hascaptures (liblua5.3-lpeg.so.2) #61 0x00007f90224cd4cc hascaptures (liblua5.3-lpeg.so.2) #62 0x00007f90224cd4cc hascaptures (liblua5.3-lpeg.so.2) #63 0x00007f90224cd4cc hascaptures (liblua5.3-lpeg.so.2) Nov 19 17:04:23 debian systemd[1]: systemd-coredump@0-1064-0.service: Succeeded. Core was generated by `nmap --min-rtt-timeout 300ms -sV -p 22 bitbucket.org'. Program terminated with signal SIGSEGV, Segmentation fault. #0 0x00007f90224cd4c7 in hascaptures () from /lib/x86_64-linux-gnu/liblua5.3-lpeg.so.2 (gdb) set width 0 (gdb) set pagination off (gdb) bt #0 0x00007f90224cd4c7 in hascaptures () from /lib/x86_64-linux-gnu/liblua5.3-lpeg.so.2 #1 0x00007f90224cd4cc in hascaptures () from /lib/x86_64-linux-gnu/liblua5.3-lpeg.so.2 #2 0x00007f90224cd4cc in hascaptures () from /lib/x86_64-linux-gnu/liblua5.3-lpeg.so.2 #3 0x00007f90224cd4cc in hascaptures () from /lib/x86_64-linux-gnu/liblua5.3-lpeg.so.2 #4 0x00007f90224cd4cc in hascaptures () from /lib/x86_64-linux-gnu/liblua5.3-lpeg.so.2 ... #393207 0x00007f90224cd4cc in hascaptures () from /lib/x86_64-linux-gnu/liblua5.3-lpeg.so.2 #393208 0x00007f90224cd4cc in hascaptures () from /lib/x86_64-linux-gnu/liblua5.3-lpeg.so.2 #393209 0x00007f90224cd4cc in hascaptures () from /lib/x86_64-linux-gnu/liblua5.3-lpeg.so.2 #393210 0x00007f90224cd4cc in hascaptures () from /lib/x86_64-linux-gnu/liblua5.3-lpeg.so.2 #393211 0x00007f90224cd4cc in hascaptures () from /lib/x86_64-linux-gnu/liblua5.3-lpeg.so.2 #393212 0x00007f90224cd4cc in hascaptures () from /lib/x86_64-linux-gnu/liblua5.3-lpeg.so.2 #393213 0x00007f90224cd4cc in hascaptures () from /lib/x86_64-linux-gnu/liblua5.3-lpeg.so.2 #393214 0x00007f90224cd4cc in hascaptures () from /lib/x86_64-linux-gnu/liblua5.3-lpeg.so.2 #393215 0x00007f90224cd4cc in hascaptures () from /lib/x86_64-linux-gnu/liblua5.3-lpeg.so.2 gdb terminated by signal KILL. (memory seemed nearly exhaused - killed it) ################ benutzer@debian:~$ i=0 ; while rr nmap --min-rtt-timeout 300ms -sV -p 22 bitbucket.org; do echo $i ; i=$(($i+1)); done rr: Saving execution to trace directory `/home/benutzer/.local/share/rr/nmap-0'. Starting Nmap 7.80 ( https://nmap.org ) at 2019-11-19 17:06 CET Nmap scan report for bitbucket.org (18.205.93.2) Host is up (0.098s latency). Other addresses for bitbucket.org (not scanned): 18.205.93.1 18.205.93.0 2406:da00:ff00::6b17:d1f5 2406:da00:ff00::22c5:2ef4 2406:da00:ff00::22c2:513 2406:da00:ff00::34cc:ea4a 2406:da00:ff00::22c0:3470 2406:da00:ff00::3403:4be7 2406:da00:ff00::22e9:9f55 2406:da00:ff00::22c3:9b0a PORT STATE SERVICE VERSION 22/tcp open ssh (protocol 2.0) 1 service unrecognized despite returning data. If you know the service/version, please submit the following fingerprint at https://nmap.org/cgi-bin/submit.cgi?new-service : SF-Port22-TCP:V=7.80%I=7%D=11/19%Time=5DD41325%P=x86_64-pc-linux-gnu%r(NUL SF:L,23,"SSH-2\.0-conker_31073e5a11\x20app-191\r\n"); Service detection performed. Please report any incorrect results at https://nmap.org/submit/ . Nmap done: 1 IP address (1 host up) scanned in 7.06 seconds 0 rr: Saving execution to trace directory `/home/benutzer/.local/share/rr/nmap-1'. Starting Nmap 7.80 ( https://nmap.org ) at 2019-11-19 17:07 CET Nmap scan report for bitbucket.org (18.205.93.2) Host is up (0.100s latency). Other addresses for bitbucket.org (not scanned): 18.205.93.1 18.205.93.0 2406:da00:ff00::6b17:d1f5 2406:da00:ff00::22c5:2ef4 