修补过了 kmod-nf-socket kmod-nft-tproxy kmod-ipt-socket 这三个文件遇到的报错

小渔***

2024-04-15T06:09:05.2753282Z Configuring kmod-ipt-nat6.
2024-04-15T06:09:05.3461875Z Collected errors:
2024-04-15T06:09:05.3462437Z Configuring odhcpd-ipv6only.
2024-04-15T06:09:05.3463425Z  * pkg_hash_check_unresolved: cannot find dependency kmod-nf-socket for kmod-ipt-socket
2024-04-15T06:09:05.3465016Z  * pkg_hash_fetch_best_installation_candidate: Packages for kmod-ipt-socket found, but incompatible with the architectures configured
2024-04-15T06:09:05.3466240Z  * opkg_install_cmd: Cannot install package kmod-ipt-socket.
2024-04-15T06:09:05.3467161Z  * pkg_hash_check_unresolved: cannot find dependency kmod-nf-socket for kmod-nft-socket
2024-04-15T06:09:05.3468782Z  * pkg_hash_fetch_best_installation_candidate: Packages for kmod-nft-socket found, but incompatible with the architectures configured
2024-04-15T06:09:05.3469976Z  * opkg_install_cmd: Cannot install package kmod-nft-socket.
2024-04-15T06:09:05.3470883Z  * pkg_hash_check_unresolved: cannot find dependency kmod-nf-tproxy for kmod-nft-tproxy
2024-04-15T06:09:05.3472273Z  * pkg_hash_fetch_best_installation_candidate: Packages for kmod-nft-tproxy found, but incompatible with the architectures configured
2024-04-15T06:09:05.3473510Z  * opkg_install_cmd: Cannot install package kmod-nft-tproxy.
2024-04-15T06:09:05.3474647Z  * satisfy_dependencies_for: Cannot satisfy the following dependencies for iptables-mod-socket:
2024-04-15T06:09:05.3475540Z  *         kmod-nf-socket
2024-04-15T06:09:05.3476146Z  * opkg_install_cmd: Cannot install package iptables-mod-socket.

各位大佬，我这边已经修补过了 kmod-nf-socket kmod-nft-tproxy kmod-ipt-socket  这三个文件，但是报错架构不一致

# 添加iptables-mod-socket
cp -rf $GITHUB_WORKSPACE/patchs/5.4/iptables-mod-socket.patch $GITHUB_WORKSPACE/openwrt/package/iptables-mod-socket.patch
patch -p1 < $GITHUB_WORKSPACE/openwrt/package/iptables-mod-socket.patch

# 添加 kmod-nf-tproxy 依赖
sed -i 's/DEPENDS\+=+kmod-ipt-conntrack +IPV6:kmod-nf-conntrack6/DEPENDS\+=+kmod-nf-tproxy +kmod-nf-conntrack +IPV6:kmod-nf-conntrack6/' package/kernel/linux/modules/netfilter.mk

# 添加 ipt-socket 依赖
sed -i '/$(eval $(call KernelPackage,ipt-led))/a \
\
define KernelPackage/ipt-socket\n\
  TITLE:=Iptables socket matching support\n\
  DEPENDS+=+kmod-nf-socket +kmod-nf-conntrack +IPV6:kmod-nf-conntrack6\n\
  KCONFIG:=$(KCONFIG_IPT_SOCKET)\n\
  FILES:=$(foreach mod,$(IPT_SOCKET-m),$(LINUX_DIR)/net/$(mod).ko)\n\
  AUTOLOAD:=$(call AutoProbe,$(notdir $(IPT_SOCKET-m)))\n\
  $(call AddDepends/ipt)\n\
endef\n\
\n\
define KernelPackage/ipt-socket/description\n\
  Kernel modules for socket matching\n\
endef\n\
\n\
$(eval $(call KernelPackage,ipt-socket))' package/kernel/linux/modules/netfilter.mk

