707950 – net-vpn/wireguard-tools-1.0.20200121 USE=wg-quick should check for CONFIG_NETFILTER_XT_MATCH_ADDRTYPE

Bug 707950 - net-vpn/wireguard-tools-1.0.20200121 USE=wg-quick should check for CONFIG_NETFILTER_XT_MATCH_ADDRTYPE

Summary: net-vpn/wireguard-tools-1.0.20200121 USE=wg-quick should check for CONFIG_NET...

Status:	RESOLVED FIXED

Alias:	None

Product:	Gentoo Linux
Classification:	Unclassified
Component:	Current packages (show other bugs)
Hardware:	AMD64 Linux

Importance:	Normal normal
Assignee:	Jason A. Donenfeld

URL:
Whiteboard:
Keywords:

Depends on:
Blocks:

Reported:	2020-02-02 17:41 UTC by Garri
Modified:	2020-06-22 22:01 UTC (History)
CC List:	0 users

See Also:
Package list:
Runtime testing required:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Garri 2020-02-02 17:41:26 UTC

Hello,

After recompiling my kernel with the options suggested by the net-vpn/wireguard-tools package I found that the wg-quick util still cannot bring the wg interface up.

After recompiling the kernel once again with the option CONFIG_NETFILTER_XT_MATCH_ADDRTYPE, the problem was solved. 

Reproducible: Always

Steps to Reproduce:
1. Recompile the kernel with the options suggested by net-vpn/wireguard-tools
2. Try to bring the wg interface up with wg-quick
Actual Results:  
# wg-quick up wg0
[#] ip link add wg0 type wireguard
[#] wg setconf wg0 /dev/fd/63
[#] ip -4 address add X.X.X.X/24 dev wg0
[#] ip link set mtu 1420 up dev wg0
[#] wg set wg0 fwmark 51820
[#] ip -4 route add 0.0.0.0/0 dev wg0 table 51820
[#] ip -4 rule add not fwmark 51820 table 51820
[#] ip -4 rule add table main suppress_prefixlength 0
[#] sysctl -q net.ipv4.conf.all.src_valid_mark=1
[#] iptables-restore -n
iptables-restore v1.8.4 (legacy): Couldn't load match `addrtype':No such file or directory

Error occurred at line: 2
Try `iptables-restore -h' or 'iptables-restore --help' for more information.
[#] ip -4 rule delete table 51820
[#] ip -4 rule delete table main suppress_prefixlength 0
[#] ip link delete dev wg0

Expected Results:  
# wg-quick up wg0
[#] ip link add wg0 type wireguard
[#] wg setconf wg0 /dev/fd/63
[#] ip -4 address add X.X.X.X/24 dev wg0
[#] ip link set mtu 1420 up dev wg0
[#] wg set wg0 fwmark 51820
[#] ip -4 route add 0.0.0.0/0 dev wg0 table 51820
[#] ip -4 rule add not fwmark 51820 table 51820
[#] ip -4 rule add table main suppress_prefixlength 0
[#] sysctl -q net.ipv4.conf.all.src_valid_mark=1
[#] iptables-restore -n

Comment 1 Larry the Git Cow gentoo-dev

2020-06-22 22:01:44 UTC

The bug has been closed via the following commit(s):

https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=396a9e64321310a0a8b203bfaa76231bcdb0c2d0

commit 396a9e64321310a0a8b203bfaa76231bcdb0c2d0
Author:     Jason A. Donenfeld <zx2c4@gentoo.org>
AuthorDate: 2020-06-22 22:01:23 +0000
Commit:     Jason A. Donenfeld <zx2c4@gentoo.org>
CommitDate: 2020-06-22 22:01:23 +0000

    net-vpn/wireguard-tools: check for NETFILTER_XT_MATCH_ADDRTYPE
    
    Closes: https://bugs.gentoo.org/707950
    Package-Manager: Portage-2.3.101, Repoman-2.3.22
    Signed-off-by: Jason A. Donenfeld <zx2c4@gentoo.org>

 net-vpn/wireguard-tools/wireguard-tools-1.0.20200319.ebuild | 1 +
 net-vpn/wireguard-tools/wireguard-tools-1.0.20200513.ebuild | 1 +
 2 files changed, 2 insertions(+)