2406:da00:ff00::22c2:513 2406:da00:ff00::34cc:ea4a 2406:da00:ff00::22c0:3470 2406:da00:ff00::3403:4be7 2406:da00:ff00::22e9:9f55 2406:da00:ff00::22c3:9b0a PORT STATE SERVICE VERSION 22/tcp open ssh (protocol 2.0) 1 service unrecognized despite returning data. If you know the service/version, please submit the following fingerprint at https://nmap.org/cgi-bin/submit.cgi?new-service : SF-Port22-TCP:V=7.80%I=7%D=11/19%Time=5DD4132C%P=x86_64-pc-linux-gnu%r(NUL SF:L,23,"SSH-2\.0-conker_31073e5a11\x20app-155\r\n"); Service detection performed. Please report any incorrect results at https://nmap.org/submit/ . Nmap done: 1 IP address (1 host up) scanned in 7.02 seconds 1 rr: Saving execution to trace directory `/home/benutzer/.local/share/rr/nmap-2'. Starting Nmap 7.80 ( https://nmap.org ) at 2019-11-19 17:07 CET Nmap scan report for bitbucket.org (18.205.93.2) Host is up (0.099s latency). Other addresses for bitbucket.org (not scanned): 18.205.93.1 18.205.93.0 2406:da00:ff00::6b17:d1f5 2406:da00:ff00::22c5:2ef4 2406:da00:ff00::22c2:513 2406:da00:ff00::34cc:ea4a 2406:da00:ff00::22c0:3470 2406:da00:ff00::3403:4be7 2406:da00:ff00::22e9:9f55 2406:da00:ff00::22c3:9b0a PORT STATE SERVICE VERSION 22/tcp open ssh (protocol 2.0) 1 service unrecognized despite returning data. If you know the service/version, please submit the following fingerprint at https://nmap.org/cgi-bin/submit.cgi?new-service : SF-Port22-TCP:V=7.80%I=7%D=11/19%Time=5DD41333%P=x86_64-pc-linux-gnu%r(NUL SF:L,23,"SSH-2\.0-conker_31073e5a11\x20app-152\r\n"); Service detection performed. Please report any incorrect results at https://nmap.org/submit/ . Nmap done: 1 IP address (1 host up) scanned in 7.03 seconds 2 rr: Saving execution to trace directory `/home/benutzer/.local/share/rr/nmap-3'. Starting Nmap 7.80 ( https://nmap.org ) at 2019-11-19 17:07 CET Speicherzugriffsfehler Nov 19 17:07:23 debian systemd[1]: Started Process Core Dump (PID 1345/UID 0). Nov 19 17:07:23 debian systemd-coredump[1346]: Process 1344 (nmap) of user 1000 dumped core. Stack trace of thread 1344: #0 0x00007f233d19d4c7 hascaptures (liblua5.3-lpeg.so.2) #1 0x00007f233d19d4cc hascaptures (liblua5.3-lpeg.so.2) #2 0x00007f233d19d4cc hascaptures (liblua5.3-lpeg.so.2) #3 0x00007f233d19d4cc hascaptures (liblua5.3-lpeg.so.2) #4 0x00007f233d19d4cc hascaptures (liblua5.3-lpeg.so.2) #5 0x00007f233d19d4cc hascaptures (liblua5.3-lpeg.so.2) #6 0x00007f233d19d4cc hascaptures (liblua5.3-lpeg.so.2) #7 0x00007f233d19d4cc hascaptures (liblua5.3-lpeg.so.2) #8 0x00007f233d19d4cc hascaptures (liblua5.3-lpeg.so.2) #9 0x00007f233d19d4cc hascaptures (liblua5.3-lpeg.so.2) #10 0x00007f233d19d4cc hascaptures (liblua5.3-lpeg.so.2) #11 0x00007f233d19d4cc hascaptures (liblua5.3-lpeg.so.2) #12 0x00007f233d19d4cc hascaptures (liblua5.3-lpeg.so.2) #13 0x00007f233d19d4cc hascaptures (liblua5.3-lpeg.so.2) #14 0x00007f233d19d4cc hascaptures (liblua5.3-lpeg.so.2) #15 0x00007f233d19d4cc hascaptures (liblua5.3-lpeg.so.2) #16 0x00007f233d19d4cc hascaptures (liblua5.3-lpeg.so.2) #17 0x00007f233d19d4cc hascaptures (liblua5.3-lpeg.so.2) #18 0x00007f233d19d4cc hascaptures (liblua5.3-lpeg.so.2) #19 0x00007f233d19d4cc hascaptures (liblua5.3-lpeg.so.2) #20 0x00007f233d19d4cc hascaptures (liblua5.3-lpeg.so.2) #21 0x00007f233d19d4cc hascaptures (liblua5.3-lpeg.so.2) #22 0x00007f233d19d4cc hascaptures (liblua5.3-lpeg.so.2) #23 0x00007f233d19d4cc hascaptures (liblua5.3-lpeg.so.2) #24 0x00007f233d19d4cc hascaptures (liblua5.3-lpeg.so.2) #25 0x00007f233d19d4cc hascaptures (liblua5.3-lpeg.so.2) #26 0x00007f233d19d4cc hascaptures (liblua5.3-lpeg.so.2) #27 0x00007f233d19d4cc hascaptures (liblua5.3-lpeg.so.2) #28 0x00007f233d19d4cc hascaptures (liblua5.3-lpeg.so.2) #29 0x00007f233d19d4cc hascaptures (liblua5.3-lpeg.so.2) #30 0x00007f233d19d4cc hascaptures (liblua5.3-lpeg.so.2) #31 0x00007f233d19d4cc hascaptures (liblua5.3-lpeg.so.2) #32 0x00007f233d19d4cc hascaptures (liblua5.3-lpeg.so.2) #33 0x00007f233d19d4cc hascaptures (liblua5.3-lpeg.so.2) #34 0x00007f233d19d4cc hascaptures (liblua5.3-lpeg.so.2) #35 0x00007f233d19d4cc hascaptures (liblua5.3-lpeg.so.2) #36 0x00007f233d19d4cc hascaptures (liblua5.3-lpeg.so.2) #37 0x00007f233d19d4cc hascaptures (liblua5.3-lpeg.so.2) #38 0x00007f233d19d4cc hascaptures (liblua5.3-lpeg.so.2) #39 0x00007f233d19d4cc hascaptures (liblua5.3-lpeg.so.2) #40 0x00007f233d19d4cc hascaptures (liblua5.3-lpeg.so.2) #41 0x00007f233d19d4cc hascaptures (liblua5.3-lpeg.so.2) #42 0x00007f233d19d4cc hascaptures (liblua5.3-lpeg.so.2) #43 0x00007f233d19d4cc hascaptures (liblua5.3-lpeg.so.2) #44 0x00007f233d19d4cc hascaptures (liblua5.3-lpeg.so.2) #45 0x00007f233d19d4cc hascaptures (liblua5.3-lpeg.so.2) #46 0x00007f233d19d4cc hascaptures (liblua5.3-lpeg.so.2) #47 0x00007f233d19d4cc hascaptures (liblua5.3-lpeg.so.2) #48 0x00007f233d19d4cc hascaptures (liblua5.3-lpeg.so.2) #49 0x00007f233d19d4cc hascaptures (liblua5.3-lpeg.so.2) #50 0x00007f233d19d4cc hascaptures (liblua5.3-lpeg.so.2) #51 0x00007f233d19d4cc hascaptures (liblua5.3-lpeg.so.2) #52 0x00007f233d19d4cc hascaptures (liblua5.3-lpeg.so.2) #53 0x00007f233d19d4cc hascaptures (liblua5.3-lpeg.so.2) #54 0x00007f233d19d4cc hascaptures (liblua5.3-lpeg.so.2) #55 0x00007f233d19d4cc hascaptures (liblua5.3-lpeg.so.2) #56 0x00007f233d19d4cc hascaptures (liblua5.3-lpeg.so.2) #57 0x00007f233d19d4cc hascaptures (liblua5.3-lpeg.so.2) #58 0x00007f233d19d4cc hascaptures (liblua5.3-lpeg.so.2) #59 0x00007f233d19d4cc hascaptures (liblua5.3-lpeg.so.2) #60 0x00007f233d19d4cc hascaptures (liblua5.3-lpeg.so.2) #61 0x00007f233d19d4cc hascaptures (liblua5.3-lpeg.so.2) #62 0x00007f233d19d4cc hascaptures (liblua5.3-lpeg.so.2) #63 0x00007f233d19d4cc hascaptures (liblua5.3-lpeg.so.2) Nov 19 17:07:23 debian systemd[1]: systemd-coredump@2-1345-0.service: Succeeded. benutzer@debian:~$ script -a "typescript_$(date +%Y-%m-%d_%H-%M-%S)" -c "rr replay /home/benutzer/.local/share/rr/nmap-3" Script started, file is typescript_2019-11-19_17-50-33 GNU gdb (Debian 8.3.1-1) 8.3.1 Copyright (C) 2019 Free Software Foundation, Inc. License GPLv3+: GNU GPL version 3 or later <http://gnu.org/licenses/gpl.html> This is free software: you are free to change and redistribute it. There is NO WARRANTY, to the extent permitted by law. Type "show copying" and "show warranty" for details. This GDB was configured as "x86_64-linux-gnu". Type "show configuration" for configuration details. For bug reporting instructions, please see: <http://www.gnu.org/software/gdb/bugs/>. Find the GDB manual and other documentation resources online at: <http://www.gnu.org/software/gdb/documentation/>. For help, type "help". Type "apropos word" to search for commands related to "word"... Reading symbols from /usr/bin/nmap... Reading symbols from /usr/lib/debug/.build-id/8d/119c42d7b1775dfa5b06d75bb53cae9140ae2f.debug... Really redefine built-in command "restart"? (y or n) [answered Y; input not from terminal] Remote debugging using 127.0.0.1:2193 Reading symbols from /lib64/ld-linux-x86-64.so.2... Reading symbols from /usr/lib/debug/.build-id/dd/4137d8afe7114d20d8365f7790b08d65683b56.debug... 