# 添加 iptables-mod-socket 依赖
sed -i '382i\ \
define Package/iptables-mod-socket\n\
$(call Package/iptables/Module, +kmod-ipt-socket)\n\
  TITLE:=Socket match iptables extensions\n\
endef\n\
\n\
define Package/iptables-mod-socket/description\n\
Socket match iptables extensions.\n\
\n\
Matches:\n\
  - socket\n\
\n\
endef' package/network/utils/iptables/Makefile

# 添加 kmod-inet-diag 依赖
sed -i '/define KernelPackage\/wireguard/,/$(eval $(call KernelPackage,wireguard))/c\
\
define KernelPackage/inet-diag\n\
  SUBMENU:=$(NETWORK_SUPPORT_MENU)\n\
  TITLE:=INET diag support for ss utility\n\
  KCONFIG:= \\\n\
        CONFIG_INET_DIAG \\\n\
        CONFIG_INET_TCP_DIAG \\\n\
        CONFIG_INET_UDP_DIAG \\\n\
        CONFIG_INET_RAW_DIAG \\\n\
        CONFIG_INET_DIAG_DESTROY=n\n\
  FILES:= \\\n\
        $(LINUX_DIR)/net/ipv4/inet_diag.ko \\\n\
        $(LINUX_DIR)/net/ipv4/tcp_diag.ko \\\n\
        $(LINUX_DIR)/net/ipv4/udp_diag.ko \\\n\
        $(LINUX_DIR)/net/ipv4/raw_diag.ko@ge4.10\n\
  AUTOLOAD:=$(call AutoLoad,31,inet_diag tcp_diag udp_diag raw_diag@ge4.10)\n\
endef\n\
\n\
define KernelPackage/inet-diag/description\n\
  Support for INET (TCP, DCCP, etc) socket monitoring interface used by\n\
  native Linux tools such as ss.\n\
endef\n\
\n\
$(eval $(call KernelPackage,inet-diag))' package/kernel/linux/modules/netsupport.mk

# 添加 kmod-nf-socket 依赖
sed -i '/$(eval \$(call KernelPackage,nft-queue))/a\
\
define KernelPackage/nft-socket\n\
  SUBMENU:=$(NF_MENU)\n\
  TITLE:=Netfilter nf_tables socket support\n\
  DEPENDS:=+kmod-nft-core +kmod-nf-socket\n\
  FILES:=$(foreach mod,$(NFT_SOCKET-m),$(LINUX_DIR)/net/$(mod).ko)\n\
  AUTOLOAD:=$(call AutoProbe,$(notdir $(NFT_SOCKET-m)))\n\
  KCONFIG:=$(KCONFIG_NFT_SOCKET)\n\
endef\n\
\n\
$(eval $(call KernelPackage,nft-socket))\n\
\n\
define KernelPackage/nft-tproxy\n\
  SUBMENU:=$(NF_MENU)\n\
  TITLE:=Netfilter nf_tables tproxy support\n\
  DEPENDS:=+kmod-nft-core +kmod-nf-tproxy +kmod-nf-conntrack\n\
  FILES:=$(foreach mod,$(NFT_TPROXY-m),$(LINUX_DIR)/net/$(mod).ko)\n\
  AUTOLOAD:=$(call AutoProbe,$(notdir $(NFT_TPROXY-m)))\n\
  KCONFIG:=$(KCONFIG_NFT_TPROXY)\n\
endef\n\
\n\
$(eval $(call KernelPackage,nft-tproxy))\n\
\n\
define KernelPackage/nft-compat\n\
  SUBMENU:=$(NF_MENU)\n\
  TITLE:=Netfilter nf_tables compat support\n\
  DEPENDS:=+kmod-nft-core +kmod-nf-ipt\n\
  FILES:=$(foreach mod,$(NFT_COMPAT-m),$(LINUX_DIR)/net/$(mod).ko)\n\
  AUTOLOAD:=$(call AutoProbe,$(notdir $(NFT_COMPAT-m)))\n\
  KCONFIG:=$(KCONFIG_NFT_COMPAT)\n\
endef\n\
\n\
$(eval $(call KernelPackage,nft-compat))\n\
\n\
define KernelPackage/nft-xfrm\n\
  SUBMENU:=$(NF_MENU)\n\
  TITLE:=Netfilter nf_tables xfrm support (ipsec)\n\
  DEPENDS:=+kmod-nft-core\n\
  FILES:=$(foreach mod,$(NFT_XFRM-m),$(LINUX_DIR)/net/$(mod).ko)\n\
  AUTOLOAD:=$(call AutoProbe,$(notdir $(NFT_XFRM-m)))\n\
  KCONFIG:=$(KCONFIG_NFT_XFRM)\n\
endef\n\
\n\
$(eval $(call KernelPackage,nft-xfrm))' package/kernel/linux/modules/netfilter.mk

#添加 kmod-inet-diag
sed -i '1227i\
define KernelPackage/inet-diag\n\
  SUBMENU:=$(NETWORK_SUPPORT_MENU)\n\
  TITLE:=INET diag support for ss utility\n\
  KCONFIG:= \\\n\
\tCONFIG_INET_DIAG \\\n\
\tCONFIG_INET_TCP_DIAG \\\n\
\tCONFIG_INET_UDP_DIAG \\\n\
\tCONFIG_INET_RAW_DIAG \\\n\
\tCONFIG_INET_DIAG_DESTROY=n\n\
  FILES:= \\\n\
\t$(LINUX_DIR)/net/ipv4/inet_diag.ko \\\n\
\t$(LINUX_DIR)/net/ipv4/tcp_diag.ko \\\n\
\t$(LINUX_DIR)/net/ipv4/udp_diag.ko \\\n\
\t$(LINUX_DIR)/net/ipv4/raw_diag.ko\n\
  AUTOLOAD:=$(call AutoLoad,31,inet_diag tcp_diag udp_diag raw_diag)\n\
endef\n\
\n\
define KernelPackage/inet-diag/description\n\
Support for INET (TCP, DCCP, etc) socket monitoring interface used by\n\
native Linux tools such as ss.\n\
endef\n\
\n\
$(eval $(call KernelPackage,inet-diag))' package/kernel/linux/modules/netsupport.mk


麻烦帮忙看下问题出在哪里，谢谢。

5un***

小渔学长 发表于 2024-4-15 16:02
https://github.com/yuos-bit/AutoBuild-OpenWrt/actions/runs/8683858158/job/23810482879

这是action ...

我去你的github简单看了一下，补丁和修改太多了，不知道你找的这些补丁是不是有效的。另外添加的第三方源kenzo，没必要一股脑都加进去啊，真不怕冲突打架呀

5un***

你是用opkg安装这几个插件对吧，报错主要有两方面，1 架构不一致，可能是因为机子源码架构跟插件架构不一致，2 hash验证不一致，这几个是内核插件，opkg安装时有一些验证，所以安装不上也正常。既然你会编译固件，建议还是在编译时就加上，（勾选师夷长技的插件会自动编译出这几个插件），opkg安装这些内核依赖的插件挺麻烦的。

小渔***

5und4y 发表于 2024-4-15 15:41
你是用opkg安装这几个插件对吧，报错主要有两方面，1 架构不一致，可能是因为机子源码架构跟插件架构不一致 ...

我这边是在github action运行的时候编译Pass wall2遇到的这个错误

小渔***

5und4y 发表于 2024-4-15 15:41
你是用opkg安装这几个插件对吧，报错主要有两方面，1 架构不一致，可能是因为机子源码架构跟插件架构不一致 ...

https://github.com/yuos-bit/Auto ... 158/job/23810482879

这是action地址

小渔***

5und4y 发表于 2024-4-15 18:32
我去你的github简单看了一下，补丁和修改太多了，不知道你找的这些补丁是不是有效的。另外添加的第三方源 ...

哈哈，冲突的我都加了命令删除的。现在我已经解决这个问题了

1. # 添加iptables-mod-socket
   
2. cp -rf $GITHUB_WORKSPACE/patchs/5.4/iptables-mod-socket.patch $GITHUB_WORKSPACE/openwrt/package/iptables-mod-socket.patch
   
3. patch -p1 < $GITHUB_WORKSPACE/openwrt/package/iptables-mod-socket.patch
   
4. 
   
