commit nftables for openSUSE:Factory
Hello community,
here is the log from the commit of package nftables for openSUSE:Factory
checked in at 2020-10-30 11:46:08
Comparing /work/SRC/openSUSE:Factory/nftables (Old)
and /work/SRC/openSUSE:Factory/.nftables.new.3463 (New)
Package is "nftables"
Fri Oct 30 11:46:08 2020 rev:22 rq:844349 version:0.9.7
Changes:
--- /work/SRC/openSUSE:Factory/nftables/nftables.changes2020-06-18
10:36:59.150520487 +0200
+++ /work/SRC/openSUSE:Factory/.nftables.new.3463/nftables.changes
2020-10-30 11:46:17.369634099 +0100
@@ -1,0 +2,10 @@
+Tue Oct 27 12:08:37 UTC 2020 - Jan Engelhardt
+
+- Update to release 0.9.7
+ * Support for implicit chains
+ * Support for ingress inet chains
+ * Support for reject from prerouting chain
+ * Support for --terse option in json
+ * Support for the reset command with json
+
+---
Old:
nftables-0.9.6.tar.bz2
nftables-0.9.6.tar.bz2.sig
New:
nftables-0.9.7.tar.bz2
nftables-0.9.7.tar.bz2.sig
Other differences:
--
++ nftables.spec ++
--- /var/tmp/diff_new_pack.jUYTR8/_old 2020-10-30 11:46:17.941634605 +0100
+++ /var/tmp/diff_new_pack.jUYTR8/_new 2020-10-30 11:46:17.945634609 +0100
@@ -17,7 +17,7 @@
Name: nftables
-Version:0.9.6
+Version:0.9.7
Release:0
Summary:Userspace utility to access the nf_tables packet filter
License:GPL-2.0-only
@@ -37,7 +37,7 @@
BuildRequires: readline-devel
BuildRequires: pkgconfig(jansson)
BuildRequires: pkgconfig(libmnl) >= 1.0.3
-BuildRequires: pkgconfig(libnftnl) >= 1.1.7
+BuildRequires: pkgconfig(libnftnl) >= 1.1.8
BuildRequires: pkgconfig(xtables) >= 1.6.1
%description
@@ -90,7 +90,7 @@
%configure --disable-silent-rules --disable-static --docdir="%_docdir/%name" \
--includedir="%_includedir/%name" --with-json \
--enable-python --with-python-bin="$(which python3)"
-make %{?_smp_mflags}
+%make_build
popd
%install
++ nftables-0.9.6.tar.bz2 -> nftables-0.9.7.tar.bz2 ++
32834 lines of diff (skipped)
++ nftables.keyring ++
--- /var/tmp/diff_new_pack.jUYTR8/_old 2020-10-30 11:46:18.713635289 +0100
+++ /var/tmp/diff_new_pack.jUYTR8/_new 2020-10-30 11:46:18.717635292 +0100
@@ -1,107 +1,64 @@
-pub 4096R/0xA4111F89BB5F58CC 2010-10-21 [expires: 2015-10-20]
- Key fingerprint = 57FF 5E9C 9AA6 7A86 0B55 7AF7 A411 1F89 BB5F 58CC
-uid [ expired] Netfilter Core Team
-sub 4096R/0x0FD3A13A04B92F5C 2010-10-21 [expires: 2015-10-20]
-
-pub 4096R/0xAB4655A126D292E4 2015-10-19 [expires: 2020-10-17]
- Key fingerprint = C09D B206 3F1D 7034 BA61 52AD AB46 55A1 26D2 92E4
-uid [ unknown] Netfilter Core Team
-sub 4096R/0xE3B0B6BAE3AAA39E 2015-10-19 [expires: 2020-10-17]
-
-BEGIN PGP PUBLIC KEY BLOCK-
-mQINBEzAS5EBEADVlGm+KwODJcVmP33HTCbn/eP8obZbgu+3Z1CYRklF8V43vC6D
-8Jfk7fjD4/gWbAKZxriOESXVAN7mp0Fho4+Ga+pxWeLIET9tVM5xbNFK1p9R3XCK
-p5SrugG+tGhizTR9b/1YCMVRz/yX3aDtC7lwObas4hkr5BqhphjvlkjFE7us32by
-43LPpFj2yUpp1VdOf6gxl03kAgJg08h9J7a+n9KHQeAhIpXSRFq3tXiTdXQlovsv
-ckwBjO0m8P2d1Z8/UYwXQgXzuO8W8EqaUSR95nDwl7UnilnKJm2fGvNg3A6PfCSk
-3KdeEBZ45SRfMTPsuC5C4T0Az75h3HFR6YSae46ymg7d4ZA/Bd5K4hvp4PdYrfCi
-GXen7iK9q5XDpopWb0yCrEVJzKjBjDurvpLtAD0IFWcpB6zwM38AnxVH05J8QOx/
-VCZ4vZJxTKWbpHbdcISSMmVt00VfKorF9DsjiAcBRMBcIvDpJTP4yjvr32W09wLc
-d5CIYGrLKhLNysUIJ44AQoTL9yV5aQvCb2EFnoPqCEKQm8onTAGX19PpTDjDPJFt
-WyMMUDtiMp2yODuFo1qHjxvqzSVX+Ti2sGpiT1hEz97GAIlbAvmXs/bTb+U+rBnd
-6027ooes3cWmBSV5kpz/sMp+nFynrLZ5NDnehPScz3W31oGgSdrGsnnhaQARAQAB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-PgQTAQIAKAUCTMBLkQIbAwUJCWYBgAYLCQgHAwIGFQgCCQoLBBYCAwECHgECF4AA
-CgkQpBEfibtfWMzULxAAtGgYeuEqk0F9y4sz6hFJf+fXKSPPrwWTIUXs/sCxlBtS
-lgf9oTvk3aT48zsMIfsDsS8yfIUjaK+eedIZW3oJ0lBtwRncZKjks8Od5J7DvEhR
-Kpo3cajT1KXJh584IvXN0/BbCdPUI6EQE8n0fEUrSWANfzhuD3qYtX9UUGBq/7i8
-Cf3pGFDeYRjcwWeNZ1T+xbaCKPS5BGlOVhMtauaTBZvTJniB828bOZXd3KrXUeul
commit nftables for openSUSE:Factory
Hello community, here is the log from the commit of package nftables for openSUSE:Factory checked in at 2020-06-18 10:36:08 Comparing /work/SRC/openSUSE:Factory/nftables (Old) and /work/SRC/openSUSE:Factory/.nftables.new.3606 (New) Package is "nftables" Thu Jun 18 10:36:08 2020 rev:21 rq:815268 version:0.9.6 Changes: --- /work/SRC/openSUSE:Factory/nftables/nftables.changes2020-06-11 10:01:31.938548806 +0200 +++ /work/SRC/openSUSE:Factory/.nftables.new.3606/nftables.changes 2020-06-18 10:36:59.150520487 +0200 @@ -1,0 +2,6 @@ +Tue Jun 16 13:37:28 UTC 2020 - Jan Engelhardt + +- Update to release 0.9.6 + * Fix two ASAN runtime errors + +--- Old: nftables-0.9.5.tar.bz2 nftables-0.9.5.tar.bz2.sig New: nftables-0.9.6.tar.bz2 nftables-0.9.6.tar.bz2.sig Other differences: -- ++ nftables.spec ++ --- /var/tmp/diff_new_pack.bTr7Bv/_old 2020-06-18 10:37:09.178552890 +0200 +++ /var/tmp/diff_new_pack.bTr7Bv/_new 2020-06-18 10:37:09.182552903 +0200 @@ -17,7 +17,7 @@ Name: nftables -Version:0.9.5 +Version:0.9.6 Release:0 Summary:Userspace utility to access the nf_tables packet filter License:GPL-2.0-only ++ nftables-0.9.5.tar.bz2 -> nftables-0.9.6.tar.bz2 ++ diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/nftables-0.9.5/configure new/nftables-0.9.6/configure --- old/nftables-0.9.5/configure2020-06-06 12:00:31.927430708 +0200 +++ new/nftables-0.9.6/configure2020-06-15 22:23:48.001452605 +0200 @@ -1,6 +1,6 @@ #! /bin/sh # Guess values for system-dependent variables and create Makefiles. -# Generated by GNU Autoconf 2.69 for nftables 0.9.5. +# Generated by GNU Autoconf 2.69 for nftables 0.9.6. # # Report bugs to . # @@ -590,8 +590,8 @@ # Identity of this package. PACKAGE_NAME='nftables' PACKAGE_TARNAME='nftables' -PACKAGE_VERSION='0.9.5' -PACKAGE_STRING='nftables 0.9.5' +PACKAGE_VERSION='0.9.6' +PACKAGE_STRING='nftables 0.9.6' PACKAGE_BUGREPORT='netfilter-de...@vger.kernel.org' PACKAGE_URL='' @@ -1373,7 +1373,7 @@ # Omit some internal or obsolete options to make the list less imposing. # This message is too long to be a string in the A/UX 3.1 sh. cat <<_ACEOF -\`configure' configures nftables 0.9.5 to adapt to many kinds of systems. +\`configure' configures nftables 0.9.6 to adapt to many kinds of systems. Usage: $0 [OPTION]... [VAR=VALUE]... @@ -1444,7 +1444,7 @@ if test -n "$ac_init_help"; then case $ac_init_help in - short | recursive ) echo "Configuration of nftables 0.9.5:";; + short | recursive ) echo "Configuration of nftables 0.9.6:";; esac cat <<\_ACEOF @@ -1585,7 +1585,7 @@ test -n "$ac_init_help" && exit $ac_status if $ac_init_version; then cat <<\_ACEOF -nftables configure 0.9.5 +nftables configure 0.9.6 generated by GNU Autoconf 2.69 Copyright (C) 2012 Free Software Foundation, Inc. @@ -1863,7 +1863,7 @@ This file contains any messages produced by compilers while running configure, to aid debugging if configure makes a mistake. -It was created by nftables $as_me 0.9.5, which was +It was created by nftables $as_me 0.9.6, which was generated by GNU Autoconf 2.69. Invocation command line was $ $0 $@ @@ -2212,7 +2212,7 @@ -$as_echo "#define RELEASE_NAME \"Capital Idea\"" >>confdefs.h +$as_echo "#define RELEASE_NAME \"Capital Idea #2\"" >>confdefs.h ac_aux_dir= @@ -2731,7 +2731,7 @@ # Define the identity of the package. PACKAGE='nftables' - VERSION='0.9.5' + VERSION='0.9.6' cat >>confdefs.h <<_ACEOF @@ -14019,7 +14019,7 @@ # report actual input values of CONFIG_FILES etc. instead of their # values after options handling. ac_log=" -This file was extended by nftables $as_me 0.9.5, which was +This file was extended by nftables $as_me 0.9.6, which was generated by GNU Autoconf 2.69. Invocation command line was CONFIG_FILES= $CONFIG_FILES @@ -14085,7 +14085,7 @@ cat >>$CONFIG_STATUS <<_ACEOF || ac_write_fail=1 ac_cs_config="`$as_echo "$ac_configure_args" | sed 's/^ //; s/[\\""\`\$]/&/g'`" ac_cs_version="\\ -nftables config.status 0.9.5 +nftables config.status 0.9.6 configured by $0, generated by GNU Autoconf 2.69, with options \\"\$ac_cs_config\\" diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/nftables-0.9.5/configure.ac new/nftables-0.9.6/configure.ac --- old/nftables-0.9.5/configure.ac 2020-06-06 12:00:22.611435558 +0200 +++ new/nftables-0.9.6/configure.ac 2020-06-15 22:23:34.853457902 +0200 @@ -1,5 +1,5 @@ -AC_INIT([nftables], [0.9.5],
commit nftables for openSUSE:Factory
Hello community, here is the log from the commit of package nftables for openSUSE:Factory checked in at 2020-06-11 10:01:11 Comparing /work/SRC/openSUSE:Factory/nftables (Old) and /work/SRC/openSUSE:Factory/.nftables.new.3606 (New) Package is "nftables" Thu Jun 11 10:01:11 2020 rev:20 rq:812117 version:0.9.5 Changes: --- /work/SRC/openSUSE:Factory/nftables/nftables.changes2020-05-09 19:52:24.872845629 +0200 +++ /work/SRC/openSUSE:Factory/.nftables.new.3606/nftables.changes 2020-06-11 10:01:31.938548806 +0200 @@ -1,0 +2,13 @@ +Sat Jun 6 12:03:35 UTC 2020 - Jan Engelhardt + +- Update to release 0.9.5 + * Support for set counters. + * Support for restoring set element counters via nft -f. + * Counter support for flowtables. + * typeof concatenations support for sets. + * Support for concatenated ranges in anonymous sets. + * Allow to reject packets with 802.1q from the bridge family. + * Support for matching on the conntrack ID. +- Drop anonset-crashfix.patch (upstream solved differently) + +--- Old: anonset-crashfix.patch nftables-0.9.4.tar.bz2 nftables-0.9.4.tar.bz2.sig New: nftables-0.9.5.tar.bz2 nftables-0.9.5.tar.bz2.sig Other differences: -- ++ nftables.spec ++ --- /var/tmp/diff_new_pack.BKjJ9Q/_old 2020-06-11 10:01:33.210552903 +0200 +++ /var/tmp/diff_new_pack.BKjJ9Q/_new 2020-06-11 10:01:33.214552916 +0200 @@ -17,7 +17,7 @@ Name: nftables -Version:0.9.4 +Version:0.9.5 Release:0 Summary:Userspace utility to access the nf_tables packet filter License:GPL-2.0-only @@ -28,7 +28,6 @@ Source: http://ftp.netfilter.org/pub/nftables/nftables-%version.tar.bz2 Source2: http://ftp.netfilter.org/pub/nftables/nftables-%version.tar.bz2.sig Source3:%name.keyring -Patch1: anonset-crashfix.patch BuildRequires: asciidoc BuildRequires: bison BuildRequires: flex @@ -38,7 +37,7 @@ BuildRequires: readline-devel BuildRequires: pkgconfig(jansson) BuildRequires: pkgconfig(libmnl) >= 1.0.3 -BuildRequires: pkgconfig(libnftnl) >= 1.1.6 +BuildRequires: pkgconfig(libnftnl) >= 1.1.7 BuildRequires: pkgconfig(xtables) >= 1.6.1 %description ++ nftables-0.9.4.tar.bz2 -> nftables-0.9.5.tar.bz2 ++ 35780 lines of diff (skipped)
commit nftables for openSUSE:Factory
Hello community,
here is the log from the commit of package nftables for openSUSE:Factory
checked in at 2020-05-09 19:52:16
Comparing /work/SRC/openSUSE:Factory/nftables (Old)
and /work/SRC/openSUSE:Factory/.nftables.new.2738 (New)
Package is "nftables"
Sat May 9 19:52:16 2020 rev:19 rq:801122 version:0.9.4
Changes:
--- /work/SRC/openSUSE:Factory/nftables/nftables.changes2020-04-07
10:20:31.137775600 +0200
+++ /work/SRC/openSUSE:Factory/.nftables.new.2738/nftables.changes
2020-05-09 19:52:24.872845629 +0200
@@ -1,0 +2,5 @@
+Thu May 7 11:41:07 UTC 2020 - Jan Engelhardt
+
+- Add anonset-crashfix.patch [boo#1171321]
+
+---
New:
anonset-crashfix.patch
Other differences:
--
++ nftables.spec ++
--- /var/tmp/diff_new_pack.fK4W5o/_old 2020-05-09 19:52:25.892847819 +0200
+++ /var/tmp/diff_new_pack.fK4W5o/_new 2020-05-09 19:52:25.896847827 +0200
@@ -28,6 +28,7 @@
Source: http://ftp.netfilter.org/pub/nftables/nftables-%version.tar.bz2
Source2:
http://ftp.netfilter.org/pub/nftables/nftables-%version.tar.bz2.sig
Source3:%name.keyring
+Patch1: anonset-crashfix.patch
BuildRequires: asciidoc
BuildRequires: bison
BuildRequires: flex
@@ -78,7 +79,7 @@
A Python module for nftables.
%prep
-%setup -q
+%autosetup -p1
%build
mkdir bin
++ anonset-crashfix.patch ++
>From pa...@netfilter.org Thu May 7 13:29:26 2020
Date: Thu, 7 May 2020 13:29:19
From: Pablo Neira Ayuso
To: netfilter-de...@vger.kernel.org
Cc: jeng...@inai.de
Subject: [PATCH nft] mnl: fix error rule reporting with missing table/chain and
anonymous sets
Program received signal SIGSEGV, Segmentation fault.
