Created attachment 297987 [details] ebuild based on xtables-addons-1.39.ebuild Version 1.41 of net-firewall/xtables-addons is needed for campability to the new Linux 3.2. Dependecies: - net-firewall/iptables must be >= 1.4.5 - kernel should be >= 2.6.32
The 1.41 ebuild works on a 3.1.10-r1 & 3.2.1-r2 as well as a hardened 3.2.2-r1
On hardened-3.2.2-r1 ipset doesn;t compile for me: CC [M] /var/tmp/portage/net-firewall/xtables-addons-1.41/work/xtables-addons-1.41/extensions/ipset-6/pfxlen.o /var/tmp/portage/net-firewall/xtables-addons-1.41/work/xtables-addons-1.41/extensions/ipset-6/pfxlen.c:148:1: warning: data definition has no type or storage class /var/tmp/portage/net-firewall/xtables-addons-1.41/work/xtables-addons-1.41/extensions/ipset-6/pfxlen.c:148:1: warning: type defaults to ‘int’ in declaration of ‘EXPORT_SYMBOL_GPL’ /var/tmp/portage/net-firewall/xtables-addons-1.41/work/xtables-addons-1.41/extensions/ipset-6/pfxlen.c:148:1: warning: parameter names (without types) in function declaration /var/tmp/portage/net-firewall/xtables-addons-1.41/work/xtables-addons-1.41/extensions/ipset-6/pfxlen.c:291:1: warning: data definition has no type or storage class /var/tmp/portage/net-firewall/xtables-addons-1.41/work/xtables-addons-1.41/extensions/ipset-6/pfxlen.c:291:1: warning: type defaults to ‘int’ in declaration of ‘EXPORT_SYMBOL_GPL’ /var/tmp/portage/net-firewall/xtables-addons-1.41/work/xtables-addons-1.41/extensions/ipset-6/pfxlen.c:291:1: warning: parameter names (without types) in function declaration /var/tmp/portage/net-firewall/xtables-addons-1.41/work/xtables-addons-1.41/extensions/ipset-6/pfxlen.c:312:1: warning: data definition has no type or storage class /var/tmp/portage/net-firewall/xtables-addons-1.41/work/xtables-addons-1.41/extensions/ipset-6/pfxlen.c:312:1: warning: type defaults to ‘int’ in declaration of ‘EXPORT_SYMBOL_GPL’ /var/tmp/portage/net-firewall/xtables-addons-1.41/work/xtables-addons-1.41/extensions/ipset-6/pfxlen.c:312:1: warning: parameter names (without types) in function declaration CC [M] /var/tmp/portage/net-firewall/xtables-addons-1.41/work/xtables-addons-1.41/extensions/ipset-6/ip_set_bitmap_ip.o CC [M] /var/tmp/portage/net-firewall/xtables-addons-1.41/work/xtables-addons-1.41/extensions/ipset-6/ip_set_bitmap_ipmac.o /var/tmp/portage/net-firewall/xtables-addons-1.41/work/xtables-addons-1.41/extensions/ipset-6/ip_set_getport.c:110:1: warning: data definition has no type or storage class /var/tmp/portage/net-firewall/xtables-addons-1.41/work/xtables-addons-1.41/extensions/ipset-6/ip_set_getport.c:110:1: warning: type defaults to ‘int’ in declaration of ‘EXPORT_SYMBOL_GPL’ /var/tmp/portage/net-firewall/xtables-addons-1.41/work/xtables-addons-1.41/extensions/ipset-6/ip_set_getport.c:110:1: warning: parameter names (without types) in function declaration /var/tmp/portage/net-firewall/xtables-addons-1.41/work/xtables-addons-1.41/extensions/ipset-6/ip_set_getport.c: In function ‘ip_set_get_ip6_port’: /var/tmp/portage/net-firewall/xtables-addons-1.41/work/xtables-addons-1.41/extensions/ipset-6/ip_set_getport.c:125:48: error: too many arguments to function ‘ipv6_skip_exthdr’ include/net/ipv6.h:556:12: note: declared here /var/tmp/portage/net-firewall/xtables-addons-1.41/work/xtables-addons-1.41/extensions/ipset-6/ip_set_getport.c: At top level: /var/tmp/portage/net-firewall/xtables-addons-1.41/work/xtables-addons-1.41/extensions/ipset-6/ip_set_getport.c:132:1: warning: data definition has no type or storage class /var/tmp/portage/net-firewall/xtables-addons-1.41/work/xtables-addons-1.41/extensions/ipset-6/ip_set_getport.c:132:1: warning: type defaults to ‘int’ in declaration of ‘EXPORT_SYMBOL_GPL’ /var/tmp/portage/net-firewall/xtables-addons-1.41/work/xtables-addons-1.41/extensions/ipset-6/ip_set_getport.c:132:1: warning: parameter names (without types) in function declaration /var/tmp/portage/net-firewall/xtables-addons-1.41/work/xtables-addons-1.41/extensions/ipset-6/ip_set_getport.c:161:1: warning: data definition has no type or storage class /var/tmp/portage/net-firewall/xtables-addons-1.41/work/xtables-addons-1.41/extensions/ipset-6/ip_set_getport.c:161:1: warning: type defaults to ‘int’ in declaration of ‘EXPORT_SYMBOL_GPL’ /var/tmp/portage/net-firewall/xtables-addons-1.41/work/xtables-addons-1.41/extensions/ipset-6/ip_set_getport.c:161:1: warning: parameter names (without types) in function declaration make[3]: *** [/var/tmp/portage/net-firewall/xtables-addons-1.41/work/xtables-addons-1.41/extensions/ipset-6/ip_set_getport.o] Error 1 make[3]: *** Waiting for unfinished jobs.... make[2]: *** [/var/tmp/portage/net-firewall/xtables-addons-1.41/work/xtables-addons-1.41/extensions/ipset-6] Error 2 make[1]: *** [_module_/var/tmp/portage/net-firewall/xtables-addons-1.41/work/xtables-addons-1.41/extensions] Error 2 make[1]: Leaving directory `/usr/src/linux-3.2.2-hardened-r1' make: *** [modules] Error 2
I disabled both ipset flags as they are part of the kernel now.