5. # 添加 kmod-nf-tproxy 依赖
   
6. sed -i 's/DEPENDS\+=+kmod-ipt-conntrack +IPV6:kmod-nf-conntrack6/DEPENDS\+=+kmod-nf-tproxy +kmod-nf-conntrack +IPV6:kmod-nf-conntrack6/' package/kernel/linux/modules/netfilter.mk
   
7. 
   
8. # 添加 ipt-socket 依赖
   
9. sed -i '/$(eval $(call KernelPackage,ipt-led))/a \
   
10. \
    
11. define KernelPackage/ipt-socket\n\
    
12.   TITLE:=Iptables socket matching support\n\
    
13.   DEPENDS+=+kmod-nf-socket +kmod-nf-conntrack +IPV6:kmod-nf-conntrack6\n\
    
14.   KCONFIG:=$(KCONFIG_IPT_SOCKET)\n\
    
15.   FILES:=$(foreach mod,$(IPT_SOCKET-m),$(LINUX_DIR)/net/$(mod).ko)\n\
    
16.   AUTOLOAD:=$(call AutoProbe,$(notdir $(IPT_SOCKET-m)))\n\
    
17.   $(call AddDepends/ipt)\n\
    
18. endef\n\
    
19. \n\
    
20. define KernelPackage/ipt-socket/description\n\
    
21.   Kernel modules for socket matching\n\
    
22. endef\n\
    
23. \n\
    
24. $(eval $(call KernelPackage,ipt-socket))' package/kernel/linux/modules/netfilter.mk
    
25. 
    
26. # 添加 iptables-mod-socket 依赖
    
27. sed -i '382i\ \
    
28. define Package/iptables-mod-socket\n\
    
29. $(call Package/iptables/Module, +kmod-ipt-socket)\n\
    
30.   TITLE:=Socket match iptables extensions\n\
    
31. endef\n\
    
32. \n\
    
33. define Package/iptables-mod-socket/description\n\
    
34. Socket match iptables extensions.\n\
    
35. \n\
    
36. Matches:\n\
    
37.   - socket\n\
    
38. \n\
    
39. endef' package/network/utils/iptables/Makefile
    
40. 
    
41. # 添加 kmod-inet-diag 依赖
    
42. sed -i '/define KernelPackage\/wireguard/,/$(eval $(call KernelPackage,wireguard))/c\
    
43. \
    
44. define KernelPackage/inet-diag\n\
    
45.   SUBMENU:=$(NETWORK_SUPPORT_MENU)\n\
    
46.   TITLE:=INET diag support for ss utility\n\
    
47.   KCONFIG:= \\\n\
    
48.         CONFIG_INET_DIAG \\\n\
    
49.         CONFIG_INET_TCP_DIAG \\\n\
    
50.         CONFIG_INET_UDP_DIAG \\\n\
    
51.         CONFIG_INET_RAW_DIAG \\\n\
    
52.         CONFIG_INET_DIAG_DESTROY=n\n\
    
53.   FILES:= \\\n\
    
54.         $(LINUX_DIR)/net/ipv4/inet_diag.ko \\\n\
    
55.         $(LINUX_DIR)/net/ipv4/tcp_diag.ko \\\n\
    
56.         $(LINUX_DIR)/net/ipv4/udp_diag.ko \\\n\
    
57.         $(LINUX_DIR)/net/ipv4/raw_diag.ko@ge4.10\n\
    
58.   AUTOLOAD:=$(call AutoLoad,31,inet_diag tcp_diag udp_diag raw_diag@ge4.10)\n\
    
59. endef\n\
    
60. \n\
    
61. define KernelPackage/inet-diag/description\n\
    
62.   Support for INET (TCP, DCCP, etc) socket monitoring interface used by\n\
    
63.   native Linux tools such as ss.\n\
    
64. endef\n\
    
65. \n\
    
66. $(eval $(call KernelPackage,inet-diag))' package/kernel/linux/modules/netsupport.mk
    
67. 
    
