ls -l /usr/bin/dumpcap -rwx--x--- 1 root root 110400 May 3 23:06 /usr/bin/dumpcap A user belonging to the "wireshark" group could normally sniff the traffic. In 2.6.0-r1 its now impossible. This solves this bug: chgrp wireshark /usr/bin/dumpcap Please apply this on ${D} in pkg_postinst() or where it is more convenient. See: https://wiki.wireshark.org/CaptureSetup/CapturePrivileges
Sorry, I meant ${D} in src_install() or if it is possible direct on ROOT in pkg_postinst().
Please post your output for `/usr/bin/dumpcap` as non-privileged user.
Also, post your `emerge -vpq net-analyzer/wireshark` output in a comment.
$ ls -l /usr/bin/dumpcap -rwx--x--- 1 root root 110400 May 3 23:06 /usr/bin/dumpcap $ LANG=C /usr/bin/dumpcap bash: /usr/bin/dumpcap: Keine Berechtigung (weird, LANG=C is ignored) $ ls -l /usr/bin/dumpcap -rwx--x--- 1 root wireshark 110400 May 3 23:06 /usr/bin/dumpcap $ /usr/bin/dumpcap Capturing on 'enp2s0' dumpcap: The capture session could not be initiated on interface 'enp2s0' (You don't have permission to capture on that device). Please check to make sure you have sufficient permissions, and that you have the proper interface or pipe specified. # emerge -vpq net-analyzer/wireshark [ebuild R ] net-analyzer/wireshark-2.6.0-r1 USE="capinfos caps captype dftest dumpcap editcap filecaps gtk mergecap netlink pcap randpkt randpktdump reordercap sharkd ssl text2pcap tshark udpdump zlib -adns -androiddump -bcg729 -ciscodump -doc -kerberos -libxml2 -lua -lz4 -maxminddb -nghttp2 -portaudio -qt5 -sbc (-selinux) -smi -snappy -spandsp -sshdump -tfshark" # emerge --info Portage 2.3.34 (python 3.5.5-final-0, default/linux/amd64/13.0, gcc-7.3.0, glibc-2.26-r6, 4.16.3-gentoo x86_64) ================================================================= System uname: Linux-4.16.3-gentoo-x86_64-AMD_Ryzen_7_2700X_Eight-Core_Processor-with-gentoo-2.4.1 KiB Mem: 16414760 total, 5877464 free KiB Swap: 0 total, 0 free Timestamp of repository gentoo: Thu, 03 May 2018 21:45:01 +0000 Head commit of repository gentoo: ffed57e19d277cf67b334482817974c1e8da1b84 sh bash 4.4_p19 ld GNU ld (Gentoo 2.30 p2) 2.30.0 app-shells/bash: 4.4_p19::gentoo dev-java/java-config: 2.2.0-r4::gentoo dev-lang/perl: 5.26.2::gentoo dev-lang/python: 2.7.14-r2::gentoo, 3.5.5-r1::gentoo dev-util/cmake: 3.11.1::gentoo dev-util/pkgconfig: 0.29.2::gentoo sys-apps/baselayout: 2.4.1-r2::gentoo sys-apps/openrc: 0.35.5::gentoo sys-apps/sandbox: 2.13::gentoo sys-devel/autoconf: 2.13::gentoo, 2.69-r4::gentoo sys-devel/automake: 1.16.1-r1::gentoo sys-devel/binutils: 2.30-r2::gentoo sys-devel/gcc: 7.3.0-r1::gentoo, 8.1.0-r1::gentoo sys-devel/gcc-config: 1.9.1::gentoo sys-devel/libtool: 2.4.6-r5::gentoo sys-devel/make: 4.2.1-r3::gentoo sys-kernel/linux-headers: 4.16-r1::gentoo (virtual/os-headers) sys-libs/glibc: 2.26-r6::gentoo Repositories: gentoo location: /usr/portage sync-type: rsync sync-uri: rsync://rsync.de.gentoo.org/gentoo-portage priority: -1000 sync-rsync-verify-metamanifest: no sync-rsync-extra-opts: sync-rsync-verify-max-age: 24 sync-rsync-verify-jobs: 1 Installed sets: @steam ACCEPT_KEYWORDS="amd64 ~amd64" ACCEPT_LICENSE="* -@EULA" CBUILD="x86_64-pc-linux-gnu" CFLAGS="-O3 -pipe -ftree-vectorize -fno-stack-protector -march=znver1 -mtune=znver1 -mmmx -msse -msse2 -msse3 -mssse3 -msse4a -mcx16 -msahf -mmovbe -maes -msha -mpclmul -mpopcnt -mabm -mno-lwp -mfma -mbmi -mbmi2 -mavx -mavx2 -msse4.2 -msse4.1 -mlzcnt -mrdrnd -mf16c -mfsgsbase -mrdseed -mprfchw -madx -mfxsr -mxsave -mxsaveopt -mclflushopt -mxsavec -mxsaves -mmwaitx -mclzero --param l1-cache-size=32 --param l1-cache-line-size=64 --param l2-cache-size=512 -mno-3dnow -mno-fma4 -mno-xop -mno-sgx -mno-tbm -mno-rtm -mno-hle -mno-avx512f -mno-avx512er -mno-avx512cd -mno-avx512pf -mno-prefetchwt1 -mno-avx512dq -mno-avx512bw -mno-avx512vl -mno-avx512ifma -mno-avx512vbmi -mno-avx5124fmaps -mno-avx5124vnniw -mno-clwb -mno-pku -mno-rdpid" CHOST="x86_64-pc-linux-gnu" CONFIG_PROTECT="/etc /usr/share/gnupg/qualified.txt" CONFIG_PROTECT_MASK="/etc/ca-certificates.conf /etc/dconf /etc/env.d /etc/fonts/fonts.conf /etc/gconf /etc/gentoo-release /etc/revdep-rebuild /etc/sandbox.d /etc/terminfo /etc/texmf/language.dat.d /etc/texmf/language.def.d /etc/texmf/updmap.d /etc/texmf/web2c" CXXFLAGS="-O3 -pipe -ftree-vectorize -fno-stack-protector -march=znver1 -mtune=znver1 -mmmx -msse -msse2 -msse3 -mssse3 -msse4a -mcx16 -msahf -mmovbe -maes -msha -mpclmul -mpopcnt -mabm -mno-lwp -mfma -mbmi -mbmi2 -mavx -mavx2 -msse4.2 -msse4.1 -mlzcnt -mrdrnd -mf16c -mfsgsbase -mrdseed -mprfchw -madx -mfxsr -mxsave -mxsaveopt -mclflushopt -mxsavec -mxsaves -mmwaitx -mclzero --param l1-cache-size=32 --param l1-cache-line-size=64 --param l2-cache-size=512 -mno-3dnow -mno-fma4 -mno-xop -mno-sgx -mno-tbm -mno-rtm -mno-hle -mno-avx512f -mno-avx512er -mno-avx512cd -mno-avx512pf -mno-prefetchwt1 -mno-avx512dq -mno-avx512bw -mno-avx512vl -mno-avx512ifma -mno-avx512vbmi -mno-avx5124fmaps -mno-avx5124vnniw -mno-clwb -mno-pku -mno-rdpid" DISTDIR="/mnt/fsqb/distfiles" FCFLAGS="-O3 -pipe -ftree-vectorize -fno-stack-protector -march=znver1 -mtune=znver1 -mmmx -msse -msse2 -msse3 -mssse3 -msse4a -mcx16 -msahf -mmovbe -maes -msha -mpclmul -mpopcnt -mabm -mno-lwp -mfma -mbmi -mbmi2 -mavx -mavx2 -msse4.2 -msse4.1 -mlzcnt -mrdrnd -mf16c -mfsgsbase -mrdseed -mprfchw -madx -mfxsr -mxsave -mxsaveopt -mclflushopt -mxsavec -mxsaves -mmwaitx -mclzero --param l1-cache-size=32 --param l1-cache-line-size=64 --param l2-cache-size=512 -mno-3dnow -mno-fma4 -mno-xop -mno-sgx -mno-tbm -mno-rtm -mno-hle -mno-avx512f -mno-avx512er -mno-avx512cd -mno-avx512pf -mno-prefetchwt1 -mno-avx512dq -mno-avx512bw -mno-avx512vl -mno-avx512ifma -mno-avx512vbmi -mno-avx5124fmaps -mno-avx5124vnniw -mno-clwb -mno-pku -mno-rdpid" FEATURES="assume-digests binpkg-logs buildpkg