Created attachment 292969 [details, diff] patch with updated error message If setting file capabilities fails, the fcaps() function included in the wireshark ebuild prompts the user to enable SECURITY_FILE_CAPABILITIES in the kernel config. However, the SECURITY_FILE_CAPABILITIES config option was removed in 2.6.33_rc1 (it's now hardcoded to be enabled), and so for users running a more recent kernel versions, the error message is likely to result in confusion. I have updated the fcaps() error message in gnome-base/gnome-keyring, and believe that the same modifications also ought to be made in the other copies of fcaps() in portage. A proposed patch for the wireshark ebuild is attached.
By the way, the reason for using uname -r instead of kernel_is from linux-info.eclass is that kernel_is checks for the build-time kernel version (i.e. the version of /usr/src/linux), while the error message needs to refer to the runtime kernel version at the time of pkg_postinst().
Thank you Alexandre. I just updated warning and decided to avoid uname and other stuff. I think Gentoo users are smart enough to check kernel version and decide by themselves :)