LINUX.ORG.RU
решено ФорумAdmin

Установка ipset на gentoo

 ,


0

1

Здравствуйте уважаемые. Столкнулся с такой проблемой при установке ipset, 

>>> Verifying ebuild manifests

>>> Emerging (1 of 1) net-firewall/ipset-6.17::gentoo
 * ipset-6.17.tar.bz2 SHA256 SHA512 WHIRLPOOL size ;-) ...                                                                                              [ ok ]
 * Determining the location of the kernel source code
 * Found kernel source directory:
 *     /usr/src/linux
 * Found kernel object directory:
 *     /lib/modules/4.0.9-gentoo/build
 * Found sources for kernel version:
 *     4.0.9-gentoo
 * Modular kernel detected. Gonna build kernel modules...
 * Checking for suitable kernel configuration options...                                                                                                [ ok ]
>>> Unpacking source...
>>> Unpacking ipset-6.17.tar.bz2 to /var/tmp/portage/net-firewall/ipset-6.17/work
>>> Source unpacked in /var/tmp/portage/net-firewall/ipset-6.17/work
>>> Preparing source in /var/tmp/portage/net-firewall/ipset-6.17/work/ipset-6.17 ...
 * Sorry, but you have to patch kernel sources with the following patch:
 *  # cd /usr/src/linux
 *  # patch -i /var/tmp/portage/net-firewall/ipset-6.17/work/ipset-6.17/netlink.patch -p1
 * You should recompile and run new kernel to avoid runtime errors.
 * ERROR: net-firewall/ipset-6.17::gentoo failed (prepare phase):
 *   Unpatched kernel
 * 
 * Call stack:
 *     ebuild.sh, line   93:  Called src_prepare
 *   environment, line 3737:  Called check_header_patch
 *   environment, line  810:  Called die
 * The specific snippet of code:
 *           die "Unpatched kernel";
 * 
 * If you need support, post the output of `emerge --info '=net-firewall/ipset-6.17::gentoo'`,
 * the complete build log and the output of `emerge -pqv '=net-firewall/ipset-6.17::gentoo'`.
 * The complete build log is located at '/var/tmp/portage/net-firewall/ipset-6.17/temp/build.log'.
 * The ebuild environment file is located at '/var/tmp/portage/net-firewall/ipset-6.17/temp/environment'.
 * Working directory: '/var/tmp/portage/net-firewall/ipset-6.17/work/ipset-6.17'
 * S: '/var/tmp/portage/net-firewall/ipset-6.17/work/ipset-6.17'

>>> Failed to emerge net-firewall/ipset-6.17, Log file:

Устанавливаю ipset версии 6.17 ядро 4.0.9, без флага «modules» все прекрасно собирается, с modules нет. в ядре ipset выпилен. Прошу помощи разобраться в данной проблеме и установить его с этим флагом.


 * Sorry, but you have to patch kernel sources with the following patch:
 *  # cd /usr/src/linux
 *  # patch -i /var/tmp/portage/net-firewall/ipset-6.17/work/ipset-6.17/netlink.patch -p1
 * You should recompile and run new kernel to avoid runtime errors.

что непонятного?

daemonpnz ★★★★★
()
Ответ на: комментарий от daemonpnz

servant linux # patch -i /var/tmp/portage/net-firewall/ipset-6.17/work/ipset-6.17/netlink.patch -p1 patching file include/linux/netfilter/nfnetlink.h Hunk #1 FAILED at 47. 1 out of 1 hunk FAILED — saving rejects to file include/linux/netfilter/nfnetlink.h.rej patching file include/net/netlink.h Hunk #1 FAILED at 856. 1 out of 1 hunk FAILED — saving rejects to file include/net/netlink.h.rej

ceroz
() автор топика
Ответ на: комментарий от daemonpnz

извините 

servant linux # patch -i /var/tmp/portage/net-firewall/ipset-6.17/work/ipset-6.17/netlink.patch -p1
patching file include/linux/netfilter/nfnetlink.h
Hunk #1 FAILED at 47.
1 out of 1 hunk FAILED -- saving rejects to file include/linux/netfilter/nfnetlink.h.rej
patching file include/net/netlink.h
Hunk #1 FAILED at 856.
1 out of 1 hunk FAILED -- saving rejects to file include/net/netlink.h.rej

ceroz
() автор топика

Попробуй собрать ядро с NETFILTER_NETLINK=y. И что мешает включить ipset в ядре?

Deleted
()
Ответ на: комментарий от daemonpnz

а это 6.24 такое упорола 

* ipset-6.24.tar.bz2 SHA256 SHA512 WHIRLPOOL size ;-) ...                                                                                              [ ok ]
 * Determining the location of the kernel source code
 * Found kernel source directory:
 *     /usr/src/linux
 * Found kernel object directory:
 *     /lib/modules/4.0.9-gentoo/build
 * Found sources for kernel version:
 *     4.0.9-gentoo
 * There is IP{,_NF}_SET or NETFILTER_XT_SET support in your kernel.
 * Please either build ipset with modules USE flag disabled
 * or rebuild kernel without IP_SET support and make sure
 * there is NO kernel ip_set* modules in /lib/modules/<your_kernel>/... .
 * ERROR: net-firewall/ipset-6.24::gentoo failed (setup phase):
 *   USE=modules and in-kernel ipset support detected.
 * 
 * Call stack:
 *           ebuild.sh, line  93:  Called pkg_setup
 *   ipset-6.24.ebuild, line  51:  Called die
 * The specific snippet of code:
 *   				die "USE=modules and in-kernel ipset support detected."
 * 
 * If you need support, post the output of `emerge --info '=net-firewall/ipset-6.24::gentoo'`,
 * the complete build log and the output of `emerge -pqv '=net-firewall/ipset-6.24::gentoo'`.
 * The complete build log is located at '/var/tmp/portage/net-firewall/ipset-6.24/temp/build.log'.
 * The ebuild environment file is located at '/var/tmp/portage/net-firewall/ipset-6.24/temp/die.env'.
 * Working directory: '/usr/lib/python3.4/site-packages'
 * S: '/var/tmp/portage/net-firewall/ipset-6.24/work/ipset-6.24'

>>> Failed to emerge net-firewall/ipset-6.24, Log file:

ceroz
() автор топика
Ответ на: комментарий от Deleted 
servant ipset # zgrep NETFILTER_NETLINK /proc/config.gz
gzip: /proc/config.gz: No such file or directory
servant ipset # grep NETFILTER_NETLINK /usr/src/linux/.config
CONFIG_NETFILTER_NETLINK=y
CONFIG_NETFILTER_NETLINK_LOG=y
ceroz
() автор топика
Ответ на: комментарий от daemonpnz

Спасибо за совет. Действительно так и было. Включил в ядре поддержку ipset выключил флаг modules.

ceroz
() автор топика
Вы не можете добавлять комментарии в эту тему. Тема перемещена в архив.
Admin