Facing this issue while running the tailsofbits OSQuery extension in MAC E0408 182608.503185 189222912 registry_factory.cpp:179] table registry HostDenylist plugin caused exception: Failed to create the firewall object Error: Failed to create the firewall object The code snapshot of trailsofbuts fwctl code IFirewall& GetFirewall() { static bool conf_dir_init_status = InitializeConfigurationFolder(); if (!conf_dir_init_status) { throw std::runtime_error( "Failed to initialize the firewall configuration folder"); } static std::unique_ptr<IFirewall> firewall; static IFirewall::Status firewall_init_status = trailofbits::CreateFirewallObject(firewall); if (!firewall_init_status.success()) { throw std::runtime_error("Failed to create the firewall object"); } return *firewall.get(); }

Are you running osquery as root?

Yes @Mike Myers, running in following manner sudo ./osqueryi --allow_unsafe --extensions_default_index=false --disable_extensions=false --extension ../external/extension_trailofbits/trailofbits_osquery_extensions.ext

Ok, I see this is a known issue we haven't solved yet https://github.com/trailofbits/osquery-extensions/issues/65

Thank you and will let you after rebuilding it.