68. # 添加 kmod-nf-socket 依赖
    
69. sed -i '/$(eval \$(call KernelPackage,nft-queue))/a\
    
70. \
    
71. define KernelPackage/nft-socket\n\
    
72.   SUBMENU:=$(NF_MENU)\n\
    
73.   TITLE:=Netfilter nf_tables socket support\n\
    
74.   DEPENDS:=+kmod-nft-core +kmod-nf-socket\n\
    
75.   FILES:=$(foreach mod,$(NFT_SOCKET-m),$(LINUX_DIR)/net/$(mod).ko)\n\
    
76.   AUTOLOAD:=$(call AutoProbe,$(notdir $(NFT_SOCKET-m)))\n\
    
77.   KCONFIG:=$(KCONFIG_NFT_SOCKET)\n\
    
78. endef\n\
    
79. \n\
    
80. $(eval $(call KernelPackage,nft-socket))\n\
    
81. \n\
    
82. define KernelPackage/nft-tproxy\n\
    
83.   SUBMENU:=$(NF_MENU)\n\
    
84.   TITLE:=Netfilter nf_tables tproxy support\n\
    
85.   DEPENDS:=+kmod-nft-core +kmod-nf-tproxy +kmod-nf-conntrack\n\
    
86.   FILES:=$(foreach mod,$(NFT_TPROXY-m),$(LINUX_DIR)/net/$(mod).ko)\n\
    
87.   AUTOLOAD:=$(call AutoProbe,$(notdir $(NFT_TPROXY-m)))\n\
    
88.   KCONFIG:=$(KCONFIG_NFT_TPROXY)\n\
    
89. endef\n\
    
90. \n\
    
91. $(eval $(call KernelPackage,nft-tproxy))\n\
    
92. \n\
    
93. define KernelPackage/nft-compat\n\
    
94.   SUBMENU:=$(NF_MENU)\n\
    
95.   TITLE:=Netfilter nf_tables compat support\n\
    
96.   DEPENDS:=+kmod-nft-core +kmod-nf-ipt\n\
    
97.   FILES:=$(foreach mod,$(NFT_COMPAT-m),$(LINUX_DIR)/net/$(mod).ko)\n\
    
98.   AUTOLOAD:=$(call AutoProbe,$(notdir $(NFT_COMPAT-m)))\n\
    
99.   KCONFIG:=$(KCONFIG_NFT_COMPAT)\n\
    
100. endef\n\
     
101. \n\
     
102. $(eval $(call KernelPackage,nft-compat))\n\
     
103. \n\
     
104. define KernelPackage/nft-xfrm\n\
     
105.   SUBMENU:=$(NF_MENU)\n\
     
106.   TITLE:=Netfilter nf_tables xfrm support (ipsec)\n\
     
107.   DEPENDS:=+kmod-nft-core\n\
     
108.   FILES:=$(foreach mod,$(NFT_XFRM-m),$(LINUX_DIR)/net/$(mod).ko)\n\
     
109.   AUTOLOAD:=$(call AutoProbe,$(notdir $(NFT_XFRM-m)))\n\
     
110.   KCONFIG:=$(KCONFIG_NFT_XFRM)\n\
     
111. endef\n\
     
112. \n\
     
113. $(eval $(call KernelPackage,nft-xfrm))' package/kernel/linux/modules/netfilter.mk
     
114. 
     
