After the upgrade to app-emulation/libvirt-5.1.0, I can no longer create NAT and isolated virtual networks. The existing default network fails to start. The messages in the log: мар 20 16:14:00 PF16W6Y2 systemd-udevd[28236]: Could not generate persistent MAC address for virbr0: No such file or directory мар 20 16:14:00 PF16W6Y2 NetworkManager[2476]: <info> [1553087640.3583] manager: (virbr0): new Bridge device (/org/freedesktop/NetworkManager/Devices/9) мар 20 16:14:00 PF16W6Y2 NetworkManager[2476]: <info> [1553087640.3606] manager: (virbr0-nic): new Tun device (/org/freedesktop/NetworkManager/Devices/10) мар 20 16:14:00 PF16W6Y2 libvirtd[2647]: internal error: Failed to apply firewall rules /sbin/iptables -w --table filter --insert LIBVIRT_INP --in-interface virbr0 --protocol tcp --destination-port 67 > мар 20 16:14:00 PF16W6Y2 NetworkManager[2476]: <info> [1553087640.3677] device (virbr0-nic): state change: unmanaged -> unavailable (reason 'connection-assumed', sys-iface-state: 'external') мар 20 16:14:00 PF16W6Y2 NetworkManager[2476]: <info> [1553087640.3700] device (virbr0-nic): state change: unavailable -> disconnected (reason 'none', sys-iface-state: 'external') мар 20 16:14:00 PF16W6Y2 kernel: device virbr0-nic left promiscuous mode мар 20 16:14:00 PF16W6Y2 kernel: virbr0: port 1(virbr0-nic) entered disabled state мар 20 16:14:00 PF16W6Y2 NetworkManager[2476]: <info> [1553087640.4231] device (virbr0-nic): state change: disconnected -> unmanaged (reason 'unmanaged', sys-iface-state: 'removed') мар 20 16:14:00 PF16W6Y2 NetworkManager[2476]: <info> [1553087640.4235] device (virbr0-nic): released from master device virbr0 Reverting back to app-emulation/libvirt-5.0.0 solves this problem for me.
Check /var/log/libvirt/libvirtd.log I had to activate ipv6 NAT and mangle support in the kernel, it works now.
The bug has been closed via the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=3baa88f281263a16d7143d866dd1f8e5e26bbba0 commit 3baa88f281263a16d7143d866dd1f8e5e26bbba0 Author: Michal Privoznik <mprivozn@redhat.com> AuthorDate: 2019-04-08 01:08:54 +0000 Commit: Matthias Maier <tamiko@gentoo.org> CommitDate: 2019-04-08 02:29:38 +0000 app-emulation/libvirt: Check for more kernel configs for virtual net After 7431b3eb9a05068e4b Libvirt starts to create chains to insert rules into instead of placing them right at the top level chains. These private chains are created on daemon startup and the referenced commit made all 6 tables required (combination of default 3 tables: nat, filter and mangle for both IPv4 and IPv6). This was later refined in 686803a1a2e1e06, but it still makes sense for ebuild to check for all tables being enabled in the kernel because both IPv4 and IPv6 are used widely. Package-Manager: Portage-2.3.62, Repoman-2.3.12 Closes: https://bugs.gentoo.org/681010 Signed-off-by: Michal Privoznik <mprivozn@redhat.com> Signed-off-by: Matthias Maier <tamiko@gentoo.org> app-emulation/libvirt/libvirt-5.0.0-r1.ebuild | 9 ++++++++- app-emulation/libvirt/libvirt-5.1.0.ebuild | 9 ++++++++- app-emulation/libvirt/libvirt-9999.ebuild | 9 ++++++++- 3 files changed, 24 insertions(+), 3 deletions(-)