config-protect-if-modified distlocks ebuild-locks fixlafiles merge-sync multilib-strict news parallel-fetch preserve-libs protect-owned sandbox sfperms strict unknown-features-warn unmerge-logs unmerge-orphans userfetch userpriv usersandbox usersync xattr" FFLAGS="-O3 -pipe -ftree-vectorize -fno-stack-protector -march=znver1 -mtune=znver1 -mmmx -msse -msse2 -msse3 -mssse3 -msse4a -mcx16 -msahf -mmovbe -maes -msha -mpclmul -mpopcnt -mabm -mno-lwp -mfma -mbmi -mbmi2 -mavx -mavx2 -msse4.2 -msse4.1 -mlzcnt -mrdrnd -mf16c -mfsgsbase -mrdseed -mprfchw -madx -mfxsr -mxsave -mxsaveopt -mclflushopt -mxsavec -mxsaves -mmwaitx -mclzero --param l1-cache-size=32 --param l1-cache-line-size=64 --param l2-cache-size=512 -mno-3dnow -mno-fma4 -mno-xop -mno-sgx -mno-tbm -mno-rtm -mno-hle -mno-avx512f -mno-avx512er -mno-avx512cd -mno-avx512pf -mno-prefetchwt1 -mno-avx512dq -mno-avx512bw -mno-avx512vl -mno-avx512ifma -mno-avx512vbmi -mno-avx5124fmaps -mno-avx5124vnniw -mno-clwb -mno-pku -mno-rdpid" GENTOO_MIRRORS="http://ftp-stud.hs-esslingen.de/pub/Mirrors/gentoo" LANG="de_DE.UTF-8" LDFLAGS="-Wl,-O1 -Wl,--as-needed" LINGUAS="de" MAKEOPTS="-j17 -l24" PKGDIR="/home/data/gentoo/pkg/zen" PORTAGE_CONFIGROOT="/" PORTAGE_RSYNC_OPTS="--recursive --links --safe-links --perms --times --omit-dir-times --compress --force --whole-file --delete --stats --human-readable --timeout=180 --exclude=/distfiles --exclude=/local --exclude=/packages --exclude=/.git" PORTAGE_TMPDIR="/var/tmp" USE="X a52 accessibility acl acpi alsa amd64 apache2 berkdb bzip2 cacert cairo caja cdda cgi cli crypt css cups cxx dbus dc1394 dri dv dvb dvd faac faad fat ffmpeg fftw flac fortran gdbm glamor gnome gnome-keyring gstreamer gtk gtk3 hal iconv id3tag ieee1394 ipv6 jpeg lame ldap libsamplerate libtirpc matroska mesa modules mp3 mpeg mplayer multilib ncurses nls nptl ntfs ogg opencl opengl openmp openssl opus pam pcre png pulseaudio python qt5 raw readline reiserfs seccomp slang speex spell ssl subtitles svg tcpd theora threads udev udf unicode vdpau vorbis vulkan wavpack win32codecs wma x264 xattr xml xvid zlib" ABI_X86="64" ALSA_CARDS="ali5451 als4000 atiixp atiixp-modem bt87x ca0106 cmipci emu10k1x ens1370 ens1371 es1938 es1968 fm801 hda-intel intel8x0 intel8x0m maestro3 trident usb-audio via82xx via82xx-modem ymfpci" APACHE2_MODULES="actions alias auth_basic authn_alias authn_anon authn_dbm authn_default authn_file authz_dbm authz_default authz_groupfile authz_host authz_owner authz_user autoindex cache cgi cgid dav dav_fs dav_lock deflate dir disk_cache env expires ext_filter file_cache filter headers include info log_config logio mem_cache mime mime_magic negotiation rewrite setenvif speling status unique_id userdir usertrack vhost_alias asis auth_digest authn_dbd cern_meta charset_lite dbd dumpio ident imagemap log_forensic proxy proxy_ajp proxy_balancer proxy_connect proxy_ftp proxy_http proxy_scgi reqtimeout