Hello community, here is the log from the commit of package nftables for openSUSE:Factory checked in at 2017-10-24 22:22:19 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/nftables (Old) and /work/SRC/openSUSE:Factory/.nftables.new (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "nftables" Tue Oct 24 22:22:19 2017 rev:8 rq:533989 version:0.8 Changes: -------- --- /work/SRC/openSUSE:Factory/nftables/nftables.changes 2017-01-04 19:35:58.968264834 +0100 +++ /work/SRC/openSUSE:Factory/.nftables.new/nftables.changes 2017-10-24 22:22:44.682189869 +0200 @@ -1,0 +2,33 @@ +Fri Oct 13 08:39:41 UTC 2017 - [email protected] + +- Update to new upstream release 0.8 + * This release contains new features available up to the + (upcoming) Linux 4.14 kernel release: + * Support for stateful objects, these objects are uniquely + identified by a user-defined name, you can refer to them from + rules, and there is a well established interface to operate + with them. + * Sort set elements when listing them, from lower to largest. + * TCP option matching and mangling support. This includes TCP + maximum segment size mangling. + * Add new "-s" option for listings without stateful information. + * Add new -c/--check option for nft, to tests if your ruleset + loads fine, into the kernel, this is a dry run mode. + * Connection tracking helper support. + * Add --echo option, to print the handle that the kernel + allocates to uniquely identify rules. + * Conntrack zone support + * Symmetric hash support + * Add support to include directories from nft natives scripts, + files are loaded in alphanumerical order. + * Allow to check if IPv6 extension header or TCP option exists + or is missing. + * Extend quota support to display used bytes. + * Add ct average matching, to match average bytes per packet a + connection has transferred so far, to map the existing + feature available in the iptables connbytes match. + * Allow to flush maps and flow tables. + * Allow to embed set definition into an existing set. + * Conntrack event filtering support via rule. + +------------------------------------------------------------------- Old: ---- nftables-0.7.tar.bz2 nftables-0.7.tar.bz2.sig New: ---- nftables-0.8.tar.bz2 nftables-0.8.tar.bz2.sig ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ nftables.spec ++++++ --- /var/tmp/diff_new_pack.z98Zr0/_old 2017-10-24 22:22:45.230164253 +0200 +++ /var/tmp/diff_new_pack.z98Zr0/_new 2017-10-24 22:22:45.230164253 +0200 @@ -1,7 +1,7 @@ # # spec file for package nftables # -# Copyright (c) 2016 SUSE LINUX GmbH, Nuernberg, Germany. +# Copyright (c) 2017 SUSE LINUX GmbH, Nuernberg, Germany. # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -17,14 +17,14 @@ Name: nftables -Version: 0.7 +Version: 0.8 Release: 0 Summary: Userspace utility to access the nf_tables packet filter License: GPL-2.0 Group: Productivity/Networking/Security Url: http://netfilter.org/projects/nftables/ -#Git-Clone: git://git.netfilter.org/nftables +#Git-Clone: git://git.netfilter.org/nftables Source: http://ftp.netfilter.org/pub/nftables/nftables-%version.tar.bz2 Source2: http://ftp.netfilter.org/pub/nftables/nftables-%version.tar.bz2.sig BuildRoot: %{_tmppath}/%{name}-%{version}-build @@ -37,7 +37,7 @@ BuildRequires: readline-devel BuildRequires: xsltproc BuildRequires: pkgconfig(libmnl) >= 1.0.3 -BuildRequires: pkgconfig(libnftnl) >= 1.0.7 +BuildRequires: pkgconfig(libnftnl) >= 1.0.8 BuildRequires: pkgconfig(xtables) >= 1.6.0 Obsoletes: nftables-plus < %version-%release Provides: nftables-plus = %version-%release ++++++ nftables-0.7.tar.bz2 -> nftables-0.8.tar.bz2 ++++++ ++++ 80837 lines of diff (skipped)
