fixes to avoid lots of error messages

- disable cgroups portage feature
- allow CAP_NET_ADMIN for the use of systemd-nspawn
  (https://github.com/systemd/systemd/issues/13308)

Makefile

@@ -74,6 +74,7 @@ export PATH CHROOT container PORTAGE_DIR VA_PKGDIR DISTDIR VA_ARCH
 inroot := systemd-nspawn --quiet \
 	--directory=$(CHROOT) \
 	--machine=$(container) \
+	--capability=CAP_NET_ADMIN \
 	--bind=$(PORTAGE_DIR):/var/db/repos/gentoo \
 	--bind=$(VA_PKGDIR):/var/cache/binpkgs \
 	--bind=$(DISTDIR):/var/cache/distfiles

configs/make.conf.amd64

@@ -9,7 +9,7 @@ EMERGE_WARNING_DELAY="0"
 AUTO_CLEAN="yes"
 EPAUSE_IGNORE="1"
 EMERGE_DEFAULT_OPTS="--jobs=2 --autounmask=n"
-FEATURES="noinfo -test nodoc noman nostrip unmerge-orphans buildpkg notitles parallel-fetch binpkg-multi-instance cgroup"
+FEATURES="noinfo -test nodoc noman nostrip unmerge-orphans buildpkg notitles parallel-fetch binpkg-multi-instance -cgroup"
 CURL_SSL="openssl"
 PYTHON_TARGETS="python3_8"
 INSTALL_MASK="/etc/default/grub /etc/locale.gen /etc/fstab /etc/issue /usr/share/doc"

configs/make.conf.x86

@@ -9,7 +9,7 @@ EMERGE_WARNING_DELAY="0"
 AUTO_CLEAN="yes"
 EPAUSE_IGNORE="1"
 EMERGE_DEFAULT_OPTS="--jobs=2 --autounmask=n"
-FEATURES="noinfo -test nodoc noman nostrip unmerge-orphans buildpkg notitles parallel-fetch binpkg-multi-instance cgroup"
+FEATURES="noinfo -test nodoc noman nostrip unmerge-orphans buildpkg notitles parallel-fetch binpkg-multi-instance -cgroup"
 CURL_SSL="openssl"
 PYTHON_TARGETS="python3_8"
 ABI_X86="32"

scripts/RUN

@@ -12,6 +12,7 @@ def main():
         "--quiet",
         f"--directory={environ['CHROOT']}",
         f"--machine={environ['container']}",
+        f"--capability=CAP_NET_ADMIN",
         f"--bind={environ['PORTAGE_DIR']}:/var/db/repos/gentoo",
         f"--bind={environ['VA_PKGDIR']}:/var/cache/binpkgs",
         f"--bind={environ['DISTDIR']}:/var/cache/distfiles",