0x77f64f1e in erec_print (octx=0xd2c0, erec=0xfcf0,
debug_mask=0) at erec.c:95
95 switch (indesc->type) {
(gdb) bt
buf=0xdb20 "add rule inet traffic-filter input tcp dport { 22, 80,
443 } accept") at libnftables.c:459
(gdb) p indesc
$1 = (const struct input_descriptor *) 0x0
Closes: http://bugzilla.opensuse.org/show_bug.cgi?id=1171321
Fixes: 086ec6f30c96 ("mnl: extended error support for create command")
Reported-by: Jan Engelhardt
Signed-off-by: Pablo Neira Ayuso
---
src/mnl.c | 5 -
1 file changed, 4 insertions(+), 1 deletion(-)
diff --git a/src/mnl.c b/src/mnl.c
index 94e80261afb7..9ce4072859b1 100644
--- a/src/mnl.c
+++ b/src/mnl.c
@@ -1048,7 +1048,10 @@ int mnl_nft_set_add(struct netlink_ctx *ctx, struct cmd
*cmd,
cmd_add_loc(cmd, nlh->nlmsg_len, >table.location);
mnl_attr_put_strz(nlh, NFTA_SET_TABLE, h->table.name);
- cmd_add_loc(cmd, nlh->nlmsg_len, >set.location);
+ if (set_is_anonymous(set->flags))
+ cmd_add_loc(cmd, nlh->nlmsg_len, >location);
+ else
+ cmd_add_loc(cmd, nlh->nlmsg_len, >set.location);
mnl_attr_put_strz(nlh, NFTA_SET_NAME, h->set.name);
nftnl_set_nlmsg_build_payload(nlh, nls);
--
2.20.1
commit nftables for openSUSE:Factory
Hello community, here is the log from the commit of package nftables for openSUSE:Factory checked in at 2020-04-07 10:20:26 Comparing /work/SRC/openSUSE:Factory/nftables (Old) and /work/SRC/openSUSE:Factory/.nftables.new.3248 (New) Package is "nftables" Tue Apr 7 10:20:26 2020 rev:18 rq:790695 version:0.9.4 Changes: --- /work/SRC/openSUSE:Factory/nftables/nftables.changes2019-12-23 22:34:10.893735396 +0100 +++ /work/SRC/openSUSE:Factory/.nftables.new.3248/nftables.changes 2020-04-07 10:20:31.137775600 +0200 @@ -1,0 +2,7 @@ +Wed Apr 1 18:48:56 UTC 2020 - Jan Engelhardt + +- Update to release 0.9.4 + * Add a helper for concat expression handling. + * Add "typeof" build/parse/print support. + +--- Old: nftables-0.9.3.tar.bz2 nftables-0.9.3.tar.bz2.sig New: nftables-0.9.4.tar.bz2 nftables-0.9.4.tar.bz2.sig Other differences: -- ++ nftables.spec ++ --- /var/tmp/diff_new_pack.xYEbHu/_old 2020-04-07 10:20:31.933776485 +0200 +++ /var/tmp/diff_new_pack.xYEbHu/_new 2020-04-07 10:20:31.937776489 +0200 @@ -1,7 +1,7 @@ # # spec file for package nftables # -# Copyright (c) 2019 SUSE LLC +# Copyright (c) 2020 SUSE LLC # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -17,7 +17,7 @@ Name: nftables -Version:0.9.3 +Version:0.9.4 Release:0 Summary:Userspace utility to access the nf_tables packet filter License:GPL-2.0-only @@ -37,7 +37,7 @@ BuildRequires: readline-devel BuildRequires: pkgconfig(jansson) BuildRequires: pkgconfig(libmnl) >= 1.0.3 -BuildRequires: pkgconfig(libnftnl) >= 1.1.4 +BuildRequires: pkgconfig(libnftnl) >= 1.1.6 BuildRequires: pkgconfig(xtables) >= 1.6.1 %description ++ nftables-0.9.3.tar.bz2 -> nftables-0.9.4.tar.bz2 ++ 36960 lines of diff (skipped)
commit nftables for openSUSE:Factory
Hello community,
here is the log from the commit of package nftables for openSUSE:Factory
checked in at 2019-12-23 22:33:58
Comparing /work/SRC/openSUSE:Factory/nftables (Old)
and /work/SRC/openSUSE:Factory/.nftables.new.6675 (New)
Package is "nftables"
Mon Dec 23 22:33:58 2019 rev:17 rq:755181 version:0.9.3
Changes:
--- /work/SRC/openSUSE:Factory/nftables/nftables.changes2019-08-27
15:21:42.536831122 +0200
+++ /work/SRC/openSUSE:Factory/.nftables.new.6675/nftables.changes
2019-12-23 22:34:10.893735396 +0100
@@ -1,0 +2,17 @@
+Mon Dec 9 09:39:52 UTC 2019 - Jan Engelhardt
+
+- Add json, python [boo#1158723]
+
+---
+Tue Dec 3 09:09:28 UTC 2019 - Jan Engelhardt
+
+- Update to release 0.9.3
+ * meta: Introduce new conditions "time", "day" and "hour".
+ * src: add ability to set/get secmarks to/from connection.
+ * flowtable: add support for named flowtable listing.
+ * flowtable: add support for delete command by handle.
+ * json: add support for element deletion.
+ * Add `-T` as the short option for `--numeric-time`.
+ * meta: add ibrpvid and ibrvproto support
+
+---
Old:
nftables-0.9.2.tar.bz2
nftables-0.9.2.tar.bz2.sig
New:
nftables-0.9.3.tar.bz2
nftables-0.9.3.tar.bz2.sig
nftables.keyring
Other differences:
--
++ nftables.spec ++
--- /var/tmp/diff_new_pack.QsQcQl/_old 2019-12-23 22:34:11.529735671 +0100
+++ /var/tmp/diff_new_pack.QsQcQl/_new 2019-12-23 22:34:11.529735671 +0100
@@ -1,7 +1,7 @@
#
# spec file for package nftables
#
-# Copyright (c) 2019 SUSE LINUX GmbH, Nuernberg, Germany.
+# Copyright (c) 2019 SUSE LLC
#
# All modifications and additions to the file contributed by third parties
# remain the property of their copyright owners, unless otherwise agreed
@@ -17,7 +17,7 @@
Name: nftables
-Version:0.9.2
+Version:0.9.3
Release:0
Summary:Userspace utility to access the nf_tables packet filter
License:GPL-2.0-only
@@ -27,12 +27,15 @@
#Git-Clone:git://git.netfilter.org/nftables
Source: http://ftp.netfilter.org/pub/nftables/nftables-%version.tar.bz2
Source2:
http://ftp.netfilter.org/pub/nftables/nftables-%version.tar.bz2.sig
+Source3:%name.keyring
BuildRequires: asciidoc
BuildRequires: bison
BuildRequires: flex
BuildRequires: gmp-devel
BuildRequires: pkg-config >= 0.21
+BuildRequires: python3-base
BuildRequires: readline-devel
+BuildRequires: pkgconfig(jansson)
BuildRequires: pkgconfig(libmnl) >= 1.0.3
BuildRequires: pkgconfig(libnftnl) >= 1.1.4
BuildRequires: pkgconfig(xtables) >= 1.6.1
@@ -67,6 +70,13 @@
This package contains the header files for the library.
+%package -n python3-nftables
+Summary:Python interface for nftables
+Group: Development/Languages/Python
+
+%description -n python3-nftables
+A Python module for nftables.