0x00007f233d875090 in _start () from /lib64/ld-linux-x86-64.so.2 (rr) set width 0 (rr) set pagination off (rr) b main Breakpoint 1 at 0x556ae5d80cb0: file main.cc, line 173. (rr) cont Continuing. Breakpoint 1, main (argc=7, argv=0x7ffff3bd43b8) at main.cc:173 173 main.cc: Datei oder Verzeichnis nicht gefunden. (rr) b *0x00007f233d19d4cc Breakpoint 2 at 0x7f233d19d4cc: file lpcode.c, line 144. (rr) cont Continuing. Starting Nmap 7.80 ( https://nmap.org ) at 2019-11-19 17:07 CET Breakpoint 2, 0x00007f233d19d4cc in hascaptures (tree=0x556ae6cfca74, tree@entry=0x556ae6cfc9fc) at lpcode.c:144 144 lpcode.c: Datei oder Verzeichnis nicht gefunden. (rr) bt #0 0x00007f233d19d4cc in hascaptures (tree=0x556ae6cfca74, tree@entry=0x556ae6cfc9fc) at lpcode.c:144 #1 0x00007f233d19d4cc in hascaptures (tree=tree@entry=0x556ae6cfc9f4) at lpcode.c:144 #2 0x00007f233d19e1ec in codecapture (fl=0x7f233d19f280 <fullset_>, tt=-1, tree=0x556ae6cfc9ec, compst=0x7ffff3bd2930) at lpcode.c:720 #3 codegen (compst=compst@entry=0x7ffff3bd2930, tree=tree@entry=0x556ae6cfc9ec, opt=opt@entry=0, tt=tt@entry=-1, fl=fl@entry=0x7f233d19f280 <fullset_>) at lpcode.c:905 #4 0x00007f233d19e7f9 in codegrammar (compst=compst@entry=0x7ffff3bd2930, grammar=grammar@entry=0x556ae6cfc974) at lpcode.c:850 #5 0x00007f233d19e17b in codegen (compst=compst@entry=0x7ffff3bd2930, tree=tree@entry=0x556ae6cfc974, opt=opt@entry=0, tt=tt@entry=-1, fl=fl@entry=0x7f233d19f280 <fullset_>) at lpcode.c:907 #6 0x00007f233d19e30c in codecapture (fl=0x7f233d19f280 <fullset_>, tt=-1, tree=0x556ae6cfc96c, compst=0x7ffff3bd2930) at lpcode.c:726 #7 codegen (compst=compst@entry=0x7ffff3bd2930, tree=tree@entry=0x556ae6cfc96c, opt=opt@entry=0, tt=tt@entry=-1, fl=fl@entry=0x7f233d19f280 <fullset_>) at lpcode.c:905 #8 0x00007f233d19e30c in codecapture (fl=0x7f233d19f280 <fullset_>, tt=-1, tree=0x556ae6cfc964, compst=0x7ffff3bd2930) at lpcode.c:726 #9 codegen (compst=compst@entry=0x7ffff3bd2930, tree=0x556ae6cfc964, tree@entry=0x556ae6cfc86c, opt=opt@entry=0, tt=tt@entry=-1, fl=fl@entry=0x7f233d19f280 <fullset_>) at lpcode.c:905 #10 0x00007f233d19e30c in codecapture (fl=0x7f233d19f280 <fullset_>, tt=-1, tree=0x556ae6cfc864, compst=0x7ffff3bd2930) at lpcode.c:726 #11 codegen (compst=compst@entry=0x7ffff3bd2930, tree=tree@entry=0x556ae6cfc864, opt=opt@entry=0, tt=tt@entry=-1, fl=fl@entry=0x7f233d19f280 <fullset_>) at lpcode.c:905 #12 0x00007f233d19e7f9 in codegrammar (compst=compst@entry=0x7ffff3bd2930, grammar=grammar@entry=0x556ae6cfc704) at lpcode.c:850 #13 0x00007f233d19e17b in codegen (compst=compst@entry=0x7ffff3bd2930, tree=tree@entry=0x556ae6cfc704, opt=opt@entry=0, tt=tt@entry=-1, fl=fl@entry=0x7f233d19f280 <fullset_>) at lpcode.c:907 #14 0x00007f233d19e973 in compile (L=L@entry=0x556ae88bb058, p=0x556ae6cfc6f8) at lpcode.c:977 #15 0x00007f233d19bbc4 in prepcompile (L=L@entry=0x556ae88bb058, p=<optimized out>, idx=1) at lptree.c:1099 #16 0x00007f233d19d01b in lp_match (L=0x556ae88bb058) at lptree.c:1154 #17 0x00007f233d16a585 in luaD_precall (L=L@entry=0x556ae88bb058, func=func@entry=0x556ae88bb190, nresults=nresults@entry=-1) at ldo.c:365 #18 