emerge iptables fails (always) while trying to apply the grsecurity patch. I have tried switching between iptables verision 1.2.8 and 1.2.9 in the hope to be able to merge a working version of it, however failed. It supplied me with some information to pass on for a report on this: ***** 01_all_grsecurity.patch.bz2 ***** ======================================= PIPE_COMMAND: bzip2 -dc /usr/portage/net-firewall/iptables/files/1.2.8-files/01 _all_grsecurity.patch.bz2 > /var/tmp/portage/iptables-1.2.8-r1/temp/13505.patch PATCH COMMAND: patch -g0 -p0 < /var/tmp/portage/iptables-1.2.8-r1/temp/13505.pa tch ======================================= can't find file to patch at input line 4 Perhaps you used the wrong -p or --strip option? The text leading up to this was: -------------------------- |diff -urN iptables-1.2.7a/extensions/Makefile iptables-1.2.7a-new/extensions/Ma kefile |--- iptables-1.2.8/extensions/Makefile 2002-08-09 03:44:10.000000000 -0400 |+++ iptables-1.2.8-new/extensions/Makefile 2002-09-09 12:52:50.000000000 -0 400 -------------------------- No file to patch. Skipping patch. 1 out of 1 hunk ignored patching file iptables-1.2.8/extensions/libipt_stealth.c ======================================= PIPE_COMMAND: bzip2 -dc /usr/portage/net-firewall/iptables/files/1.2.8-files/01 _all_grsecurity.patch.bz2 > /var/tmp/portage/iptables-1.2.8-r1/temp/13505.patch PATCH COMMAND: patch -g0 -p1 < /var/tmp/portage/iptables-1.2.8-r1/temp/13505.pa tch ======================================= can't find file to patch at input line 4 Perhaps you used the wrong -p or --strip option? The text leading up to this was: -------------------------- |diff -urN iptables-1.2.7a/extensions/Makefile iptables-1.2.7a-new/extensions/Ma kefile |--- iptables-1.2.8/extensions/Makefile 2002-08-09 03:44:10.000000000 -0400 |+++ iptables-1.2.8-new/extensions/Makefile 2002-09-09 12:52:50.000000000 -0 400 -------------------------- No file to patch. Skipping patch. 1 out of 1 hunk ignored patching file extensions/libipt_stealth.c ======================================= PIPE_COMMAND: bzip2 -dc /usr/portage/net-firewall/iptables/files/1.2.8-files/01 _all_grsecurity.patch.bz2 > /var/tmp/portage/iptables-1.2.8-r1/temp/13505.patch PATCH COMMAND: patch -g0 -p2 < /var/tmp/portage/iptables-1.2.8-r1/temp/13505.pa tch ======================================= can't find file to patch at input line 4 Perhaps you used the wrong -p or --strip option? The text leading up to this was: -------------------------- |diff -urN iptables-1.2.7a/extensions/Makefile iptables-1.2.7a-new/extensions/Ma kefile |--- iptables-1.2.8/extensions/Makefile 2002-08-09 03:44:10.000000000 -0400 |+++ iptables-1.2.8-new/extensions/Makefile 2002-09-09 12:52:50.000000000 -0 400 -------------------------- No file to patch. Skipping patch. 1 out of 1 hunk ignored patching file libipt_stealth.c ======================================= PIPE_COMMAND: bzip2 -dc /usr/portage/net-firewall/iptables/files/1.2.8-files/01 _all_grsecurity.patch.bz2 > /var/tmp/portage/iptables-1.2.8-r1/temp/13505.patch PATCH COMMAND: patch -g0 -p3 < /var/tmp/portage/iptables-1.2.8-r1/temp/13505.pa tch ======================================= missing header for unified diff at line 4 of patch can't find file to patch at input line 4 Perhaps you used the wrong -p or --strip option? The text leading up to this was: -------------------------- |diff -urN iptables-1.2.7a/extensions/Makefile iptables-1.2.7a-new/extensions/Ma kefile |--- iptables-1.2.8/extensions/Makefile 2002-08-09 03:44:10.000000000 -0400 |+++ iptables-1.2.8-new/extensions/Makefile 2002-09-09 12:52:50.000000000 -0 400 -------------------------- No file to patch. Skipping patch. 