+
%prep
%setup -q
@@ -78,7 +88,8 @@
pushd obj/
%define _configure ../configure
%configure --disable-silent-rules --disable-static --docdir="%_docdir/%name" \
- --includedir="%_includedir/%name" --disable-python
+ --includedir="%_includedir/%name" --with-json \
+ --enable-python --with-python-bin="$(which python3)"
make %{?_smp_mflags}
popd
@@ -93,7 +104,6 @@
%postun -n libnftables1 -p /sbin/ldconfig
%files
-%defattr(-,root,root)
%license COPYING
%_sbindir/nft
%_mandir/man5/*.5*
@@ -109,4 +119,7 @@
%_libdir/pkgconfig/*.pc
%_mandir/man3/*.3*
+%files -n python3-nftables
+%python3_sitelib/nftables*
+
%changelog
++ nftables-0.9.2.tar.bz2 -> nftables-0.9.3.tar.bz2 ++
29164 lines of diff (skipped)
++ nftables.keyring ++
pub 4096R/0xA4111F89BB5F58CC 2010-10-21 [expires: 2015-10-20]
Key fingerprint = 57FF 5E9C 9AA6 7A86 0B55 7AF7 A411 1F89 BB5F 58CC
uid [ expired] Netfilter Core Team
sub 4096R/0x0FD3A13A04B92F5C 2010-10-21 [expires: 2015-10-20]
pub 4096R/0xAB4655A126D292E4 2015-10-19 [expires: 2020-10-17]
Key fingerprint = C09D B206 3F1D 7034 BA61 52AD AB46 55A1 26D2 92E4
uid [ unknown] Netfilter Core Team
sub 4096R/0xE3B0B6BAE3AAA39E 2015-10-19 [expires: 2020-10-17]
-BEGIN PGP PUBLIC KEY BLOCK-
mQINBEzAS5EBEADVlGm+KwODJcVmP33HTCbn/eP8obZbgu+3Z1CYRklF8V43vC6D
8Jfk7fjD4/gWbAKZxriOESXVAN7mp0Fho4+Ga+pxWeLIET9tVM5xbNFK1p9R3XCK
p5SrugG+tGhizTR9b/1YCMVRz/yX3aDtC7lwObas4hkr5BqhphjvlkjFE7us32by
43LPpFj2yUpp1VdOf6gxl03kAgJg08h9J7a+n9KHQeAhIpXSRFq3tXiTdXQlovsv
ckwBjO0m8P2d1Z8/UYwXQgXzuO8W8EqaUSR95nDwl7UnilnKJm2fGvNg3A6PfCSk
3KdeEBZ45SRfMTPsuC5C4T0Az75h3HFR6YSae46ymg7d4ZA/Bd5K4hvp4PdYrfCi
commit nftables for openSUSE:Factory
Hello community,
here is the log from the commit of package nftables for openSUSE:Factory
checked in at 2019-08-27 15:21:40
Comparing /work/SRC/openSUSE:Factory/nftables (Old)
and /work/SRC/openSUSE:Factory/.nftables.new.7948 (New)
Package is "nftables"
Tue Aug 27 15:21:40 2019 rev:16 rq:724575 version:0.9.2
Changes:
--- /work/SRC/openSUSE:Factory/nftables/nftables.changes2019-02-04
21:22:13.131642442 +0100
+++ /work/SRC/openSUSE:Factory/.nftables.new.7948/nftables.changes
2019-08-27 15:21:42.536831122 +0200
@@ -1,0 +2,8 @@
+Mon Aug 19 12:37:45 UTC 2019 - Jan Engelhardt
+
+- Update to new upstream release 0.9.2
+ * Transport header port matching, e.g. "th dport 53"
+ * Support for matching on IPv4 options
+ * Support for synproxy
+
+---
Old:
nftables-0.9.0.tar.bz2
nftables-0.9.0.tar.bz2.sig
New:
nftables-0.9.2.tar.bz2
nftables-0.9.2.tar.bz2.sig
Other differences:
--
++ nftables.spec ++
--- /var/tmp/diff_new_pack.LCZOdW/_old 2019-08-27 15:21:43.412830681 +0200
+++ /var/tmp/diff_new_pack.LCZOdW/_new 2019-08-27 15:21:43.424830675 +0200
@@ -1,7 +1,7 @@
#
# spec file for package nftables
#
-# Copyright (c) 2018 SUSE LINUX GmbH, Nuernberg, Germany.
+# Copyright (c) 2019 SUSE LINUX GmbH, Nuernberg, Germany.
#
# All modifications and additions to the file contributed by third parties
# remain the property of their copyright owners, unless otherwise agreed
@@ -12,56 +12,54 @@
# license that conforms to the Open Source Definition (Version 1.9)
# published by the Open Source Initiative.
-# Please submit bugfixes or comments via http://bugs.opensuse.org/
+# Please submit bugfixes or comments via https://bugs.opensuse.org/
#
Name: nftables
-Version:0.9.0
+Version:0.9.2
Release:0
Summary:Userspace utility to access the nf_tables packet filter
License:GPL-2.0-only
Group: Productivity/Networking/Security
-Url:http://netfilter.org/projects/nftables/
+URL:https://netfilter.org/projects/nftables/
#Git-Clone:git://git.netfilter.org/nftables
Source: http://ftp.netfilter.org/pub/nftables/nftables-%version.tar.bz2
Source2:
http://ftp.netfilter.org/pub/nftables/nftables-%version.tar.bz2.sig
-BuildRoot: %{_tmppath}/%{name}-%{version}-build
+BuildRequires: asciidoc
BuildRequires: bison
-BuildRequires: docbook2x
BuildRequires: flex
BuildRequires: gmp-devel
BuildRequires: pkg-config >= 0.21
BuildRequires: readline-devel
-BuildRequires: xsltproc
BuildRequires: pkgconfig(libmnl) >= 1.0.3
-BuildRequires: pkgconfig(libnftnl) >= 1.1.1
+BuildRequires: pkgconfig(libnftnl) >= 1.1.4
BuildRequires: pkgconfig(xtables) >= 1.6.1
%description
nf_tables is a firewalling mechanism in the Linux kernel, running
-independently of, and thus parallel to, ip_tables, ip6_tables,
+independently of and parallel to ip_tables, ip6_tables,
arp_tables and ebtables. nftables is the corresponsing userspace
frontend.
-nftables features support for sets and dictionaries of arbitrary
-types, support for different protocols, meta data types, access to
-connection tracking and NAT, logging, atomic incremental and full
-ruleset updates.
+The nftables frontend features support for sets and dictionaries of arbitrary
+types, meta data types, atomic incremental and full ruleset updates, and,
+similar to iptables, support for different protocols, access to connection
+tracking and NAT and logging.
-%package -n libnftables0
+%package -n libnftables1
Summary:nftables firewalling command interface
Group: System/Libraries
-%description -n libnftables0
+%description -n libnftables1
libnftables is the nftables command line interface placed into a
library.
%package devel
Summary:Development files for the nftables command line interface
Group: Development/Libraries/C and C++
-Requires: libnftables0 = %version
+Requires: libnftables1 = %version
%description devel
libnftables is the nftables command line interface placed into a
@@ -80,7 +78,7 @@
pushd obj/
%define _configure ../configure
%configure --disable-silent-rules --disable-static --docdir="%_docdir/%name" \
- --includedir="%_includedir/%name"
+ --includedir="%_includedir/%name" --disable-python
make %{?_smp_mflags}
popd
@@ -91,22 +89,24 @@
mkdir -p "$b/%_docdir/%name/examples"
mv "$b/%_sysconfdir/nftables"/* "$b/%_docdir/%name/examples/"
-%post -n libnftables0 -p /sbin/ldconfig
-%postun -n libnftables0 -p /sbin/ldconfig
+%post -n libnftables1 -p /sbin/ldconfig
+%postun -n libnftables1 -p /sbin/ldconfig
%files
commit nftables for openSUSE:Factory
Hello community,
here is the log from the commit of package nftables for openSUSE:Factory
checked in at 2019-02-04 21:22:11
Comparing /work/SRC/openSUSE:Factory/nftables (Old)
and /work/SRC/openSUSE:Factory/.nftables.new.28833 (New)
Package is "nftables"
Mon Feb 4 21:22:11 2019 rev:15 rq:667312 version:0.9.0
Changes:
--- /work/SRC/openSUSE:Factory/nftables/nftables.changes2018-07-14
20:24:03.676007330 +0200
+++ /work/SRC/openSUSE:Factory/.nftables.new.28833/nftables.changes
2019-02-04 21:22:13.131642442 +0100
@@ -1,0 +2,6 @@
+Sat Jan 19 20:53:09 UTC 2019 - Stefan BrĂ¼ns
+
+- Remove unused dblatex BuildRequires, only needed for the optional
+ and disabled PDF generation (same contents as shipped manpage).
