[gentoo-commits] repo/gentoo:master commit in: app-emulation/libvirt/

Sun, 07 Apr 2019 19:53:26 -0700 

commit:     3baa88f281263a16d7143d866dd1f8e5e26bbba0
Author:     Michal Privoznik <mprivozn <AT> redhat <DOT> com>
AuthorDate: Mon Apr  8 01:08:54 2019 +0000
Commit:     Matthias Maier <tamiko <AT> gentoo <DOT> org>
CommitDate: Mon Apr  8 02:29:38 2019 +0000
URL:        https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=3baa88f2

app-emulation/libvirt: Check for more kernel configs for virtual net

After 7431b3eb9a05068e4b Libvirt starts to create chains to
insert rules into instead of placing them right at the top level
chains. These private chains are created on daemon startup and
the referenced commit made all 6 tables required (combination of
default 3 tables: nat, filter and mangle for both IPv4 and IPv6).
This was later refined in 686803a1a2e1e06, but it still makes
sense for ebuild to check for all tables being enabled in the
kernel because both IPv4 and IPv6 are used widely.

Package-Manager: Portage-2.3.62, Repoman-2.3.12
Closes: https://bugs.gentoo.org/681010
Signed-off-by: Michal Privoznik <mprivozn <AT> redhat.com>
Signed-off-by: Matthias Maier <tamiko <AT> gentoo.org>

 app-emulation/libvirt/libvirt-5.0.0-r1.ebuild | 9 ++++++++-
 app-emulation/libvirt/libvirt-5.1.0.ebuild    | 9 ++++++++-
 app-emulation/libvirt/libvirt-9999.ebuild     | 9 ++++++++-
 3 files changed, 24 insertions(+), 3 deletions(-)

diff --git a/app-emulation/libvirt/libvirt-5.0.0-r1.ebuild 
b/app-emulation/libvirt/libvirt-5.0.0-r1.ebuild
index dd115c7a957..be886fc4954 100644
--- a/app-emulation/libvirt/libvirt-5.0.0-r1.ebuild
+++ b/app-emulation/libvirt/libvirt-5.0.0-r1.ebuild
@@ -187,7 +187,14 @@ pkg_setup() {
                ~NETFILTER_ADVANCED
                ~NETFILTER_XT_CONNMARK
                ~NETFILTER_XT_MARK
-               ~NETFILTER_XT_TARGET_CHECKSUM"
+               ~NETFILTER_XT_TARGET_CHECKSUM
+               ~IP_NF_FILTER
+               ~IP_NF_MANGLE
+               ~IP_NF_NAT
+               ~IP_NF_TARGET_MASQUERADE
+               ~IP6_NF_FILTER
+               ~IP6_NF_MANGLE
+               ~IP6_NF_NAT"
        # Bandwidth Limiting Support
        use virt-network && CONFIG_CHECK+="
                ~BRIDGE_EBT_T_NAT

diff --git a/app-emulation/libvirt/libvirt-5.1.0.ebuild 
b/app-emulation/libvirt/libvirt-5.1.0.ebuild
index d0b9652fb37..f1b5ef7bfb6 100644
--- a/app-emulation/libvirt/libvirt-5.1.0.ebuild
+++ b/app-emulation/libvirt/libvirt-5.1.0.ebuild
@@ -187,7 +187,14 @@ pkg_setup() {
                ~NETFILTER_ADVANCED
                ~NETFILTER_XT_CONNMARK
                ~NETFILTER_XT_MARK
-               ~NETFILTER_XT_TARGET_CHECKSUM"
+               ~NETFILTER_XT_TARGET_CHECKSUM
+               ~IP_NF_FILTER
+               ~IP_NF_MANGLE
+               ~IP_NF_NAT
+               ~IP_NF_TARGET_MASQUERADE
+               ~IP6_NF_FILTER
+               ~IP6_NF_MANGLE
+               ~IP6_NF_NAT"
        # Bandwidth Limiting Support
        use virt-network && CONFIG_CHECK+="
                ~BRIDGE_EBT_T_NAT

diff --git a/app-emulation/libvirt/libvirt-9999.ebuild 
b/app-emulation/libvirt/libvirt-9999.ebuild
index 39626cb3fae..71ce26a41fb 100644
--- a/app-emulation/libvirt/libvirt-9999.ebuild
+++ b/app-emulation/libvirt/libvirt-9999.ebuild
@@ -187,7 +187,14 @@ pkg_setup() {
                ~NETFILTER_ADVANCED
                ~NETFILTER_XT_CONNMARK
                ~NETFILTER_XT_MARK
-               ~NETFILTER_XT_TARGET_CHECKSUM"
+               ~NETFILTER_XT_TARGET_CHECKSUM
+               ~IP_NF_FILTER
+               ~IP_NF_MANGLE
+               ~IP_NF_NAT
+               ~IP_NF_TARGET_MASQUERADE
+               ~IP6_NF_FILTER
+               ~IP6_NF_MANGLE
+               ~IP6_NF_NAT"
        # Bandwidth Limiting Support
        use virt-network && CONFIG_CHECK+="
                ~BRIDGE_EBT_T_NAT

Reply via email to