1 out of 1 hunk ignored missing header for unified diff at line 15 of patch can't find file to patch at input line 15 Perhaps you used the wrong -p or --strip option? The text leading up to this was: -------------------------- |--- iptables-1.2.8/extensions/libipt_stealth.c 1969-12-31 19:00:00.000000000 -0 500 |+++ iptables-1.2.8-new/extensions/libipt_stealth.c 2002-09-10 16:36:24.0000 00000 -0400 -------------------------- No file to patch. Skipping patch. 1 out of 1 hunk ignored ======================================= PIPE_COMMAND: bzip2 -dc /usr/portage/net-firewall/iptables/files/1.2.8-files/01 _all_grsecurity.patch.bz2 > /var/tmp/portage/iptables-1.2.8-r1/temp/13505.patch PATCH COMMAND: patch -g0 -p4 < /var/tmp/portage/iptables-1.2.8-r1/temp/13505.pa tch ======================================= missing header for unified diff at line 4 of patch can't find file to patch at input line 4 Perhaps you used the wrong -p or --strip option? The text leading up to this was: -------------------------- |diff -urN iptables-1.2.7a/extensions/Makefile iptables-1.2.7a-new/extensions/Ma kefile |--- iptables-1.2.8/extensions/Makefile 2002-08-09 03:44:10.000000000 -0400 |+++ iptables-1.2.8-new/extensions/Makefile 2002-09-09 12:52:50.000000000 -0 400 -------------------------- No file to patch. Skipping patch. 1 out of 1 hunk ignored missing header for unified diff at line 15 of patch can't find file to patch at input line 15 Perhaps you used the wrong -p or --strip option? The text leading up to this was: -------------------------- |--- iptables-1.2.8/extensions/libipt_stealth.c 1969-12-31 19:00:00.000000000 -0 500 |+++ iptables-1.2.8-new/extensions/libipt_stealth.c 2002-09-10 16:36:24.0000 00000 -0400 -------------------------- No file to patch. Skipping patch. 1 out of 1 hunk ignored Reproducible: Always Steps to Reproduce: 1. Be sure that the kernel is 2.4.22-gentoo-r2 is running (with grsecurity features disabled) 2. 'emerge iptables' 3. Actual Results: iptables was not built. Expected Results: iptables should be built. Portage 2.0.49-r18 (default-x86-1.4, gcc-3.3.2, glibc-2.3.3_pre20031222-r0, 2.4. 22-gentoo-r2) ================================================================= System uname: 2.4.22-gentoo-r2 i686 AMD Athlon(tm) XP 2200+ Gentoo Base System version 1.4.3.12 ACCEPT_KEYWORDS="x86 ~x86" AUTOCLEAN="yes" CFLAGS="-O3 -mcpu=athlon-xp -funroll-loops -pipe" CHOST="i686-pc-linux-gnu" COMPILER="gcc3" CONFIG_PROTECT="/etc /usr/X11R6/lib/X11/xkb /usr/kde/2/share/config /usr/kde/3.1 /share/config /usr/kde/3/share/config /usr/share/config /var/qmail/control" CONFIG_PROTECT_MASK="/etc/gconf /etc/env.d" CXXFLAGS="-O3 -mcpu=athlon-xp -funroll-loops -pipe" DISTDIR="/usr/portage/distfiles" FEATURES="autoaddcvs ccache sandbox" GENTOO_MIRRORS="http://mirrors.sec.informatik.tu-darmstadt.de/gentoo ftp://sunsi te.informatik.rwth-aachen.de/pub/Linux/gentoo http://ftp.uni-erlangen. de/pub/mir rors/gentoo ftp://ftp.uni-erlangen.de/pub/mirrors/gentoo http://gentoo.inode.at/ " MAKEOPTS="-j2" PKGDIR="/usr/portage/packages" PORTAGE_TMPDIR="/var/tmp" PORTDIR="/usr/portage" PORTDIR_OVERLAY="" SYNC="rsync://rsync.gentoo.org/gentoo-portage" USE="3dnow X alsa apm avi berkdb cdr crypt cups dga dvd dvdr emu10k1 encode foom aticdb gdbm gif gnome gpm gtk gtk2 gtkhtml imlib joystick jpeg kde libg++ libwww mad matroska mbox mikmod mmx motif mpeg ncurses nls oggvorbis opengl oss pam pd a pdflib perl png python qt quicktime radeon readline sdl slang spell sqlite ssl svga tcltk tcpd truetype x86 xface xml xml2 xmms xv zlib"
Does this problem have anything to do with grsec really? From my understanding it's a bad version of tar that ignores /./ Please try to update your "tar" and try again.
I suffered from the exact same problem. After upgrading app-arch/tar-1.13.92 to 1.13.92-r1, I was able to successfully upgrade iptables to version 1.2.9.
I confirm, updating to tar-1.13.92-r1 has fixed the problem. Thanks everyone!
*** Bug 41168 has been marked as a duplicate of this bug. ***