+
+---
Other differences:
--
++ nftables.spec ++
--- /var/tmp/diff_new_pack.tqKhhi/_old 2019-02-04 21:22:13.923642251 +0100
+++ /var/tmp/diff_new_pack.tqKhhi/_new 2019-02-04 21:22:13.927642250 +0100
@@ -29,7 +29,6 @@
Source2:
http://ftp.netfilter.org/pub/nftables/nftables-%version.tar.bz2.sig
BuildRoot: %{_tmppath}/%{name}-%{version}-build
BuildRequires: bison
-BuildRequires: dblatex
BuildRequires: docbook2x
BuildRequires: flex
BuildRequires: gmp-devel
commit nftables for openSUSE:Factory
Hello community, here is the log from the commit of package nftables for openSUSE:Factory checked in at 2018-07-14 20:24:00 Comparing /work/SRC/openSUSE:Factory/nftables (Old) and /work/SRC/openSUSE:Factory/.nftables.new (New) Package is "nftables" Sat Jul 14 20:24:00 2018 rev:14 rq:621107 version:0.9.0 Changes: --- /work/SRC/openSUSE:Factory/nftables/nftables.changes2018-06-05 12:53:39.759987398 +0200 +++ /work/SRC/openSUSE:Factory/.nftables.new/nftables.changes 2018-07-14 20:24:03.676007330 +0200 @@ -1,0 +2,10 @@ +Sat Jun 9 07:28:57 UTC 2018 - jeng...@inai.de + +- Update to new upstream release 0.9.0 + * Support to check if packet matches an existing socket. + * Support to limit number of active connections by arbitrary +criteria, such as ip addresses, networks, conntrack zones or +any combination thereof. + * Added support for "audit" logging. + +--- Old: nftables-0.8.5.tar.bz2 nftables-0.8.5.tar.bz2.sig New: nftables-0.9.0.tar.bz2 nftables-0.9.0.tar.bz2.sig Other differences: -- ++ nftables.spec ++ --- /var/tmp/diff_new_pack.PBdkNs/_old 2018-07-14 20:24:04.188008646 +0200 +++ /var/tmp/diff_new_pack.PBdkNs/_new 2018-07-14 20:24:04.196008667 +0200 @@ -17,7 +17,7 @@ Name: nftables -Version:0.8.5 +Version:0.9.0 Release:0 Summary:Userspace utility to access the nf_tables packet filter License:GPL-2.0-only @@ -37,8 +37,8 @@ BuildRequires: readline-devel BuildRequires: xsltproc BuildRequires: pkgconfig(libmnl) >= 1.0.3 -BuildRequires: pkgconfig(libnftnl) >= 1.1.0 -BuildRequires: pkgconfig(xtables) >= 1.6.0 +BuildRequires: pkgconfig(libnftnl) >= 1.1.1 +BuildRequires: pkgconfig(xtables) >= 1.6.1 %description nf_tables is a firewalling mechanism in the Linux kernel, running ++ nftables-0.8.5.tar.bz2 -> nftables-0.9.0.tar.bz2 ++ 65738 lines of diff (skipped)
commit nftables for openSUSE:Factory
Hello community,
here is the log from the commit of package nftables for openSUSE:Factory
checked in at 2018-06-05 12:53:37
Comparing /work/SRC/openSUSE:Factory/nftables (Old)
and /work/SRC/openSUSE:Factory/.nftables.new (New)
Package is "nftables"
Tue Jun 5 12:53:37 2018 rev:13 rq:614163 version:0.8.5
Changes:
--- /work/SRC/openSUSE:Factory/nftables/nftables.changes2018-05-11
14:27:29.189811131 +0200
+++ /work/SRC/openSUSE:Factory/.nftables.new/nftables.changes 2018-06-05
12:53:39.759987398 +0200
@@ -1,0 +2,9 @@
+Fri May 11 07:30:10 UTC 2018 - jeng...@inai.de
+
+- Update to new upstream release 0.8.5
+ * support to add/insert a rule at a given index position
+ * meter statement now supports a configureable upper max size
+ * timeouts for sets can now be specified in milliseconds
+ * re-add iptables-like empty skeleton rulesets
+
+---
Old:
nftables-0.8.4.tar.bz2
nftables-0.8.4.tar.bz2.sig
New:
nftables-0.8.5.tar.bz2
nftables-0.8.5.tar.bz2.sig
Other differences:
--
++ nftables.spec ++
--- /var/tmp/diff_new_pack.Mos37C/_old 2018-06-05 12:53:40.511959856 +0200
+++ /var/tmp/diff_new_pack.Mos37C/_new 2018-06-05 12:53:40.515959709 +0200
@@ -17,7 +17,7 @@
Name: nftables
-Version:0.8.4
+Version:0.8.5
Release:0
Summary:Userspace utility to access the nf_tables packet filter
License:GPL-2.0-only
@@ -46,10 +46,29 @@
arp_tables and ebtables. nftables is the corresponsing userspace
frontend.
-nftables features native support for sets and dictionaries of
-arbitrary types, support for many different protocols, meta data
-types, connection tracking, NAT setup, logging, atomic incremental
-and full ruleset updates.
+nftables features support for sets and dictionaries of arbitrary
+types, support for different protocols, meta data types, access to
+connection tracking and NAT, logging, atomic incremental and full
+ruleset updates.
+
+%package -n libnftables0
+Summary:nftables firewalling command interface
+Group: System/Libraries
+
+%description -n libnftables0
+libnftables is the nftables command line interface placed into a
+library.
+
+%package devel
+Summary:Development files for the nftables command line interface
+Group: Development/Libraries/C and C++
+Requires: libnftables0 = %version
+
+%description devel
+libnftables is the nftables command line interface placed into a
+library.
+
+This package contains the header files for the library.
%prep
%setup -q
@@ -61,7 +80,8 @@
mkdir obj
pushd obj/
%define _configure ../configure
-%configure --disable-silent-rules --disable-static --docdir="%_docdir/%name"
+%configure --disable-silent-rules --disable-static --docdir="%_docdir/%name" \
+ --includedir="%_includedir/%name"
make %{?_smp_mflags}
popd
@@ -69,17 +89,25 @@
b="%buildroot"
%make_install -C obj
rm -f "%buildroot/%_libdir"/*.la
-# No headers, so it is quite pointless to have.
-rm -f "%buildroot/%_libdir"/*.so "%buildroot/%_libdir/pkgconfig"/*.pc
+mkdir -p "$b/%_docdir/%name/examples"
+mv "$b/%_sysconfdir/nftables"/* "$b/%_docdir/%name/examples/"
-%post -p /sbin/ldconfig
-%postun -p /sbin/ldconfig
+%post -n libnftables0 -p /sbin/ldconfig
+%postun -n libnftables0 -p /sbin/ldconfig
%files
%defattr(-,root,root)
-%_libdir/libnftables.so.*
+%license COPYING
%_sbindir/nft
%_mandir/man8/nft*
-%doc COPYING
+%_docdir/%name/
+
+%files -n libnftables0
+%_libdir/libnftables.so.*
+
+%files devel
+%_includedir/%name/
+%_libdir/libnftables.so
+%_libdir/pkgconfig/*.pc
%changelog
++ nftables-0.8.4.tar.bz2 -> nftables-0.8.5.tar.bz2 ++
25412 lines of diff (skipped)
commit nftables for openSUSE:Factory
Hello community,
here is the log from the commit of package nftables for openSUSE:Factory
checked in at 2018-05-11 14:27:25
Comparing /work/SRC/openSUSE:Factory/nftables (Old)
and /work/SRC/openSUSE:Factory/.nftables.new (New)
Package is "nftables"
Fri May 11 14:27:25 2018 rev:12 rq:602954 version:0.8.4
Changes:
--- /work/SRC/openSUSE:Factory/nftables/nftables.changes2018-03-04
12:52:57.066831971 +0100
+++ /work/SRC/openSUSE:Factory/.nftables.new/nftables.changes 2018-05-11
14:27:29.189811131 +0200
@@ -1,0 +2,18 @@
+Wed May 2 06:08:00 UTC 2018 - jeng...@inai.de
+
+- Update to new upstream release 0.8.4
+ * Support to match IPv6 segment routing headers.
+ * New "meta ibrname" and "meta obrname" arguments to match the
+name of the logical bridge a packet is passing through.
+These new names replace the old (misnamed) "ibriport"/"obriport".
+ * `nft -a` will now show handle identifier for all objects,
+including tables and chains.
+ * nft can now delete objects by their handle number.
+ * Support to update maps from the ruleset (packet path).
+ * the "--echo" option now prints handle id for tables and
+object too.
+ * `nft -f -` will now read from standard input
+ * Support for flow tables, cf. man page or
+https://lwn.net/Articles/738214/ .
