-
Notifications
You must be signed in to change notification settings - Fork 663
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
1.2.1-1: clamonacc: Getting "ERROR: ClamInotif: could not add element to hash table for /home/.../.cache/mozilla/firefox/....default-release/safebrowsing-backup" #1245
Comments
Unlike the older ExcludePath option, the OnAccessExcludePath feature is, unfortunately, not a regex. So the ^ character will not work in the OnAccessExcludePath option. It would be nice to change this in the future, particularly if someone from the community is interested in working on it. Please let me know if this help you solve the problem. |
@brebell Thanks for the information. That is helpful. I will let you know if I find that it fixes my issue. |
So I tried changing the path syntax I was using for the OnAccessExcludePath clauses. I was still having a ton of trouble with on-access scanning though. And implementing these changes didn't seem to help, unfortunately. I think I may need to run without on-access scanning for a while. Or narrow the scope of what I'm including in scans, instead of trying to exclude files and folders so much. Thanks again for the help, @brebell . |
The trailing / may be an issue in the filenames as well.
See if this works, but you may not be able to exclude as much as you had wanted. |
OK, trying those changes now. Thanks. |
Describe the bug
clamonacc (ClamAV On Access Scanner) reports an error trying to add one specific path to ClamAV's internal hashtable(s). The file/folder path in question is
/home/user/.cache/mozilla/firefox/cnibxy8n.default-release/safebrowsing-backup
on my system.(This error was also reported as one of the errors listed in #1178 .)
I think this is a temporary folder that Firefox renames
safebrowsing
to while downloading/refreshing the Safe Browsing list from Google. This temporary folder only seems to exist momentarily, which may be why ClamAV reports the error it does. By the time it tries to add this (backup) folder to its internal data structures, the folder doesn't even exist anymore.I tried excluding this path using ExcludePath and OnAccessExcludePath in clamd.conf. Didn't work. Is this because I was using the wrong path syntax in these rules? Is it correct to put a
^
before the initial slash, to indicate the very start of the path value?For the moment, I have worked around this issue by setting OnAccessIncludePath to a much narrower scope: one particular subdirectory of my home directory. Specifically,
/home/user/Tresorit/
. I don't consider this ideal, however, for the obvious reason that lots of virus infections could be missed elsewhere on my system, if this is the only folder I am scanning.How to reproduce the problem
clamav
package from pamac, the Manjaro package manager./etc/clamav/clamd.conf
to enable ClamAV's On Access file scanning, including only one folder,/home/<your user name>/
.sudo systemctl status <name of service or unit>
. Check for errors in the output of these commands, or in the system journal output viewable using tools such as journalctl.Output from
clamconf -n
:Checking configuration files in /etc/clamav
Config file: clamd.conf
Config file: freshclam.conf
Config file: clamav-milter.conf
Software settings
Version: 1.2.1
Optional features supported: MEMPOOL AUTOIT_EA06 BZIP2 LIBXML2 PCRE2 ICONV JSON RAR
Database information
Database directory: /var/lib/clamav
main.cvd: version 62, sigs: 6647427, built on Thu Sep 16 05:32:42 2021
bytecode.cvd: version 335, sigs: 86, built on Tue Feb 27 07:37:24 2024
daily.cld: version 27246, sigs: 2059292, built on Mon Apr 15 01:24:36 2024
Total number of signatures: 8706805
Platform information
uname: Linux 6.8.5-1-MANJARO #1 SMP PREEMPT_DYNAMIC Wed Apr 10 20:15:45 UTC 2024 x86_64
OS: Linux, ARCH: x86_64, CPU: x86_64
Full OS version: "Manjaro Linux"
WARNING: zlib version mismatch: 1.3 (1.3.1)
zlib version: 1.3 (1.3.1), compile flags: a9
platform id: 0x0a21bfbf08000000000d0201
Build information
GNU C: 13.2.1 20230801 (13.2.1)
sizeof(void*) = 8
Engine flevel: 191, dconf: 191
Attachments
If applicable, add screenshots to help explain your problem.
If the issue is reproducible only when scanning a specific file, attach it to the ticket.
N/A
The text was updated successfully, but these errors were encountered: