Arch Linux User Repository

FYI: activation does not work

It fails with the following for me on 9.0.5.0:

ESET Endpoint Antivirus Error: : Activation was not successful. (System information is temporarily unavailable (0x2))

blochl: I see the same/similar use-after-free stacks with eea 7.1.9.0 and 5.13.12 kernel.

I will check tomorrow if I have similar messages with the latest v7 and kernel.

ras: Thanks for the reply. There were no such messages with 8.1.3.0-1, but, of course, the kernel was older than 5.13.x. So I guess it's a compatibility issue with the new kernel, and not sure that v7 will help here. Yeah, I'll try to report it to ESET.

hamedsbt: you should contact Eset if you have problems with their product. I am not affiliated with Eset in any way.

blochl: at my company we have rolled back to the latest v7 version as v8.1.3.0 has performance issues. This is a kernel module issue so you should report this to them. To my experience they will respond with: "your kernel version is not supported"

If there is interest I can provide an eea7-dkms package using the latest v7 version parallel to this which will track the latest (currently v8) version.

I get the following records in dmesg with 8.1.3.0-2 (many of them):

[   36.434699] CPU: 7 PID: 604 Comm: ERAAgent Tainted: G    B      OE     5.13.13-arch1-1 #1
[   36.434702] Hardware name: Dell Inc. OptiPlex 9020/0N4YC8, BIOS A12 05/06/2015
[   36.434704] ==================================================================
[   36.543758] ==================================================================
[   36.543770] BUG: KFENCE: use-after-free read in strcmp+0x10/0x20

[   36.543788] Use-after-free read at 0x0000000001994f77 (in kfence-#129):
[   36.543794]  strcmp+0x10/0x20
[   36.543802]  ertp_path_excluded+0x2c/0x80 [eset_rtp]
[   36.543817]  ertp_check_file+0x3a/0x240 [eset_rtp]
[   36.543831]  __x64_sys_ertp_close+0x2f/0x80 [eset_rtp]
[   36.543843]  do_syscall_64+0x61/0x80
[   36.543851]  entry_SYSCALL_64_after_hwframe+0x44/0xae

[   36.543865] kfence-#129 [0x000000009dd7b3de-0x000000003c7c09de, size=4096, cache=kmalloc-4k] allocated by task 537:
[   36.543880]  ertp_proc_excluded+0x33/0x100 [eset_rtp]
[   36.543892]  ertp_check_file+0x3a/0x240 [eset_rtp]
[   36.543905]  __x64_sys_ertp_close+0x2f/0x80 [eset_rtp]
[   36.543916]  do_syscall_64+0x61/0x80
[   36.543921]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[   36.543929] 
               freed by task 537:
[   36.543934]  ertp_proc_excluded+0x96/0x100 [eset_rtp]
[   36.543945]  ertp_check_file+0x3a/0x240 [eset_rtp]
[   36.543958]  __x64_sys_ertp_close+0x2f/0x80 [eset_rtp]
[   36.543969]  do_syscall_64+0x61/0x80
[   36.543973]  entry_SYSCALL_64_after_hwframe+0x44/0xae

I have user-pass , How to active? I read doc and it seem an web-interface should be avaiable to activation, I couldn't activate webinterface according to the doc, how to activate web-interface? Can anybody provide proper doc please?

Plexcon: I can not help with those. The package installs properly. Those are eea errors. You need a proper license to be able to use this software.

eea-dkms 8.1.3.0-2 Error messages: "The product is not activated" (impossible to activate), "The detection engine is not up to date", "Error updating modules", "Management Agent is not installed"

8.1.3.0-2 should fix the DKMS post install issue for 5.13+ kernels

With 5.13+ kernels the kernel modules are automatically compressed with ZSTD instead of XZ, so filepaths are different and the DKMS postintstall script needs to be altered. Trying to come up with a fix for this soon.