[Pkg-libvirt-maintainers] Bug#598330: Bug#598330: libvirt-bin: libvirtd is failing to start due to use of unimplemented iptables option
Guido Günther
agx at sigxcpu.org
Tue Sep 28 10:22:51 UTC 2010
severity 598330 normal
retitle libvirtd uses iptables CHECKSUM feature not present in Squeeze/Sid
thanks
Hi Philip,
On Tue, Sep 28, 2010 at 10:31:29AM +0100, Philip Armstrong wrote:
> Package: libvirt-bin
> Version: 0.8.3-1
> Severity: grave
> Tags: sid
> Justification: renders package unusable
>
> Libvirtd is using a new iptables option which isn't implemented in the
> sid version of iptables:
>
> # /usr/sbin/libvirtd
> 10:21:24.093: error : virRunWithHook:857 : internal error '/sbin/iptables --table mangle --delete POSTROUTING --out-interface virbr0 --protocol udp --destination-port 68 --jump CHECKSUM --checksum-fill' exited with non-zero status 2 and signal 0: iptables v1.4.9: unknown option `--checksum-fill' Try `iptables -h' or 'iptables --help' for more information.
> 10:21:24.111: error : virRunWithHook:857 : internal error '/sbin/iptables --table filter --delete INPUT --in-interface virbr0 --protocol udp --destination-port 69 --jump ACCEPT' exited with non-zero status 1 and signal 0: iptables: Bad rule (does a matching rule exist in that chain?).
> 10:21:24.142: error : virRunWithHook:857 : internal error '/sbin/iptables --table mangle --insert POSTROUTING --out-interface virbr0 --protocol udp --destination-port 68 --jump CHECKSUM --checksum-fill' exited with non-zero status 2 and signal 0: iptables v1.4.9: unknown option `--checksum-fill' Try `iptables -h' or 'iptables --help' for more information.
> 10:21:24.142: warning : networkAddIptablesRules:850 : Could not add rule to fixup DHCP response checksums on network 'default'.
> 10:21:24.142: warning : networkAddIptablesRules:851 : May need to update iptables package & kernel to support CHECKSUM rule.
> 10:21:54.514: warning : qemudStartup:1832 : Unable to create cgroup for driver: No such device or address
> 10:21:54.680: warning : lxcStartup:1895 : Unable to create cgroup for driver: No such device or address
> 10:21:58.600: warning : qemudDispatchSignalEvent:396 : Shutting down on signal 2
>
> There's some more information in Gentoo bug 334921:
> http://bugs.gentoo.org/334921
>
> virtd is unusable at the current time until this bug is fixed, either
> by patched out the relevant code in libvirtd (as detailed in that
> Gentoo bug) or upgrading the version of iptables in sid; as it
> currently stands at the moment, libvirtd has a hard dependency on the
> later version of iptables.
Thanks for your report. Your problem with libvirtd has other reasons
though - it's working fine without the CHECKSUM feature. Please file a
different bug report for that and have a look at:
http://wiki.debian.org/libvirt#Bugreports.2BAC8-Debugging
Cheers,
-- Guido
More information about the Pkg-libvirt-maintainers
mailing list