+
+---
Old:
nftables-0.8.3.tar.bz2
nftables-0.8.3.tar.bz2.sig
New:
nftables-0.8.4.tar.bz2
nftables-0.8.4.tar.bz2.sig
Other differences:
--
++ nftables.spec ++
--- /var/tmp/diff_new_pack.z494vg/_old 2018-05-11 14:27:29.921784535 +0200
+++ /var/tmp/diff_new_pack.z494vg/_new 2018-05-11 14:27:29.925784390 +0200
@@ -17,7 +17,7 @@
Name: nftables
-Version:0.8.3
+Version:0.8.4
Release:0
Summary:Userspace utility to access the nf_tables packet filter
License:GPL-2.0-only
@@ -37,11 +37,11 @@
BuildRequires: readline-devel
BuildRequires: xsltproc
BuildRequires: pkgconfig(libmnl) >= 1.0.3
-BuildRequires: pkgconfig(libnftnl) >= 1.0.9
+BuildRequires: pkgconfig(libnftnl) >= 1.1.0
BuildRequires: pkgconfig(xtables) >= 1.6.0
%description
-nf_tables is a new firewalling mechanism in the Linux kernel, running
+nf_tables is a firewalling mechanism in the Linux kernel, running
independently of, and thus parallel to, ip_tables, ip6_tables,
arp_tables and ebtables. nftables is the corresponsing userspace
frontend.
@@ -61,17 +61,23 @@
mkdir obj
pushd obj/
%define _configure ../configure
-%configure --disable-silent-rules --docdir="%_docdir/%name"
+%configure --disable-silent-rules --disable-static --docdir="%_docdir/%name"
make %{?_smp_mflags}
popd
%install
b="%buildroot"
%make_install -C obj
-rm -f "%buildroot/%_libdir/pkgconfig"/*.pc
+rm -f "%buildroot/%_libdir"/*.la
+# No headers, so it is quite pointless to have.
+rm -f "%buildroot/%_libdir"/*.so "%buildroot/%_libdir/pkgconfig"/*.pc
+
+%post -p /sbin/ldconfig
+%postun -p /sbin/ldconfig
%files
%defattr(-,root,root)
+%_libdir/libnftables.so.*
%_sbindir/nft
%_mandir/man8/nft*
%doc COPYING
++ nftables-0.8.3.tar.bz2 -> nftables-0.8.4.tar.bz2 ++
41141 lines of diff (skipped)
commit nftables for openSUSE:Factory
Hello community, here is the log from the commit of package nftables for openSUSE:Factory checked in at 2018-03-04 12:52:22 Comparing /work/SRC/openSUSE:Factory/nftables (Old) and /work/SRC/openSUSE:Factory/.nftables.new (New) Package is "nftables" Sun Mar 4 12:52:22 2018 rev:11 rq:582292 version:0.8.3 Changes: --- /work/SRC/openSUSE:Factory/nftables/nftables.changes2018-02-05 10:53:25.851128894 +0100 +++ /work/SRC/openSUSE:Factory/.nftables.new/nftables.changes 2018-03-04 12:52:57.066831971 +0100 @@ -1,0 +2,7 @@ +Sat Mar 3 22:59:01 UTC 2018 - jeng...@inai.de + +- Update to new upstream release 0.8.3 + * raw payload support to match headers that do not yet have +received a mnemonic. + +--- Old: nftables-0.8.2.tar.bz2 nftables-0.8.2.tar.bz2.sig New: nftables-0.8.3.tar.bz2 nftables-0.8.3.tar.bz2.sig Other differences: -- ++ nftables.spec ++ --- /var/tmp/diff_new_pack.Sx4kJ9/_old 2018-03-04 12:52:59.438745542 +0100 +++ /var/tmp/diff_new_pack.Sx4kJ9/_new 2018-03-04 12:52:59.442745396 +0100 @@ -17,10 +17,10 @@ Name: nftables -Version:0.8.2 +Version:0.8.3 Release:0 Summary:Userspace utility to access the nf_tables packet filter -License:GPL-2.0 +License:GPL-2.0-only Group: Productivity/Networking/Security Url:http://netfilter.org/projects/nftables/ @@ -41,15 +41,15 @@ BuildRequires: pkgconfig(xtables) >= 1.6.0 %description -nf_tables is the new firewalling infrastructure in the Linux kernel, -intended to replace ip_tables, ip6_tables, arp_tables and ebtables in -the long term. nftables is the corresponsing userspace frontend, -replacing their respective userspace utilities. +nf_tables is a new firewalling mechanism in the Linux kernel, running +independently of, and thus parallel to, ip_tables, ip6_tables, +arp_tables and ebtables. nftables is the corresponsing userspace +frontend. nftables features native support for sets and dictionaries of arbitrary types, support for many different protocols, meta data -types, connection tracking, NAT, logging, atomic incremental and full -ruleset updates. +types, connection tracking, NAT setup, logging, atomic incremental +and full ruleset updates. %prep %setup -q @@ -72,7 +72,6 @@ %files %defattr(-,root,root) -%config %_sysconfdir/nftables %_sbindir/nft %_mandir/man8/nft* %doc COPYING ++ nftables-0.8.2.tar.bz2 -> nftables-0.8.3.tar.bz2 ++ 25145 lines of diff (skipped)
commit nftables for openSUSE:Factory
Hello community, here is the log from the commit of package nftables for openSUSE:Factory checked in at 2018-02-05 10:52:34 Comparing /work/SRC/openSUSE:Factory/nftables (Old) and /work/SRC/openSUSE:Factory/.nftables.new (New) Package is "nftables" Mon Feb 5 10:52:34 2018 rev:10 rq:572303 version:0.8.2 Changes: --- /work/SRC/openSUSE:Factory/nftables/nftables.changes2018-01-24 15:30:56.045156374 +0100 +++ /work/SRC/openSUSE:Factory/.nftables.new/nftables.changes 2018-02-05 10:53:25.851128894 +0100 @@ -1,0 +2,6 @@ +Sat Feb 3 14:26:36 UTC 2018 - jeng...@inai.de + +- Update to new upstream release 0.8.2 + * add secpath support + +--- Old: nftables-0.8.1.tar.bz2 nftables-0.8.1.tar.bz2.sig New: nftables-0.8.2.tar.bz2 nftables-0.8.2.tar.bz2.sig Other differences: -- ++ nftables.spec ++ --- /var/tmp/diff_new_pack.3eLM9X/_old 2018-02-05 10:53:26.491098965 +0100 +++ /var/tmp/diff_new_pack.3eLM9X/_new 2018-02-05 10:53:26.491098965 +0100 @@ -17,7 +17,7 @@ Name: nftables -Version:0.8.1 +Version:0.8.2 Release:0 Summary:Userspace utility to access the nf_tables packet filter License:GPL-2.0 ++ nftables-0.8.1.tar.bz2 -> nftables-0.8.2.tar.bz2 ++ 21536 lines of diff (skipped)
commit nftables for openSUSE:Factory
Hello community, here is the log from the commit of package nftables for openSUSE:Factory checked in at 2018-01-24 15:30:54 Comparing /work/SRC/openSUSE:Factory/nftables (Old) and /work/SRC/openSUSE:Factory/.nftables.new (New) Package is "nftables" Wed Jan 24 15:30:54 2018 rev:9 rq:568524 version:0.8.1 Changes: --- /work/SRC/openSUSE:Factory/nftables/nftables.changes2017-10-24 22:22:44.682189869 +0200 +++ /work/SRC/openSUSE:Factory/.nftables.new/nftables.changes 2018-01-24 15:30:56.045156374 +0100 @@ -1,0 +2,7 @@ +Tue Jan 16 14:16:40 UTC 2018 - jeng...@inai.de + +- Update to new upstream release 0.8.1 + * This release deprecates the "flow table" syntax in favor +of "meter". + +--- Old: nftables-0.8.tar.bz2 nftables-0.8.tar.bz2.sig New: nftables-0.8.1.tar.bz2 nftables-0.8.1.tar.bz2.sig Other differences: -- ++ nftables.spec ++ --- /var/tmp/diff_new_pack.PoFYvk/_old 2018-01-24 15:30:56.837119335 +0100 +++ /var/tmp/diff_new_pack.PoFYvk/_new 2018-01-24 15:30:56.841119148 +0100 @@ -1,7 +1,7 @@ # # spec file for package nftables # -# Copyright (c) 2017 SUSE LINUX GmbH, Nuernberg, Germany. +# Copyright (c) 2018 SUSE LINUX GmbH, Nuernberg, Germany. # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -17,7 +17,7 @@ Name: nftables -Version:0.8 +Version:0.8.1 Release:0 Summary:Userspace utility to access the nf_tables packet filter License:GPL-2.0 @@ -33,14 +33,12 @@ BuildRequires: docbook2x BuildRequires: flex BuildRequires: gmp-devel -BuildRequires: pkgconfig >= 0.21 +BuildRequires: pkg-config >= 0.21 BuildRequires: readline-devel BuildRequires: xsltproc BuildRequires: pkgconfig(libmnl) >= 1.0.3 -BuildRequires: pkgconfig(libnftnl) >= 1.0.8 +BuildRequires: pkgconfig(libnftnl) >= 1.0.9 BuildRequires: pkgconfig(xtables) >= 1.6.0 -Obsoletes: nftables-plus < %version-%release -Provides: nftables-plus = %version-%release %description nf_tables is the new firewalling infrastructure in the Linux kernel, @@ -70,6 +68,7 @@ %install b="%buildroot" %make_install -C obj +rm -f "%buildroot/%_libdir/pkgconfig"/*.pc %files %defattr(-,root,root) ++ nftables-0.8.tar.bz2 -> nftables-0.8.1.tar.bz2 ++ 57018 lines of diff (skipped)
commit nftables for openSUSE:Factory
Hello community,
here is the log from the commit of package nftables for openSUSE:Factory
checked in at 2017-10-24 22:22:19
Comparing /work/SRC/openSUSE:Factory/nftables (Old)
and /work/SRC/openSUSE:Factory/.nftables.new (New)
Package is "nftables"
Tue Oct 24 22:22:19 2017 rev:8 rq:533989 version:0.8
Changes:
--- /work/SRC/openSUSE:Factory/nftables/nftables.changes2017-01-04
19:35:58.968264834 +0100
+++ /work/SRC/openSUSE:Factory/.nftables.new/nftables.changes 2017-10-24
22:22:44.682189869 +0200
@@ -1,0 +2,33 @@
+Fri Oct 13 08:39:41 UTC 2017 - jeng...@inai.de
+
+- Update to new upstream release 0.8
+ * This release contains new features available up to the
+(upcoming) Linux 4.14 kernel release:
+ * Support for stateful objects, these objects are uniquely
+identified by a user-defined name, you can refer to them from
+rules, and there is a well established interface to operate
+with them.
