[prev in list] [next in list] [prev in thread] [next in thread]
List: libguestfs
Subject: Re: [Libguestfs] Libguestfs with Yara rules error
From: Luis <luisfueris () gmail ! com>
Date: 2019-12-23 15:32:18
Message-ID: CAHBh8-HFk0hhfz=tMz7A=WaoD5sH-fqTy_NOyKi5YRrD=QO1EQ () mail ! gmail ! com
[Download RAW message or body]
[Attachment #2 (multipart/alternative)]
I did not send you the project I did with Libguestfs... Futhermore there is
a git repo here! https://gitlab.com/luisfm/fitz-roy and a post on my blog
http://acmpxyz.com/fitz_roy.html. Thanks so much for that terrific library
in order to access VMs!
Cheers and merry christmas!
El sáb., 21 dic. 2019 a las 23:47, Luis Fueris (<luisfueris@gmail.com>)
escribió:
> Hi Richard.
>
> Few days ago, I installed libyara a libguestfs properly. But when I load
> a yara rule and scan it via guestfs_yara_scan, my binary throughts
> following error:
>
> libguestfs: error: deserialise_yara_detection_list: Success
>
> And function exists with NULL value. As we can see this function is on
> lib/yara.c from libguestfs git. I think that these yara functions are an
> integration for yara C api. All debug and trace log is in
> libguestfs-yara.debug file.
>
>
> El 10/12/2019 a las 09:46, Richard W.M. Jones escribió:
> > On Tue, Dec 10, 2019 at 09:19:47AM +0100, Luis wrote:
> > > I am using libguestfs 1.40.2 and yara 3.11.0 but when I execute my
> program
> > > it thoughts the following error:
> > >
> > > $> ./yara-guestfs
> > > libguestfs: error: yara_load: feature 'libyara' is not available in this
> > > build of libguestfs. Read 'AVAILABILITY' in the guestfs(3) man page for
> > >
> > > If we check the manual, in guestfs appears guestfs_yara_load function so
> > > libyara is installed. I installed and compiled it from tarballs.
> > This function:
> >
> >
> https://github.com/libguestfs/libguestfs/blob/4aa4edf972bc8df8869cdcaa4ab4f40b63a626cf/daemon/yara.c#L308
>
> >
> > returns 1 if HAVE_YARA is defined. This is defined by this
> > ./configure test:
> >
> >
> https://github.com/libguestfs/libguestfs/blob/4aa4edf972bc8df8869cdcaa4ab4f40b63a626cf/m4/guestfs-daemon.m4#L128
>
> >
> > In other words it depends how libguestfs was configured. Where
> > did you get libguestfs from? How was it compiled?
> >
> > Rich.
> >
>
--
Luis Fueris
PUBLIC KEY ID: B7B00196
SERVER: https://pgp.mit.edu/
SEARCH STRING: Fueris
[Attachment #5 (text/html)]
<div dir="ltr"><div>I did not send you the project I did with Libguestfs... \
Futhermore there is a git repo here! <a \
href="https://gitlab.com/luisfm/fitz-roy">https://gitlab.com/luisfm/fitz-roy</a> and \
a post on my blog <a \
href="http://acmpxyz.com/fitz_roy.html">http://acmpxyz.com/fitz_roy.html</a>. Thanks \
so much for that terrific library in order to access VMs! \
<br></div><div><br></div><div>Cheers and merry \
christmas!<br></div><div><br></div><div><br></div></div><br><div \
class="gmail_quote"><div dir="ltr" class="gmail_attr">El sáb., 21 dic. 2019 a las \
23:47, Luis Fueris (<<a \
href="mailto:luisfueris@gmail.com">luisfueris@gmail.com</a>>) \
escribió:<br></div><blockquote class="gmail_quote" style="margin:0px 0px 0px \
0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex">Hi Richard.<br> <br>
Few days ago, I installed libyara a libguestfs properly. But when I load <br>
a yara rule and scan it via guestfs_yara_scan, my binary throughts <br>
following error:<br>
<br>
libguestfs: error: deserialise_yara_detection_list: Success<br>
<br>
And function exists with NULL value. As we can see this function is on <br>
lib/yara.c from libguestfs git. I think that these yara functions are an <br>
integration for yara C api. All debug and trace log is in <br>
libguestfs-yara.debug file.<br>
<br>
<br>
El 10/12/2019 a las 09:46, Richard W.M. Jones escribió:<br>
> On Tue, Dec 10, 2019 at 09:19:47AM +0100, Luis wrote:<br>
>> I am using libguestfs 1.40.2 and yara 3.11.0 but when I execute my \
program<br> >> it thoughts the following error:<br>
>><br>
>> $> ./yara-guestfs<br>
>> libguestfs: error: yara_load: feature 'libyara' is not available in \
this<br> >> build of libguestfs. Read 'AVAILABILITY' in the \
guestfs(3) man page for<br> >><br>
>> If we check the manual, in guestfs appears guestfs_yara_load function so<br>
>> libyara is installed. I installed and compiled it from tarballs.<br>
> This function:<br>
><br>
> <a href="https://github.com/libguestfs/libguestfs/blob/4aa4edf972bc8df8869cdcaa4ab4f40b63a626cf/daemon/yara.c#L308" \
rel="noreferrer" target="_blank">https://github.com/libguestfs/libguestfs/blob/4aa4edf972bc8df8869cdcaa4ab4f40b63a626cf/daemon/yara.c#L308</a><br>
><br>
> returns 1 if HAVE_YARA is defined. This is defined by this<br>
> ./configure test:<br>
><br>
> <a href="https://github.com/libguestfs/libguestfs/blob/4aa4edf972bc8df8869cdcaa4ab4f40b63a626cf/m4/guestfs-daemon.m4#L128" \
rel="noreferrer" target="_blank">https://github.com/libguestfs/libguestfs/blob/4aa4edf972bc8df8869cdcaa4ab4f40b63a626cf/m4/guestfs-daemon.m4#L128</a><br>
><br>
> In other words it depends how libguestfs was configured. Where<br>
> did you get libguestfs from? How was it compiled?<br>
><br>
> Rich.<br>
><br>
</blockquote></div><br clear="all"><br>-- <br><div dir="ltr" \
class="gmail_signature"><div dir="ltr"><div><div dir="ltr"><div><div \
dir="ltr"><div><div dir="ltr"><div><div>Luis Fueris<br></div><div>PUBLIC KEY ID: \
B7B00196<br></div><div>SERVER: <a href="https://pgp.mit.edu/" \
target="_blank">https://pgp.mit.edu/</a><br></div><div>SEARCH STRING: \
Fueris<br></div><div \
dir="ltr"><br></div></div></div></div></div></div></div></div></div></div>
_______________________________________________
Libguestfs mailing list
Libguestfs@redhat.com
https://www.redhat.com/mailman/listinfo/libguestfs
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic