[Pkg-libvirt-maintainers] Bug#598330: libvirt-bin: libvirtd is failing to start due to use of unimplemented iptables option

Philip Armstrong phil at kantaka.co.uk
Tue Sep 28 09:31:29 UTC 2010 

Package: libvirt-bin
Version: 0.8.3-1
Severity: grave
Tags: sid
Justification: renders package unusable

Libvirtd is using a new iptables option which isn't implemented in the
sid version of iptables:

# /usr/sbin/libvirtd
10:21:24.093: error : virRunWithHook:857 : internal error '/sbin/iptables --table mangle --delete POSTROUTING --out-interface virbr0 --protocol udp --destination-port 68 --jump CHECKSUM --checksum-fill' exited with non-zero status 2 and signal 0: iptables v1.4.9: unknown option `--checksum-fill' Try `iptables -h' or 'iptables --help' for more information.
10:21:24.111: error : virRunWithHook:857 : internal error '/sbin/iptables --table filter --delete INPUT --in-interface virbr0 --protocol udp --destination-port 69 --jump ACCEPT' exited with non-zero status 1 and signal 0: iptables: Bad rule (does a matching rule exist in that chain?).
10:21:24.142: error : virRunWithHook:857 : internal error '/sbin/iptables --table mangle --insert POSTROUTING --out-interface virbr0 --protocol udp --destination-port 68 --jump CHECKSUM --checksum-fill' exited with non-zero status 2 and signal 0: iptables v1.4.9: unknown option `--checksum-fill' Try `iptables -h' or 'iptables --help' for more information.
10:21:24.142: warning : networkAddIptablesRules:850 : Could not add rule to fixup DHCP response checksums on network 'default'.
10:21:24.142: warning : networkAddIptablesRules:851 : May need to update iptables package & kernel to support CHECKSUM rule.
10:21:54.514: warning : qemudStartup:1832 : Unable to create cgroup for driver: No such device or address
10:21:54.680: warning : lxcStartup:1895 : Unable to create cgroup for driver: No such device or address
10:21:58.600: warning : qemudDispatchSignalEvent:396 : Shutting down on signal 2

There's some more information in Gentoo bug 334921:
  http://bugs.gentoo.org/334921

virtd is unusable at the current time until this bug is fixed, either
by patched out the relevant code in libvirtd (as detailed in that
Gentoo bug) or upgrading the version of iptables in sid; as it
currently stands at the moment, libvirtd has a hard dependency on the
later version of iptables.

cheers,

Phil

-- System Information:
Debian Release: squeeze/sid
  APT prefers unstable
  APT policy: (500, 'unstable'), (1, 'experimental')
Architecture: i386 (i686)

Kernel: Linux 2.6.35-trunk-686-bigmem (SMP w/4 CPU cores)
Locale: LANG=en_GB.UTF-8, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8) (ignored: LC_ALL set to en_GB.UTF-8)
Shell: /bin/sh linked to /bin/bash

Versions of packages libvirt-bin depends on:
ii  adduser                   3.112+nmu1     add and remove users and groups
ii  libavahi-client3          0.6.27-2       Avahi client library
ii  libavahi-common3          0.6.27-2       Avahi common library
ii  libblkid1                 2.17.2-3.2     block device id library
ii  libc6                     2.11.2-6       Embedded GNU C Library: Shared lib
ii  libcap-ng0                0.6.4-1        An alternate posix capabilities li
ii  libdevmapper1.02.1        2:1.02.48-3    The Linux Kernel Device Mapper use
ii  libgcrypt11               1.4.5-2        LGPL Crypto library - runtime libr
ii  libgnutls26               2.8.6-1        the GNU TLS library - runtime libr
ii  libnl1                    1.1-5          library for dealing with netlink s
ii  libparted0debian1         2.3-2          The GNU Parted disk partitioning s
ii  libpciaccess0             0.12.0-1       Generic PCI access library for X
ii  libreadline6              6.1-3          GNU readline and history libraries
ii  libsasl2-2                2.1.23.dfsg1-6 Cyrus SASL - authentication abstra
ii  libudev0                  161-1          libudev shared library
ii  libuuid1                  2.17.2-3.2     Universally Unique ID library
ii  libvirt0                  0.8.3-1        library for interfacing with diffe
ii  libxenstore3.0            4.0.1-1        Xenstore communications library fo
ii  libxml2                   2.7.7.dfsg-4   GNOME XML library
ii  logrotate                 3.7.8-6        Log rotation utility

Versions of packages libvirt-bin recommends:
ii  bridge-utils              1.4-5          Utilities for configuring the Linu
ii  dnsmasq-base              2.55-2         A small caching DNS proxy and DHCP
ii  gawk                      1:3.1.7.dfsg-5 GNU awk, a pattern scanning and pr
ii  iptables                  1.4.9-1        administration tools for packet fi
ii  libxml2-utils             2.7.7.dfsg-4   XML utilities
ii  netcat-openbsd            1.89-4         TCP/IP swiss army knife
ii  qemu                      0.12.5+dfsg-2  fast processor emulator
ii  qemu-kvm                  0.12.5+dfsg-3  Full virtualization on x86 hardwar

Versions of packages libvirt-bin suggests:
ii  policykit-1                   0.96-3     framework for managing administrat

-- Configuration Files:
/etc/default/libvirt-bin changed:
start_libvirtd="yes"
libvirtd_opts="-d -l"

/etc/libvirt/qemu/networks/default.xml [Errno 13] Permission denied: u'/etc/libvirt/qemu/networks/default.xml'

-- no debconf information

More information about the Pkg-libvirt-maintainers mailing list