search

evilsocket / opensnitch

OpenSnitch is a GNU/Linux interactive application firewall inspired by Little Snitch.
GNU General Public License v3.0
10.91k stars 509 forks source link

Kprobe error #184

Closed StevenDoesStuffs closed 3 years ago

StevenDoesStuffs commented 6 years ago

Log: 

[root@StevenPC opensnitch-git]# opensnitchd
[2018-07-27 16:35:32]  IMP  Starting opensnitch-daemon v1.0.0b
[2018-07-27 16:35:32]  !!!  Error while enabling probe descriptor for opensnitch_exec_probe: write /sys/kernel/debug/tracing/kprobe_events: no such file or directory

I've checked that in fact the file does exist.

Northern-Lights commented 6 years ago

I'm seeing the same on Fedora 28.

OderDochNicht commented 6 years ago

Confirmed for 4.17.0-1-amd64 #1 SMP Debian 4.17.8-1 (2018-07-20) x86_64 GNU/Linux

GeekAnnoyed commented 6 years ago

same for 4.17.11-arch1 #1 SMP PREEMPT Sun Jul 29 10:11:16 UTC 2018 x86_64 GNU/Linux. not sure what else I can add.

nodauf commented 6 years ago

@Northern-Lights Thank you. It's working.

OderDochNicht commented 6 years ago

Not here, unfortunately:

`sudo /usr/local/bin/opensnitchd [2018-08-15 11:25:54] IMP Starting opensnitch-daemon v1.0.0b [2018-08-15 11:25:54] INF Loading rules from /home/user/go/src/github.com/evilsocket/opensnitch/daemon/rules ... [2018-08-15 11:25:54] !!! Path '/home/user/go/src/github.com/evilsocket/opensnitch/daemon/rules' does not exist. user@monster:~/go/src/github.com/evilsocket/opensnitch/daemon$ mkdir rules user@monster:~/go/src/github.com/evilsocket/opensnitch/daemon$ sudo /usr/local/bin/opensnitchd [2018-08-15 11:26:34] IMP Starting opensnitch-daemon v1.0.0b [2018-08-15 11:26:34] INF Loading rules from /home/user/go/src/github.com/evilsocket/opensnitch/daemon/rules ... [2018-08-15 11:26:34] !!! Error while creating queue #0: Error binding to queue: operation not permitted

user@monster:~/go/src/github.com/evilsocket/opensnitch/daemon$ ln -s rule/* rules user@monster:~/go/src/github.com/evilsocket/opensnitch/daemon$ sudo /usr/local/bin/opensnitchd [2018-08-15 11:33:33] IMP Starting opensnitch-daemon v1.0.0b [2018-08-15 11:33:33] INF Loading rules from /home/odo/go/src/github.com/evilsocket/opensnitch/daemon/rules ... [2018-08-15 11:33:33] !!! Error while creating queue #0: Error binding to queue: operation not permitted ` Some code refers to "rules" but the directory is named "rule". Fixing this doesn't help.

4.17.0-1-amd64 #1 SMP Debian 4.17.8-1 (2018-07-20) x86_64 GNU/Linux

nodauf commented 6 years ago

I had the same issue with the rules files. After the make install if you start opensnitchd with systemctl start opensnitchd it will works.

OderDochNicht commented 6 years ago

Yes, you're right. Starting opensnitchd with systemctl start opensnitchd starts the demon. Then opensnitch-ui brings up dialog windows. But shortly afterwards I get this: E0815 13:53:55.895219282 3671 tcp_server_posix.cc:210] Failed accept4: Zu viele offene Dateien Traceback (most recent call last): File "/usr/local/lib/python3.6/dist-packages/opensnitch/dialogs/stats.py", line 204, in _on_update_triggered KeyError: 'getpwuid(): uid not found: 0'

and opensnitch-ui closes itself.

Translation: "Zu viele offene Dateien" means "Too many open files".

nodauf commented 6 years ago

Have you SELinux? Is the command cat /etc/passwd | grep ":0:" give you an output?

OderDochNicht commented 6 years ago

root:x:0:0:root:/root:/bin/bash It's standard debian, installed from an 4.9 minimal install DVD and then upgraded to 4.17 kernel.

Northern-Lights commented 6 years ago

@OderDochNicht your issue looks more like it's related to https://github.com/evilsocket/opensnitch/issues/185

1kenthomas commented 4 years ago

Is there any way to get opensnitch to play nice with a modern kernel and secure boot?

(Otherwise: note people experiencing similar issues may wish to disable secure boot as a TIAS).

gustavo-iniguez-goya commented 3 years ago

These problems are fixed with latest version.

If any of them still occur, please, open a new issue.