0x00007f233d16a735 in luaD_precall (L=L@entry=0x556ae88bb058, func=func@entry=0x556ae88bb190, nresults=nresults@entry=-1) at ldo.c:344 #19 0x00007f233d1775d5 in luaV_execute (L=L@entry=0x556ae88bb058) at lvm.c:1149 #20 0x00007f233d16a820 in unroll (L=0x556ae88bb058, ud=<optimized out>) at ldo.c:555 #21 0x00007f233d169d82 in luaD_rawrunprotected (L=L@entry=0x556ae88bb058, f=f@entry=0x7f233d16a830 <resume>, ud=ud@entry=0x7ffff3bd2e1c) at ldo.c:142 #22 0x00007f233d16aa35 in lua_resume (L=L@entry=0x556ae88bb058, from=from@entry=0x556ae673a328, nargs=<optimized out>, nargs@entry=2) at ldo.c:662 #23 0x00007f233d17cc57 in auxresume (L=L@entry=0x556ae673a328, co=co@entry=0x556ae88bb058, narg=2) at lcorolib.c:39 #24 0x00007f233d17cfa7 in luaB_coresume (L=0x556ae673a328) at lcorolib.c:60 #25 0x00007f233d16a585 in luaD_precall (L=L@entry=0x556ae673a328, func=func@entry=0x556ae84e7620, nresults=nresults@entry=3) at ldo.c:365 #26 0x00007f233d16a735 in luaD_precall (L=L@entry=0x556ae673a328, func=func@entry=0x556ae84e7620, nresults=nresults@entry=3) at ldo.c:344 #27 0x00007f233d177355 in luaV_execute (L=L@entry=0x556ae673a328) at lvm.c:1134 #28 0x00007f233d16a998 in luaD_call (L=L@entry=0x556ae673a328, func=<optimized out>, nResults=nResults@entry=0) at ldo.c:496 #29 0x00007f233d16a9c1 in luaD_callnoyield (L=L@entry=0x556ae673a328, func=<optimized out>, nResults=nResults@entry=0) at ldo.c:506 #30 0x00007f233d1664cc in lua_callk (L=L@entry=0x556ae673a328, nargs=nargs@entry=2, nresults=nresults@entry=0, ctx=ctx@entry=0, k=k@entry=0x0) at lapi.c:924 #31 0x0000556ae5dfd773 in run_main (L=0x556ae673a328) at nse_main.cc:668 #32 0x00007f233d16a585 in luaD_precall (L=L@entry=0x556ae673a328, func=0x556ae84e73d0, nresults=0) at ldo.c:365 #33 0x00007f233d16a963 in luaD_precall (nresults=<optimized out>, func=<optimized out>, L=0x556ae673a328) at ldo.c:495 #34 luaD_call (L=L@entry=0x556ae673a328, func=<optimized out>, nResults=<optimized out>) at ldo.c:495 #35 0x00007f233d16a9c1 in luaD_callnoyield (L=0x556ae673a328, func=<optimized out>, nResults=<optimized out>) at ldo.c:506 #36 0x00007f233d169d82 in luaD_rawrunprotected (L=L@entry=0x556ae673a328, f=f@entry=0x7f233d165050 <f_call>, ud=ud@entry=0x7ffff3bd3210) at ldo.c:142 #37 0x00007f233d16ac4b in luaD_pcall (L=L@entry=0x556ae673a328, func=func@entry=0x7f233d165050 <f_call>, u=u@entry=0x7ffff3bd3210, old_top=32, ef=<optimized out>) at ldo.c:727 #38 0x00007f233d166594 in lua_pcallk (L=0x556ae673a328, nargs=nargs@entry=1, nresults=nresults@entry=0, errfunc=errfunc@entry=1, ctx=ctx@entry=0, k=k@entry=0x0) at lapi.c:968 #39 0x0000556ae5dfde78 in script_scan (targets=std::vector of length 1, capacity 100 = {...}, scantype=scantype@entry=SCRIPT_SCAN) at nse_main.cc:826 #40 0x0000556ae5dab425 in nmap_main (argc=<optimized out>, argv=0x7ffff3bd43b8) at nmap.cc:2240 #41 0x0000556ae5d80e65 in main (argc=7, argv=0x7ffff3bd43b8) at main.cc:237 (rr) when Current event: 3413 (rr) display/i $pc 1: x/i $pc => 0x7f233d19d4cc <hascaptures+60>: test %eax,%eax (rr) cont Continuing. Breakpoint 2, 0x00007f233d19d4cc in hascaptures (tree=0x556ae6cfca74, tree@entry=0x556ae6cfca94) at lpcode.c:144 144 in lpcode.c 1: x/i $pc => 0x7f233d19d4cc <hascaptures+60>: test %eax,%eax (rr) Continuing. Breakpoint 2, 0x00007f233d19d4cc in hascaptures (tree=0x556ae6cfca74, tree@entry=0x556ae6cfca94) at lpcode.c:144 144 in lpcode.c 1: x/i $pc => 0x7f233d19d4cc <hascaptures+60>: test %eax,%eax (rr) Continuing. Breakpoint 2, 0x00007f233d19d4cc in hascaptures (tree=0x556ae6cfca74, tree@entry=0x556ae6cfca94) at lpcode.c:144 144 in lpcode.c 1: x/i $pc => 0x7f233d19d4cc <hascaptures+60>: test %eax,%eax (rr) Continuing. Breakpoint 2, 0x00007f233d19d4cc in hascaptures (tree=0x556ae6cfca74, tree@entry=0x556ae6cfca94) at lpcode.c:144 144 in lpcode.c 1: x/i $pc => 0x7f233d19d4cc <hascaptures+60>: test %eax,%eax (rr) Continuing. Breakpoint 2, 0x00007f233d19d4cc in hascaptures (tree=0x556ae6cfca74, tree@entry=0x556ae6cfca94) at lpcode.c:144 144 in lpcode.c 1: x/i $pc => 0x7f233d19d4cc <hascaptures+60>: test %eax,%eax (rr) Continuing. Breakpoint 2, 0x00007f233d19d4cc in hascaptures (tree=0x556ae6cfca74, tree@entry=0x556ae6cfca94) at lpcode.c:144 144 in lpcode.c 1: x/i $pc => 0x7f233d19d4cc <hascaptures+60>: test %eax,%eax (rr) Continuing. Breakpoint 2, 0x00007f233d19d4cc in hascaptures (tree=0x556ae6cfca74, tree@entry=0x556ae6cfca94) at lpcode.c:144 144 in lpcode.c 1: x/i $pc => 0x7f233d19d4cc <hascaptures+60>: test %eax,%eax (rr) Continuing. Breakpoint 2, 0x00007f233d19d4cc in hascaptures (tree=0x556ae6cfca74, tree@entry=0x556ae6cfca94) at lpcode.c:144 144 in lpcode.c 1: x/i $pc => 0x7f233d19d4cc <hascaptures+60>: test %eax,%eax (rr) Continuing. Breakpoint 2, 0x00007f233d19d4cc in hascaptures (tree=0x556ae6cfca74, tree@entry=0x556ae6cfca94) at lpcode.c:144 144 in lpcode.c 1: x/i $pc => 0x7f233d19d4cc <hascaptures+60>: test %eax,%eax (rr) bt #0 0x00007f233d19d4cc in hascaptures (tree=0x556ae6cfca74, tree@entry=0x556ae6cfca94) at lpcode.c:144 #1 0x00007f233d19d4cc in hascaptures (tree=tree@entry=0x556ae6cfca8c) at lpcode.c:144 #2 0x00007f233d19d4cc in hascaptures (tree=0x556ae6cfca84, tree@entry=0x556ae6cfca94) at lpcode.c:144 #3 0x00007f233d19d4cc in hascaptures (tree=tree@entry=0x556ae6cfca8c) at lpcode.c:144 #4 0x00007f233d19d4cc in hascaptures (tree=0x556ae6cfca84, tree@entry=0x556ae6cfca94) at lpcode.c:144 #5 0x00007f233d19d4cc in hascaptures (tree=tree@entry=0x556ae6cfca8c) at lpcode.c:144 #6 0x00007f233d19d4cc in hascaptures (tree=0x556ae6cfca84, tree@entry=0x556ae6cfca94) at lpcode.c:144 #7 0x00007f233d19d4cc in hascaptures (tree=tree@entry=0x556ae6cfca8c) at lpcode.c:144 #8 0x00007f233d19d4cc in hascaptures (tree=0x556ae6cfca84, tree@entry=0x556ae6cfca94) at lpcode.c:144 #9 0x00007f233d19d4cc in hascaptures (tree=tree@entry=0x556ae6cfca8c) at lpcode.c:144 #10 0x00007f233d19d4cc in hascaptures (tree=0x556ae6cfca84, tree@entry=0x556ae6cfca94) at lpcode.c:144 #11 0x00007f233d19d4cc in hascaptures (tree=tree@entry=0x556ae6cfca8c) at lpcode.c:144 #12 0x00007f233d19d4cc in hascaptures (tree=0x556ae6cfca84, tree@entry=0x556ae6cfca94) at lpcode.c:144 #13 0x00007f233d19d4cc in hascaptures (tree=tree@entry=0x556ae6cfca8c) at lpcode.c:144 #14 0x00007f233d19d4cc in hascaptures (tree=0x556ae6cfca84, tree@entry=0x556ae6cfca94) at lpcode.c:144 #15 0x00007f233d19d4cc in hascaptures (tree=tree@entry=0x556ae6cfca8c) at lpcode.c:144 #16 0x00007f233d19d4cc in hascaptures (tree=0x556ae6cfca84, tree@entry=0x556ae6cfca94) at lpcode.c:144 #17 0x00007f233d19d4cc in hascaptures (tree=tree@entry=0x556ae6cfca8c) at lpcode.c:144 #18 0x00007f233d19d4cc in hascaptures (tree=0x556ae6cfca84, tree@entry=0x556ae6cfc9fc) at lpcode.c:144 #19 0x00007f233d19d4cc in hascaptures (tree=tree@entry=0x556ae6cfc9f4) at lpcode.c:144 #20 0x00007f233d19e1ec