Kprobe error

[StevenDoesStuffs]

Log:

[root@StevenPC opensnitch-git]# opensnitchd
[2018-07-27 16:35:32]  IMP  Starting opensnitch-daemon v1.0.0b
[2018-07-27 16:35:32]  !!!  Error while enabling probe descriptor for opensnitch_exec_probe: write /sys/kernel/debug/tracing/kprobe_events: no such file or directory

I've checked that in fact the file does exist.

[Northern-Lights]

I'm seeing the same on Fedora 28.

[OderDochNicht]

Confirmed for 4.17.0-1-amd64 #1 SMP Debian 4.17.8-1 (2018-07-20) x86_64 GNU/Linux

[GeekAnnoyed]

same for 4.17.11-arch1 #1 SMP PREEMPT Sun Jul 29 10:11:16 UTC 2018 x86_64 GNU/Linux.
not sure what else I can add.

[nodauf]

@Northern-Lights Thank you. It's working.

[OderDochNicht]

Not here, unfortunately:

`sudo /usr/local/bin/opensnitchd
[2018-08-15 11:25:54] IMP Starting opensnitch-daemon v1.0.0b
[2018-08-15 11:25:54] INF Loading rules from /home/user/go/src/github.com/evilsocket/opensnitch/daemon/rules ...
[2018-08-15 11:25:54] !!! Path '/home/user/go/src/github.com/evilsocket/opensnitch/daemon/rules' does not exist.
user@monster:/go/src/github.com/evilsocket/opensnitch/daemon$ mkdir rules
user@monster:/go/src/github.com/evilsocket/opensnitch/daemon$ sudo /usr/local/bin/opensnitchd
[2018-08-15 11:26:34] IMP Starting opensnitch-daemon v1.0.0b
[2018-08-15 11:26:34] INF Loading rules from /home/user/go/src/github.com/evilsocket/opensnitch/daemon/rules ...
[2018-08-15 11:26:34] !!! Error while creating queue #0: Error binding to queue: operation not permitted

user@monster:/go/src/github.com/evilsocket/opensnitch/daemon$ ln -s rule/* rules
user@monster:/go/src/github.com/evilsocket/opensnitch/daemon$ sudo /usr/local/bin/opensnitchd
[2018-08-15 11:33:33] IMP Starting opensnitch-daemon v1.0.0b
[2018-08-15 11:33:33] INF Loading rules from /home/odo/go/src/github.com/evilsocket/opensnitch/daemon/rules ...
[2018-08-15 11:33:33] !!! Error while creating queue #0: Error binding to queue: operation not permitted
`
Some code refers to "rules" but the directory is named "rule". Fixing this doesn't help.

4.17.0-1-amd64 #1 SMP Debian 4.17.8-1 (2018-07-20) x86_64 GNU/Linux

[nodauf]

I had the same issue with the rules files.
After the make install if you start opensnitchd with systemctl start opensnitchd it will works.

[OderDochNicht]

Yes, you're right. Starting opensnitchd with systemctl start opensnitchd starts the demon. Then opensnitch-ui brings up dialog windows.
But shortly afterwards I get this:
E0815 13:53:55.895219282 3671 tcp_server_posix.cc:210] Failed accept4: Zu viele offene Dateien Traceback (most recent call last): File "/usr/local/lib/python3.6/dist-packages/opensnitch/dialogs/stats.py", line 204, in _on_update_triggered KeyError: 'getpwuid(): uid not found: 0'

and opensnitch-ui closes itself.

Translation: "Zu viele offene Dateien" means "Too many open files".

[nodauf]

Have you SELinux?
Is the command cat /etc/passwd | grep ":0:" give you an output?

[OderDochNicht]

root:x:0:0:root:/root:/bin/bash
It's standard debian, installed from an 4.9 minimal install DVD and then upgraded to 4.17 kernel.

[Northern-Lights]

@OderDochNicht your issue looks more like it's related to #185

[1kenthomas]

Is there any way to get opensnitch to play nice with a modern kernel and secure boot?

(Otherwise: note people experiencing similar issues may wish to disable secure boot as a TIAS).

[gustavo-iniguez-goya]

These problems are fixed with latest version.

If any of them still occur, please, open a new issue.