Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!

Bug 915141

Summary: app-containers/docker-24.0.6 add nftables use flag
Product: Gentoo Linux Reporter: Reuben Martin <reuben.m>
Component: Current packagesAssignee: William Hubbs <williamh>
Status: UNCONFIRMED ---    
Severity: normal CC: gyakovlev
Priority: Normal    
Version: unspecified   
Hardware: All   
OS: Linux   
Whiteboard:
Package list:
Runtime testing required: ---

Description Reuben Martin 2023-10-03 21:06:52 UTC 
By default docker tries to use the legacy iptables and will fail to start if the system is using nftable. (The "iptables" compatibility package from nftables does not mitigate this problem)

--Log output--
failed to start daemon: Error initializing network controller: error obtaining controller instance: failed to create NAT chain DOCKER: COMMAND_FAILED: INVALID_IPV: 'ipv4' is not a valid backend or is unavailable
----

The ebuild needs an nftables flag, that when set adds the "--iptables=false" option to the daemon command in the systemd/openrc service units. With this option set the daemon will start correctly in an nftables environment.

Reproducible: Always