+ * Sort set elements when listing them, from lower to largest.
+ * TCP option matching and mangling support. This includes TCP
+maximum segment size mangling.
+ * Add new "-s" option for listings without stateful information.
+ * Add new -c/--check option for nft, to tests if your ruleset
+loads fine, into the kernel, this is a dry run mode.
+ * Connection tracking helper support.
+ * Add --echo option, to print the handle that the kernel
+allocates to uniquely identify rules.
+ * Conntrack zone support
+ * Symmetric hash support
+ * Add support to include directories from nft natives scripts,
+files are loaded in alphanumerical order.
+ * Allow to check if IPv6 extension header or TCP option exists
+or is missing.
+ * Extend quota support to display used bytes.
+ * Add ct average matching, to match average bytes per packet a
+connection has transferred so far, to map the existing
+feature available in the iptables connbytes match.
+ * Allow to flush maps and flow tables.
+ * Allow to embed set definition into an existing set.
+ * Conntrack event filtering support via rule.
+
+---
Old:
nftables-0.7.tar.bz2
nftables-0.7.tar.bz2.sig
New:
nftables-0.8.tar.bz2
nftables-0.8.tar.bz2.sig
Other differences:
--
++ nftables.spec ++
--- /var/tmp/diff_new_pack.z98Zr0/_old 2017-10-24 22:22:45.230164253 +0200
+++ /var/tmp/diff_new_pack.z98Zr0/_new 2017-10-24 22:22:45.230164253 +0200
@@ -1,7 +1,7 @@
#
# spec file for package nftables
#
-# Copyright (c) 2016 SUSE LINUX GmbH, Nuernberg, Germany.
+# Copyright (c) 2017 SUSE LINUX GmbH, Nuernberg, Germany.
#
# All modifications and additions to the file contributed by third parties
# remain the property of their copyright owners, unless otherwise agreed
@@ -17,14 +17,14 @@
Name: nftables
-Version:0.7
+Version:0.8
Release:0
Summary:Userspace utility to access the nf_tables packet filter
License:GPL-2.0
Group: Productivity/Networking/Security
Url:http://netfilter.org/projects/nftables/
-#Git-Clone:git://git.netfilter.org/nftables
+#Git-Clone:git://git.netfilter.org/nftables
Source: http://ftp.netfilter.org/pub/nftables/nftables-%version.tar.bz2
Source2:
http://ftp.netfilter.org/pub/nftables/nftables-%version.tar.bz2.sig
BuildRoot: %{_tmppath}/%{name}-%{version}-build
@@ -37,7 +37,7 @@
BuildRequires: readline-devel
BuildRequires: xsltproc
BuildRequires: pkgconfig(libmnl) >= 1.0.3
-BuildRequires: pkgconfig(libnftnl) >= 1.0.7
+BuildRequires: pkgconfig(libnftnl) >= 1.0.8
BuildRequires: pkgconfig(xtables) >= 1.6.0
Obsoletes: nftables-plus < %version-%release
Provides: nftables-plus = %version-%release
++ nftables-0.7.tar.bz2 -> nftables-0.8.tar.bz2 ++
80837 lines of diff (skipped)
commit nftables for openSUSE:Factory
Hello community, here is the log from the commit of package nftables for openSUSE:Factory checked in at 2016-06-13 21:55:57 Comparing /work/SRC/openSUSE:Factory/nftables (Old) and /work/SRC/openSUSE:Factory/.nftables.new (New) Package is "nftables" Changes: --- /work/SRC/openSUSE:Factory/nftables/nftables.changes2015-09-27 08:39:40.0 +0200 +++ /work/SRC/openSUSE:Factory/.nftables.new/nftables.changes 2016-06-13 21:56:00.0 +0200 @@ -1,0 +2,10 @@ +Thu Jun 2 18:31:23 UTC 2016 - jeng...@inai.de + +- Update to new upstream release 0.6 +* Rules may be replaced now +* Flow table support (requires Linux >= 4.3) +* Support for tracing +* Ratelimiting now supports units like bytes/second. +* Matchinv VLAN IDs, DSCP/ECN, ICMP RtAdv & RtSol + +--- Old: nftables-0.5.tar.bz2 nftables-0.5.tar.bz2.sig New: nftables-0.6.tar.bz2 nftables-0.6.tar.bz2.sig Other differences: -- ++ nftables.spec ++ --- /var/tmp/diff_new_pack.BMgT6k/_old 2016-06-13 21:56:01.0 +0200 +++ /var/tmp/diff_new_pack.BMgT6k/_new 2016-06-13 21:56:01.0 +0200 @@ -1,7 +1,7 @@ # # spec file for package nftables # -# Copyright (c) 2015 SUSE LINUX GmbH, Nuernberg, Germany. +# Copyright (c) 2016 SUSE LINUX GmbH, Nuernberg, Germany. # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -17,7 +17,7 @@ Name: nftables -Version:0.5 +Version:0.6 Release:0 Summary:Userspace utility to access the nf_tables packet filter License:GPL-2.0 @@ -37,7 +37,7 @@ BuildRequires: readline-devel BuildRequires: xsltproc BuildRequires: pkgconfig(libmnl) >= 1.0.3 -BuildRequires: pkgconfig(libnftnl) >= 1.0.5 +BuildRequires: pkgconfig(libnftnl) >= 1.0.6 Obsoletes: nftables-plus < %version-%release Provides: nftables-plus = %version-%release ++ nftables-0.5.tar.bz2 -> nftables-0.6.tar.bz2 ++ 73735 lines of diff (skipped)
commit nftables for openSUSE:Factory
Hello community,
here is the log from the commit of package nftables for openSUSE:Factory
checked in at 2015-09-27 08:40:13
Comparing /work/SRC/openSUSE:Factory/nftables (Old)
and /work/SRC/openSUSE:Factory/.nftables.new (New)
Package is "nftables"
Changes:
--- /work/SRC/openSUSE:Factory/nftables/nftables.changes2015-05-24
19:34:40.0 +0200
+++ /work/SRC/openSUSE:Factory/.nftables.new/nftables.changes 2015-09-27
08:39:40.0 +0200
@@ -1,0 +2,9 @@
+Thu Sep 17 21:16:31 UTC 2015 - jeng...@inai.de
+
+- Update to new upstream release 0.5
+* Support combinations of two or more selectors to build a tuple
+* Timeout support for sets
+* Dormant flag for tables
+* Default chain policy specifiable on creation
+
+---
Old:
nftables-0.4.tar.bz2
nftables-0.4.tar.bz2.sig
New:
nftables-0.5.tar.bz2
nftables-0.5.tar.bz2.sig
Other differences:
--
++ nftables.spec ++
--- /var/tmp/diff_new_pack.GxsZS0/_old 2015-09-27 08:39:40.0 +0200
+++ /var/tmp/diff_new_pack.GxsZS0/_new 2015-09-27 08:39:40.0 +0200
@@ -1,7 +1,7 @@
#
# spec file for package nftables
#
-# Copyright (c) 2014 SUSE LINUX Products GmbH, Nuernberg, Germany.