Works for me - amd64 and ck-sources-3.2.1
I'm getting warning with xtables-addons-1.41: WARNING: //lib/modules/3.2.9-hardened/xtables_addons/xt_SYSRQ.ko needs unknown symbol ipv6_find_hdr
*** Bug 403749 has been marked as a duplicate of this bug. ***
Comment on attachment 297987 [details] ebuild based on xtables-addons-1.39.ebuild --- xtables-addons-1.39.ebuild 2011-10-02 10:31:22.000000000 +0200 +++ - 2012-03-08 03:34:23.545711152 +0100 @@ -20,7 +20,7 @@ IUSE="${IUSE} xtables_addons_${mod}" done -DEPEND=">=net-firewall/iptables-1.4.3" +DEPEND=">=net-firewall/iptables-1.4.5" RDEPEND="${DEPEND} xtables_addons_ipset6? ( @@ -34,7 +34,7 @@ SKIP_MODULES="" -# XA_kernel_check tee "2 6 26" +# XA_kernel_check tee "2 6 32" XA_check4internal_module() { local mod=${1} local version=${2}
*** Bug 407343 has been marked as a duplicate of this bug. ***
On hardend-3.3.0 ipset compiles without problem for me.
xtables-addons-1.42 is out.
Created attachment 314045 [details, diff] ebuild for xtables-addons 1.42 - diff against 1.39 ebuild xtables-addons ebuild for 1.42 - compiles successfully against 3.2.12
*** Bug 420161 has been marked as a duplicate of this bug. ***
I think, must also need to mask <net-firewall/ipset-6.10 -DEPEND=">=net-firewall/iptables-1.4.3" +DEPEND=">=net-firewall/iptables-1.4.5 +!<net-firewall/ipset-6.10" becouse: v1.41 (2012-01-04) ================== Changes: - Deactivate build of ipset-genl by default. I think the original ipset package can now take over, given there are a handful of kernels (2.6.39 onwards) that do not need patching. ... v1.40 (2011-11-30) ================== .... Changes: ... - update to ipset 6.10
Created attachment 318070 [details] xtables-addons-1.43.ebuild new version xtables-addons.
net-firewall/xtables-1.45 available Ok, version 1.45 is a 0-day version bump request (today), but still only version 1.39 is in the tree. A short little bump, please. :)
https://code.google.com/p/rion-overlay/source/browse/net-firewall/xtables-addons/xtables-addons-1.44.ebuild
Created attachment 319910 [details] The ebuild for the latest 1.45 version
This is still languishing, perhaps a new maintainer for xtables-addons should be sought.
+*xtables-addons-1.45 (27 Dec 2012) + + 27 Dec 2012; Sergey Popov <pinkbyte@gentoo.org> +xtables-addons-1.45.ebuild: + Version bump, thanks to Andreis Vinogradovs
Created attachment 333466 [details] net-firewall/xtables-addons-1.47.1.ebuild
Created attachment 333468 [details] net-firewall/xtables-addons-2.0.ebuild Work in kernel >=3.7
In rion overlay - use layman -a rion. Pva, please add permission to bump this ebuild over proxy-commit ( pinkbyte or maksbotan )
+ 29 Dec 2012; Sergey Popov <pinkbyte@gentoo.org> + +xtables-addons-1.47.1.ebuild: + Version bump, thanks to mike <mishanq AT gmail.com>, wrt bug #397749
+ 29 Dec 2012; Sergey Popov <pinkbyte@gentoo.org> +xtables-addons-2.1.ebuild: + Version bump, wrt bug #397749, thanks to Andreis Vinogradovs
You should slot the package or add a check for the kernelversion. The reason for this is, that xtables-addons 2.x requires kernel >=3.7 and won't compile/work on kernel <3.7 as xtables-addons 1.x works and compiles up to kernel 3.6. So depending on the kernel used the ebuild should use 1.x or 2.x
(In reply to comment #25) > You should slot the package or add a check for the kernelversion. xtables-addons-2.1 already has check for a kernel versions - it requires at least 3.7 kernel.
