severity 598330 normal retitle libvirtd uses iptables CHECKSUM feature not present in Squeeze/Sid thanks
Hi Philip, On Tue, Sep 28, 2010 at 10:31:29AM +0100, Philip Armstrong wrote: > Package: libvirt-bin > Version: 0.8.3-1 > Severity: grave > Tags: sid > Justification: renders package unusable > > Libvirtd is using a new iptables option which isn't implemented in the > sid version of iptables: > > # /usr/sbin/libvirtd > 10:21:24.093: error : virRunWithHook:857 : internal error '/sbin/iptables > --table mangle --delete POSTROUTING --out-interface virbr0 --protocol udp > --destination-port 68 --jump CHECKSUM --checksum-fill' exited with non-zero > status 2 and signal 0: iptables v1.4.9: unknown option `--checksum-fill' Try > `iptables -h' or 'iptables --help' for more information. > 10:21:24.111: error : virRunWithHook:857 : internal error '/sbin/iptables > --table filter --delete INPUT --in-interface virbr0 --protocol udp > --destination-port 69 --jump ACCEPT' exited with non-zero status 1 and signal > 0: iptables: Bad rule (does a matching rule exist in that chain?). > 10:21:24.142: error : virRunWithHook:857 : internal error '/sbin/iptables > --table mangle --insert POSTROUTING --out-interface virbr0 --protocol udp > --destination-port 68 --jump CHECKSUM --checksum-fill' exited with non-zero > status 2 and signal 0: iptables v1.4.9: unknown option `--checksum-fill' Try > `iptables -h' or 'iptables --help' for more information. > 10:21:24.142: warning : networkAddIptablesRules:850 : Could not add rule to > fixup DHCP response checksums on network 'default'. > 10:21:24.142: warning : networkAddIptablesRules:851 : May need to update > iptables package & kernel to support CHECKSUM rule. > 10:21:54.514: warning : qemudStartup:1832 : Unable to create cgroup for > driver: No such device or address > 10:21:54.680: warning : lxcStartup:1895 : Unable to create cgroup for driver: > No such device or address > 10:21:58.600: warning : qemudDispatchSignalEvent:396 : Shutting down on > signal 2 > > There's some more information in Gentoo bug 334921: > http://bugs.gentoo.org/334921 > > virtd is unusable at the current time until this bug is fixed, either > by patched out the relevant code in libvirtd (as detailed in that > Gentoo bug) or upgrading the version of iptables in sid; as it > currently stands at the moment, libvirtd has a hard dependency on the > later version of iptables. Thanks for your report. Your problem with libvirtd has other reasons though - it's working fine without the CHECKSUM feature. Please file a different bug report for that and have a look at: http://wiki.debian.org/libvirt#Bugreports.2BAC8-Debugging Cheers, -- Guido -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