in codecapture (fl=0x7f233d19f280 <fullset_>, tt=-1, tree=0x556ae6cfc9ec, compst=0x7ffff3bd2930) at lpcode.c:720 #21 codegen (compst=compst@entry=0x7ffff3bd2930, tree=tree@entry=0x556ae6cfc9ec, opt=opt@entry=0, tt=tt@entry=-1, fl=fl@entry=0x7f233d19f280 <fullset_>) at lpcode.c:905 #22 0x00007f233d19e7f9 in codegrammar (compst=compst@entry=0x7ffff3bd2930, grammar=grammar@entry=0x556ae6cfc974) at lpcode.c:850 #23 0x00007f233d19e17b in codegen (compst=compst@entry=0x7ffff3bd2930, tree=tree@entry=0x556ae6cfc974, opt=opt@entry=0, tt=tt@entry=-1, fl=fl@entry=0x7f233d19f280 <fullset_>) at lpcode.c:907 #24 0x00007f233d19e30c in codecapture (fl=0x7f233d19f280 <fullset_>, tt=-1, tree=0x556ae6cfc96c, compst=0x7ffff3bd2930) at lpcode.c:726 #25 codegen (compst=compst@entry=0x7ffff3bd2930, tree=tree@entry=0x556ae6cfc96c, opt=opt@entry=0, tt=tt@entry=-1, fl=fl@entry=0x7f233d19f280 <fullset_>) at lpcode.c:905 #26 0x00007f233d19e30c in codecapture (fl=0x7f233d19f280 <fullset_>, tt=-1, tree=0x556ae6cfc964, compst=0x7ffff3bd2930) at lpcode.c:726 #27 codegen (compst=compst@entry=0x7ffff3bd2930, tree=0x556ae6cfc964, tree@entry=0x556ae6cfc86c, opt=opt@entry=0, tt=tt@entry=-1, fl=fl@entry=0x7f233d19f280 <fullset_>) at lpcode.c:905 #28 0x00007f233d19e30c in codecapture (fl=0x7f233d19f280 <fullset_>, tt=-1, tree=0x556ae6cfc864, compst=0x7ffff3bd2930) at lpcode.c:726 #29 codegen (compst=compst@entry=0x7ffff3bd2930, tree=tree@entry=0x556ae6cfc864, opt=opt@entry=0, tt=tt@entry=-1, fl=fl@entry=0x7f233d19f280 <fullset_>) at lpcode.c:905 #30 0x00007f233d19e7f9 in codegrammar (compst=compst@entry=0x7ffff3bd2930, grammar=grammar@entry=0x556ae6cfc704) at lpcode.c:850 #31 0x00007f233d19e17b in codegen (compst=compst@entry=0x7ffff3bd2930, tree=tree@entry=0x556ae6cfc704, opt=opt@entry=0, tt=tt@entry=-1, fl=fl@entry=0x7f233d19f280 <fullset_>) at lpcode.c:907 #32 0x00007f233d19e973 in compile (L=L@entry=0x556ae88bb058, p=0x556ae6cfc6f8) at lpcode.c:977 #33 0x00007f233d19bbc4 in prepcompile (L=L@entry=0x556ae88bb058, p=<optimized out>, idx=1) at lptree.c:1099 #34 0x00007f233d19d01b in lp_match (L=0x556ae88bb058) at lptree.c:1154 #35 0x00007f233d16a585 in luaD_precall (L=L@entry=0x556ae88bb058, func=func@entry=0x556ae88bb190, nresults=nresults@entry=-1) at ldo.c:365 #36 0x00007f233d16a735 in luaD_precall (L=L@entry=0x556ae88bb058, func=func@entry=0x556ae88bb190, nresults=nresults@entry=-1) at ldo.c:344 #37 0x00007f233d1775d5 in luaV_execute (L=L@entry=0x556ae88bb058) at lvm.c:1149 #38 0x00007f233d16a820 in unroll (L=0x556ae88bb058, ud=<optimized out>) at ldo.c:555 #39 0x00007f233d169d82 in luaD_rawrunprotected (L=L@entry=0x556ae88bb058, f=f@entry=0x7f233d16a830 <resume>, ud=ud@entry=0x7ffff3bd2e1c) at ldo.c:142 #40 0x00007f233d16aa35 in lua_resume (L=L@entry=0x556ae88bb058, from=from@entry=0x556ae673a328, nargs=<optimized out>, nargs@entry=2) at ldo.c:662 #41 0x00007f233d17cc57 in auxresume (L=L@entry=0x556ae673a328, co=co@entry=0x556ae88bb058, narg=2) at lcorolib.c:39 #42 0x00007f233d17cfa7 in luaB_coresume (L=0x556ae673a328) at lcorolib.c:60 #43 0x00007f233d16a585 in luaD_precall (L=L@entry=0x556ae673a328, func=func@entry=0x556ae84e7620, nresults=nresults@entry=3) at ldo.c:365 #44 0x00007f233d16a735 in luaD_precall (L=L@entry=0x556ae673a328, func=func@entry=0x556ae84e7620, nresults=nresults@entry=3) at ldo.c:344 #45 0x00007f233d177355 in luaV_execute (L=L@entry=0x556ae673a328) at lvm.c:1134 #46 0x00007f233d16a998 in luaD_call (L=L@entry=0x556ae673a328, func=<optimized out>, nResults=nResults@entry=0) at ldo.c:496 #47 0x00007f233d16a9c1 in luaD_callnoyield (L=L@entry=0x556ae673a328, func=<optimized out>, nResults=nResults@entry=0) at ldo.c:506 #48 0x00007f233d1664cc in lua_callk (L=L@entry=0x556ae673a328, nargs=nargs@entry=2, nresults=nresults@entry=0, ctx=ctx@entry=0, k=k@entry=0x0) at lapi.c:924 #49 0x0000556ae5dfd773 in run_main (L=0x556ae673a328) at nse_main.cc:668 #50 0x00007f233d16a585 in luaD_precall (L=L@entry=0x556ae673a328, func=0x556ae84e73d0, nresults=0) at ldo.c:365 #51 0x00007f233d16a963 in luaD_precall (nresults=<optimized out>, func=<optimized out>, L=0x556ae673a328) at ldo.c:495 #52 luaD_call (L=L@entry=0x556ae673a328, func=<optimized out>, nResults=<optimized out>) at ldo.c:495 #53 0x00007f233d16a9c1 in luaD_callnoyield (L=0x556ae673a328, func=<optimized out>, nResults=<optimized out>) at ldo.c:506 #54 0x00007f233d169d82 in luaD_rawrunprotected (L=L@entry=0x556ae673a328, f=f@entry=0x7f233d165050 <f_call>, ud=ud@entry=0x7ffff3bd3210) at ldo.c:142 #55 0x00007f233d16ac4b in luaD_pcall (L=L@entry=0x556ae673a328, func=func@entry=0x7f233d165050 <f_call>, u=u@entry=0x7ffff3bd3210, old_top=32, ef=<optimized out>) at ldo.c:727 #56 0x00007f233d166594 in lua_pcallk (L=0x556ae673a328, nargs=nargs@entry=1, nresults=nresults@entry=0, errfunc=errfunc@entry=1, ctx=ctx@entry=0, k=k@entry=0x0) at lapi.c:968 #57 0x0000556ae5dfde78 in script_scan (targets=std::vector of length 1, capacity 100 = {...}, scantype=scantype@entry=SCRIPT_SCAN) at nse_main.cc:826 #58 0x0000556ae5dab425 in nmap_main (argc=<optimized out>, argv=0x7ffff3bd43b8) at nmap.cc:2240 #59 0x0000556ae5d80e65 in main (argc=7, argv=0x7ffff3bd43b8) at main.cc:237 (rr) info threads Id Target Id Frame * 1 Thread 1344.1344 (nmap) 0x00007f233d19d4cc in hascaptures (tree=0x556ae6cfca74, tree@entry=0x556ae6cfca94) at lpcode.c:144 (rr) directory /home/benutzer/source/lua-lpeg/orig/lua-lpeg-1.0.0 Source directories searched: /home/benutzer/source/lua-lpeg/orig/lua-lpeg-1.0.0:$cdir:$cwd (rr) directory /home/benutzer/source/nmap/orig/nmap-7.80+dfsg1 Source directories searched: /home/benutzer/source/nmap/orig/nmap-7.80+dfsg1:/home/benutzer/source/lua-lpeg/orig/lua-lpeg-1.0.0:$cdir:$cwd (rr) step 146 tree = sib2(tree); goto tailcall; 1: x/i $pc => 0x7f233d19d4d0 <hascaptures+64>: movslq 0x4(%rbx),%rax (rr) 133 switch (tree->tag) { 1: x/i $pc => 0x7f233d19d494 <hascaptures+4>: movzbl (%rbx),%eax (rr) 140 switch (numsiblings[tree->tag]) { 1: x/i $pc => 0x7f233d19d4b0 <hascaptures+32>: mov 0x203b09(%rip),%rdx # 0x7f233d3a0fc0 (rr) 144 if (hascaptures(sib1(tree))) return 1; 1: x/i $pc => 0x7f233d19d4c3 <hascaptures+51>: lea 0x8(%rbx),%rdi (rr) hascaptures (tree=tree@entry=0x556ae6cfca8c) at lpcode.c:131 131 int hascaptures (TTree *tree) { 1: x/i $pc => 0x7f233d19d490 <hascaptures>: push %rbx (rr) 133 switch (tree->tag) { 1: x/i $pc => 0x7f233d19d494 <hascaptures+4>: movzbl (%rbx),%eax (rr) 140 switch (numsiblings[tree->tag]) { 1: x/i $pc => 0x7f233d19d4b0 <hascaptures+32>: mov 0x203b09(%rip),%rdx # 0x7f233d3a0fc0 (rr) 144 if (hascaptures(sib1(tree))) return 1; 1: x/i $pc => 0x7f233d19d4c3 <hascaptures+51>: lea 0x8(%rbx),%rdi (rr) hascaptures (tree=tree@entry=0x556ae6cfca94) at lpcode.c:131 131 int hascaptures (TTree *tree) { 1: x/i $pc => 0x7f233d19d490 <hascaptures>: push %rbx