substitute version unixd userdir usertrack version vhost_alias access_compat authn_core authz_core authz_dbd cache_disk lbmethod_bybusyness lbmethod_byrequests lbmethod_bytraffic lbmethod_heartbeat macro proxy_fcgi proxy_html proxy_wstunnel ratelimit remoteip slotmem_shm socache_shmcb cache_socache xml2enc" APACHE2_MPMS="worker" CALLIGRA_FEATURES="karbon plan sheets stage words" CAMERAS="*" COLLECTD_PLUGINS="df interface irq load memory rrdtool swap syslog" CPU_FLAGS_X86="aes avx avx2 f16c fma3 mmx mmxext pclmul popcnt sse sse2 sse3 sse4_1 sse4_2 sse4a ssse3" CURL_SSL="gnutls" ELIBC="glibc" GPSD_PROTOCOLS="ashtech aivdm earthmate evermore fv18 garmin garmintxt gpsclock isync itrax mtk3301 nmea ntrip navcom oceanserver oldstyle oncore rtcm104v2 rtcm104v3 sirf skytraq superstar2 timing tsip tripmate tnt ublox ubx" INPUT_DEVICES="libinput keyboard mouse" KERNEL="linux" L10N="de" LCD_DEVICES="bayrad cfontz cfontz633 glk hd44780 lb216 lcdm001 mtxorb ncurses text" LIBREOFFICE_EXTENSIONS="presenter-console presenter-minimizer" LLVM_TARGETS="AMDGPU BPF" OFFICE_IMPLEMENTATION="libreoffice" PHP_TARGETS="php5-6 php7-0" POSTGRES_TARGETS="postgres10" PYTHON_SINGLE_TARGET="python3_5" PYTHON_TARGETS="python2_7 python3_5" QEMU_SOFTMMU_TARGETS="x86_64 arm i386 mips mipsel" QEMU_USER_TARGETS="x86_64 arm armeb i386 mips mipsel" RUBY_TARGETS="ruby23" USERLAND="GNU" VIDEO_CARDS="radeon r600 amdgpu radeonsi" XTABLES_ADDONS="quota2 psd pknock lscan length2 ipv4options ipset ipp2p iface geoip fuzzy condition tee tarpit sysrq steal rawnat logmark ipmark dhcpmac delude chaos account" Unset: CC, CPPFLAGS, CTARGET, CXX, EMERGE_DEFAULT_OPTS, ENV_UNSET, INSTALL_MASK, LC_ALL, PORTAGE_BINHOST, PORTAGE_BUNZIP2_COMMAND, PORTAGE_COMPRESS, PORTAGE_COMPRESS_FLAGS, PORTAGE_RSYNC_EXTRA_OPTS
It looks like fcaps.eclass is doing something funky. The build system used to set the group correctly through a configure flag, but the cmake configuration doesn't have anything like that so we'll have to set that manually in src_install() or pkg_postinst().
commit aa818cc5a350514f7ff8fc60b8ca84878fdf3743 (HEAD -> master, origin/master, origin/HEAD) Author: Jeroen Roovers <jer@gentoo.org> Date: Sat May 19 01:16:02 2018 +0200 net-analyzer/wireshark: Drop USE=caps, set wireshark group (bug #654774). Package-Manager: Portage-2.3.38, Repoman-2.3.9 https://gitweb.gentoo.org/repo/gentoo.git/commit/net-analyzer/wireshark?id=aa818cc5a350514f7ff8fc60b8ca84878fdf3743 Please try =net-analyzer/wireshark-2.6.0-r2
-r2 looks good. $ ls -l /usr/bin/dumpcap -rwx--x--- 1 root wireshark 110336 May 23 05:57 /usr/bin/dumpcap $ /usr/bin/dumpcap Capturing on 'enp2s0' File: /tmp/wireshark_enp2s0_20180523062637_1NkBxN.pcapng Packets captured: 2993 Packets received/dropped on interface 'enp2s0': 2993/0 (pcap:0/dumpcap:0/flushed:0/ps_ifdrop:0) (100.0%) Thank you for resolving this bug.
(In reply to Philipp Psurek from comment #7)