bump the version and modify this line from: for i in ip_set{,_bitmap_{ip{,mac},port},_hash_{ip{,port{,ip,net}},net,net{port,iface}},_list_set}; do to: for i in ip_set{,_bitmap_{ip{,mac},port},_hash_{ip{,port{,ip,net}},netportnet,net,net{port,iface,net}},_list_set}; do In order to support the new ipset types (hash:net,net and hash:net,port,net)
I suppose this is also a viable (shorter) alternative: for i in ip_set{,_bitmap_{ip{,mac},port},_hash_{ip{,port{,ip,net}},net{,port,iface,net,portnet}},_list_set}; do
Created attachment 360652 [details] ipset-6.20 ebuild (flagged as testing) This is an ebuild based on ipset-6.19, adds support for the new ipset modules and adds checking for CONFIG_NET_NS in the kernel which is now required. Depends on a patch to fix a configure failure when building without kernel modules (attached to this post)
Created attachment 360654 [details, diff] patch to fix configure failure when --with-kmod=no (i.e. USE flag modules unset)
ipset 6.20.1 has been released with the configure failure patch already applied. The ebuild attached to this bug should thus be bumped to 6.20.1 and the epatch directive can of course be removed.
It does build here with no NET_NS in use, but bumped anyway.
