linux: enable IPV6_MULTIPLE_TABLES for tailscaled IPv6 routing

[hanthor]

Problem

Without CONFIG_IPV6_MULTIPLE_TABLES, ip -6 rule fails entirely:

$ ip -6 rule
RTNETLINK answers: Address family not supported by protocol

This causes tailscaled to log:

router: disabling tunneled IPv6 due to system IPv6 config:
  kernel doesn't support IPv6 policy routing

Without the ability to install IPv6 routing rules, tailscaled falls back to fe80:: link-local IPv6 paths for LAN peers. These paths are sticky and don't recover after sleep/wake — disco pings continue working (different code path) while all WireGuard data times out silently.

The Fedora kernel has had IPV6_MULTIPLE_TABLES=y for years. This is a straightforward gap in the Dakota kernel config.

Fix

Add IPV6_MULTIPLE_TABLES and IPV6_SUBTREES to fdsdk-config.sh. One new patch file, no other changes.

Testing

Verified on a Dakota alpha install: before the fix ip -6 rule errors, tailscaled uses link-local paths that break after sleep. After loading the module, tailscaled installs its fwmark rules and uses stable paths.

Related to #174

[gemini-code-assist]

Code Review

This pull request adds a patch to enable IPv6 policy routing (IPV6_MULTIPLE_TABLES and IPV6_SUBTREES) in the Linux kernel configuration to support tools like tailscaled. However, the patch file is currently not referenced in any BuildStream element, so it will not be applied during the build. Additionally, the patch contains a malformed hunk header that will cause it to fail when applied with standard tools.

[gemini-code-assist]

This patch file is being added to the repository, but it does not appear to be referenced in any BuildStream element (e.g., the kernel element or the freedesktop-sdk element). In BuildStream, patches must be explicitly listed in the sources section of an element to be applied during the build process. Without updating the corresponding .bst file to include this patch, the kernel configuration will remain unchanged and the reported issue will not be resolved.

[hanthor]

The patch_queue source kind in elements/freedesktop-sdk.bst (line 8–9) automatically applies all patches in patches/freedesktop-sdk/ in alphabetical order — no manual listing needed. This is a BuildStream feature; see the existing patches 0001–0008 which are all picked up the same way.

[gemini-code-assist]

The hunk header in this patch is malformed. The post-image line count is specified as 10, but the hunk actually contains 11 lines (3 context lines and 8 added lines, including the empty line and the closing fi). This discrepancy will cause the patch to fail to apply using standard tools like git apply or patch.

@@ -2811,3 +2811,11 @@

[hanthor]

Fixed — hunk header corrected to +2811,11 (3 context + 8 added lines). Force-pushed.

[castrojo]

Rest lgtm other than fixing the syntax. Have we told GNOME about this one?

[hanthor]

Not yet — worth filing an MR upstream against freedesktop-sdk to enable IPV6_MULTIPLE_TABLES by default. Most distros (Fedora, Debian, Arch) have had it for years. I'll open an issue/MR there after this lands.