115. #添加 kmod-inet-diag
     
116. sed -i '1227i\
     
117. define KernelPackage/inet-diag\n\
     
118.   SUBMENU:=$(NETWORK_SUPPORT_MENU)\n\
     
119.   TITLE:=INET diag support for ss utility\n\
     
120.   KCONFIG:= \\\n\
     
121. \tCONFIG_INET_DIAG \\\n\
     
122. \tCONFIG_INET_TCP_DIAG \\\n\
     
123. \tCONFIG_INET_UDP_DIAG \\\n\
     
124. \tCONFIG_INET_RAW_DIAG \\\n\
     
125. \tCONFIG_INET_DIAG_DESTROY=n\n\
     
126.   FILES:= \\\n\
     
127. \t$(LINUX_DIR)/net/ipv4/inet_diag.ko \\\n\
     
128. \t$(LINUX_DIR)/net/ipv4/tcp_diag.ko \\\n\
     
129. \t$(LINUX_DIR)/net/ipv4/udp_diag.ko \\\n\
     
130. \t$(LINUX_DIR)/net/ipv4/raw_diag.ko\n\
     
131.   AUTOLOAD:=$(call AutoLoad,31,inet_diag tcp_diag udp_diag raw_diag)\n\
     
132. endef\n\
     
133. \n\
     
134. define KernelPackage/inet-diag/description\n\
     
135. Support for INET (TCP, DCCP, etc) socket monitoring interface used by\n\
     
136. native Linux tools such as ss.\n\
     
137. endef\n\
     
138. \n\
     
139. $(eval $(call KernelPackage,inet-diag))' package/kernel/linux/modules/netsupport.mk
     
140. 
     
141. 
     
142. # nf-tproxy nf-socket
     
143. sed -i '/$(eval $(call KernelPackage,nf-flow))/a\
     
144. \
     
145. define KernelPackage/nf-socket\n  SUBMENU:=$(NF_MENU)\n  TITLE:=Netfilter socket lookup support\n  KCONFIG:= $(KCONFIG_NF_SOCKET)\n  FILES:=$(foreach mod,$(NF_SOCKET-m),$(LINUX_DIR)/net/$(mod).ko)\n  AUTOLOAD:=$(call AutoProbe,$(notdir $(NF_SOCKET-m)))\nendef\n\n$(eval $(call KernelPackage,nf-socket))\
     
146. \
     
147. define KernelPackage/nf-tproxy\n  SUBMENU:=$(NF_MENU)\n  TITLE:=Netfilter tproxy support\n  KCONFIG:= $(KCONFIG_NF_TPROXY)\n  FILES:=$(foreach mod,$(NF_TPROXY-m),$(LINUX_DIR)/net/$(mod).ko)\n  AUTOLOAD:=$(call AutoProbe,$(notdir $(NF_TPROXY-m)))\nendef\n\n$(eval $(call KernelPackage,nf-tproxy))' package/kernel/linux/modules/netfilter.mk
     

复制代码

小渔***

5und4y 发表于 2024-4-15 18:32
我去你的github简单看了一下，补丁和修改太多了，不知道你找的这些补丁是不是有效的。另外添加的第三方源 ...

没办法，东三年，西三年，缝缝补补又三年。官方的源缺的太多，只能缝缝又补补

小渔***

小渔学长 发表于 2024-4-15 16:02
https://github.com/yuos-bit/AutoBuild-OpenWrt/actions/runs/8683858158/job/23810482879

这是action ...

主要是修补的时候没修补完全，加上这些就对了

1. # nf-tproxy nf-socket
   
2. sed -i '/$(eval $(call KernelPackage,nf-flow))/a\
   
3. \
   
4. define KernelPackage/nf-socket\n  SUBMENU:=$(NF_MENU)\n  TITLE:=Netfilter socket lookup support\n  KCONFIG:= $(KCONFIG_NF_SOCKET)\n  FILES:=$(foreach mod,$(NF_SOCKET-m),$(LINUX_DIR)/net/$(mod).ko)\n  AUTOLOAD:=$(call AutoProbe,$(notdir $(NF_SOCKET-m)))\nendef\n\n$(eval $(call KernelPackage,nf-socket))\
   
5. \
   
6. define KernelPackage/nf-tproxy\n  SUBMENU:=$(NF_MENU)\n  TITLE:=Netfilter tproxy support\n  KCONFIG:= $(KCONFIG_NF_TPROXY)\n  FILES:=$(foreach mod,$(NF_TPROXY-m),$(LINUX_DIR)/net/$(mod).ko)\n  AUTOLOAD:=$(call AutoProbe,$(notdir $(NF_TPROXY-m)))\nendef\n\n$(eval $(call KernelPackage,nf-tproxy))' package/kernel/linux/modules/netfilter.mk

复制代码