+# Copyright (c) 2015 SUSE LINUX GmbH, Nuernberg, Germany.
#
# All modifications and additions to the file contributed by third parties
# remain the property of their copyright owners, unless otherwise agreed
@@ -17,13 +17,14 @@
Name: nftables
-Version:0.4
+Version:0.5
Release:0
Summary:Userspace utility to access the nf_tables packet filter
License:GPL-2.0
Group: Productivity/Networking/Security
Url:http://netfilter.org/projects/nftables/
#Git-Clone:git://git.netfilter.org/nftables
+
Source: http://ftp.netfilter.org/pub/nftables/nftables-%version.tar.bz2
Source2:
http://ftp.netfilter.org/pub/nftables/nftables-%version.tar.bz2.sig
BuildRoot: %{_tmppath}/%{name}-%{version}-build
@@ -36,7 +37,7 @@
BuildRequires: readline-devel
BuildRequires: xsltproc
BuildRequires: pkgconfig(libmnl) >= 1.0.3
-BuildRequires: pkgconfig(libnftnl) >= 1.0.2
+BuildRequires: pkgconfig(libnftnl) >= 1.0.5
Obsoletes: nftables-plus < %version-%release
Provides: nftables-plus = %version-%release
++ nftables-0.4.tar.bz2 -> nftables-0.5.tar.bz2 ++
28399 lines of diff (skipped)
commit nftables for openSUSE:Factory
Hello community,
here is the log from the commit of package nftables for openSUSE:Factory
checked in at 2015-05-24 19:34:39
Comparing /work/SRC/openSUSE:Factory/nftables (Old)
and /work/SRC/openSUSE:Factory/.nftables.new (New)
Package is nftables
Changes:
--- /work/SRC/openSUSE:Factory/nftables/nftables.changes2014-12-17
19:14:44.0 +0100
+++ /work/SRC/openSUSE:Factory/.nftables.new/nftables.changes 2015-05-24
19:34:40.0 +0200
@@ -1,0 +2,7 @@
+Sat May 23 23:06:12 UTC 2015 - mrueck...@suse.de
+
+- set the url to the project page
+- pass --disable-silent-rules to configure to allow gcc post build
+ check to work
+
+---
Other differences:
--
++ nftables.spec ++
--- /var/tmp/diff_new_pack.mCnZ7C/_old 2015-05-24 19:34:41.0 +0200
+++ /var/tmp/diff_new_pack.mCnZ7C/_new 2015-05-24 19:34:41.0 +0200
@@ -22,7 +22,7 @@
Summary:Userspace utility to access the nf_tables packet filter
License:GPL-2.0
Group: Productivity/Networking/Security
-
+Url:http://netfilter.org/projects/nftables/
#Git-Clone:git://git.netfilter.org/nftables
Source: http://ftp.netfilter.org/pub/nftables/nftables-%version.tar.bz2
Source2:
http://ftp.netfilter.org/pub/nftables/nftables-%version.tar.bz2.sig
@@ -61,7 +61,7 @@
mkdir obj
pushd obj/
%define _configure ../configure
-%configure --docdir=%_docdir/%name
+%configure --disable-silent-rules --docdir=%_docdir/%name
make %{?_smp_mflags}
popd
commit nftables for openSUSE:Factory
Hello community,
here is the log from the commit of package nftables for openSUSE:Factory
checked in at 2014-12-17 19:15:37
Comparing /work/SRC/openSUSE:Factory/nftables (Old)
and /work/SRC/openSUSE:Factory/.nftables.new (New)
Package is nftables
Changes:
--- /work/SRC/openSUSE:Factory/nftables/nftables.changes2014-08-13
08:49:00.0 +0200
+++ /work/SRC/openSUSE:Factory/.nftables.new/nftables.changes 2014-12-17
19:14:44.0 +0100
@@ -1,0 +2,14 @@
+Tue Dec 16 01:25:00 UTC 2014 - jeng...@inai.de
+
+- Update to new upstream release 0.4
+* Since Linux 3.18: support for global ruleset operations
+* Since 3.17: full logging support for all the families,
+ including nfnetlink_log
+* 3.16: automatic selection of the optimal set implementation
+* 3.14: reject support for ip, ip6 and inet
+* 3.18: reject support for bridge, and reject icmpx abstraction
+* 3.18: masquerade support
+* 3.19: redirect support
+* Extend meta to support pkttype, cpu and devgroup matching.
+
+---
Old:
nftables-plus-0.3.tar.asc
nftables-plus-0.3.tar.xz
New:
nftables-0.4.tar.bz2
nftables-0.4.tar.bz2.sig
Other differences:
--
++ nftables.spec ++
--- /var/tmp/diff_new_pack.VHfIZ0/_old 2014-12-17 19:14:46.0 +0100
+++ /var/tmp/diff_new_pack.VHfIZ0/_new 2014-12-17 19:14:46.0 +0100
@@ -17,17 +17,15 @@
Name: nftables
-Version:0.3
+Version:0.4
Release:0
Summary:Userspace utility to access the nf_tables packet filter
License:GPL-2.0
Group: Productivity/Networking/Security
#Git-Clone:git://git.netfilter.org/nftables
-#Git-Clone:git://git.inai.de/nftables plus
-#Git-Snapshot: nftables-plus-0.3
-Source: http://xtables.de/files/nftables-plus-%version.tar.xz
-Source2:http://xtables.de/files/nftables-plus-%version.tar.asc
+Source: http://ftp.netfilter.org/pub/nftables/nftables-%version.tar.bz2
+Source2:
http://ftp.netfilter.org/pub/nftables/nftables-%version.tar.bz2.sig
BuildRoot: %{_tmppath}/%{name}-%{version}-build
BuildRequires: bison
BuildRequires: dblatex
@@ -37,8 +35,10 @@
BuildRequires: pkgconfig = 0.21
BuildRequires: readline-devel
BuildRequires: xsltproc
-BuildRequires: pkgconfig(libmnl)
-BuildRequires: pkgconfig(libnftnl) = 1.0
+BuildRequires: pkgconfig(libmnl) = 1.0.3
+BuildRequires: pkgconfig(libnftnl) = 1.0.2
+Obsoletes: nftables-plus %version-%release
+Provides: nftables-plus = %version-%release
%description
nf_tables is the new firewalling infrastructure in the Linux kernel,
@@ -46,38 +46,31 @@
the long term. nftables is the corresponsing userspace frontend,
replacing their respective userspace utilities.
-%package plus
-Summary:Userspace utility to access the nf_tables packet filter
-Group: Productivity/Networking/Security
-Provides: nftables = %version-%release
-
-%description plus
-nf_tables is the new firewalling infrastructure in the Linux kernel,
-intended to replace ip_tables, ip6_tables, arp_tables and ebtables in
-the long term. nftables is the corresponsing userspace frontend,
-replacing their respective userspace utilities.
-
nftables features native support for sets and dictionaries of
arbitrary types, support for many different protocols, meta data
types, connection tracking, NAT, logging, atomic incremental and full
ruleset updates.
%prep
-%setup -qn %name-plus-%version
+%setup -q
%build
mkdir bin
ln -s %_bindir/docbook-to-man bin/docbook2x-man
export PATH=$PATH:$PWD/bin
+mkdir obj
+pushd obj/
+%define _configure ../configure
%configure --docdir=%_docdir/%name
make %{?_smp_mflags}
+popd
%install
b=%buildroot
-make install DESTDIR=$b
+%make_install -C obj
cp -a COPYING $b/%_docdir/%name/
-%files plus
+%files
%defattr(-,root,root)
%config %_sysconfdir/nftables
%_sbindir/nft
++ nftables-plus-0.3.tar.xz - nftables-0.4.tar.bz2 ++
55421 lines of diff (skipped)
--
To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org
For additional commands, e-mail: opensuse-commit+h...@opensuse.org
