commit nftables for openSUSE:Factory
Hello community, here is the log from the commit of package nftables for openSUSE:Factory checked in at 2020-10-30 11:46:08 Comparing /work/SRC/openSUSE:Factory/nftables (Old) and /work/SRC/openSUSE:Factory/.nftables.new.3463 (New) Package is "nftables" Fri Oct 30 11:46:08 2020 rev:22 rq:844349 version:0.9.7 Changes: --- /work/SRC/openSUSE:Factory/nftables/nftables.changes2020-06-18 10:36:59.150520487 +0200 +++ /work/SRC/openSUSE:Factory/.nftables.new.3463/nftables.changes 2020-10-30 11:46:17.369634099 +0100 @@ -1,0 +2,10 @@ +Tue Oct 27 12:08:37 UTC 2020 - Jan Engelhardt + +- Update to release 0.9.7 + * Support for implicit chains + * Support for ingress inet chains + * Support for reject from prerouting chain + * Support for --terse option in json + * Support for the reset command with json + +--- Old: nftables-0.9.6.tar.bz2 nftables-0.9.6.tar.bz2.sig New: nftables-0.9.7.tar.bz2 nftables-0.9.7.tar.bz2.sig Other differences: -- ++ nftables.spec ++ --- /var/tmp/diff_new_pack.jUYTR8/_old 2020-10-30 11:46:17.941634605 +0100 +++ /var/tmp/diff_new_pack.jUYTR8/_new 2020-10-30 11:46:17.945634609 +0100 @@ -17,7 +17,7 @@ Name: nftables -Version:0.9.6 +Version:0.9.7 Release:0 Summary:Userspace utility to access the nf_tables packet filter License:GPL-2.0-only @@ -37,7 +37,7 @@ BuildRequires: readline-devel BuildRequires: pkgconfig(jansson) BuildRequires: pkgconfig(libmnl) >= 1.0.3 -BuildRequires: pkgconfig(libnftnl) >= 1.1.7 +BuildRequires: pkgconfig(libnftnl) >= 1.1.8 BuildRequires: pkgconfig(xtables) >= 1.6.1 %description @@ -90,7 +90,7 @@ %configure --disable-silent-rules --disable-static --docdir="%_docdir/%name" \ --includedir="%_includedir/%name" --with-json \ --enable-python --with-python-bin="$(which python3)" -make %{?_smp_mflags} +%make_build popd %install ++ nftables-0.9.6.tar.bz2 -> nftables-0.9.7.tar.bz2 ++ 32834 lines of diff (skipped) ++ nftables.keyring ++ --- /var/tmp/diff_new_pack.jUYTR8/_old 2020-10-30 11:46:18.713635289 +0100 +++ /var/tmp/diff_new_pack.jUYTR8/_new 2020-10-30 11:46:18.717635292 +0100 @@ -1,107 +1,64 @@ -pub 4096R/0xA4111F89BB5F58CC 2010-10-21 [expires: 2015-10-20] - Key fingerprint = 57FF 5E9C 9AA6 7A86 0B55 7AF7 A411 1F89 BB5F 58CC -uid [ expired] Netfilter Core Team -sub 4096R/0x0FD3A13A04B92F5C 2010-10-21 [expires: 2015-10-20] - -pub 4096R/0xAB4655A126D292E4 2015-10-19 [expires: 2020-10-17] - Key fingerprint = C09D B206 3F1D 7034 BA61 52AD AB46 55A1 26D2 92E4 -uid [ unknown] Netfilter Core Team -sub 4096R/0xE3B0B6BAE3AAA39E 2015-10-19 [expires: 2020-10-17] - -BEGIN PGP PUBLIC KEY BLOCK- -mQINBEzAS5EBEADVlGm+KwODJcVmP33HTCbn/eP8obZbgu+3Z1CYRklF8V43vC6D -8Jfk7fjD4/gWbAKZxriOESXVAN7mp0Fho4+Ga+pxWeLIET9tVM5xbNFK1p9R3XCK -p5SrugG+tGhizTR9b/1YCMVRz/yX3aDtC7lwObas4hkr5BqhphjvlkjFE7us32by -43LPpFj2yUpp1VdOf6gxl03kAgJg08h9J7a+n9KHQeAhIpXSRFq3tXiTdXQlovsv -ckwBjO0m8P2d1Z8/UYwXQgXzuO8W8EqaUSR95nDwl7UnilnKJm2fGvNg3A6PfCSk -3KdeEBZ45SRfMTPsuC5C4T0Az75h3HFR6YSae46ymg7d4ZA/Bd5K4hvp4PdYrfCi -GXen7iK9q5XDpopWb0yCrEVJzKjBjDurvpLtAD0IFWcpB6zwM38AnxVH05J8QOx/ -VCZ4vZJxTKWbpHbdcISSMmVt00VfKorF9DsjiAcBRMBcIvDpJTP4yjvr32W09wLc -d5CIYGrLKhLNysUIJ44AQoTL9yV5aQvCb2EFnoPqCEKQm8onTAGX19PpTDjDPJFt -WyMMUDtiMp2yODuFo1qHjxvqzSVX+Ti2sGpiT1hEz97GAIlbAvmXs/bTb+U+rBnd -6027ooes3cWmBSV5kpz/sMp+nFynrLZ5NDnehPScz3W31oGgSdrGsnnhaQARAQAB +mQINBF+HdQgBEACzteJUJGtj3N6u5mcGh4Nu/9GQfwrrphZuI7jto2N6+ZoURded +660mFLnax7wgIE8ugAa085jwFWbFY3FzGutUs/kDmnqy9WneYNBLIAF3ZTFfY+oi +V1C09bBlHKDj9gSEM2TZ/qU14exKdSloqcMKSdIqLQX27w/D6WmO1crDjOKKN9F2 +zjc3uLjo1gIPrY+Kdld29aI0W4gYvNLOo+ewhVC5Q6ymWOdR3eKaP2HIAt8CYf0t +Sx8ChHdBvXQITDmXoGPLTTiCHBoUzaJ/N8m4AZTuSUTr9g3jUNFmL48OrJjFPhHh +KDY0V59id5nPu4RX3fa/XW+4FNlrthA5V9dQSIPh7r7uHynDtkcCHT5m4mn0NqG3 +dsUqeYQlrWKCVDTfX/WQB3Rq1tgmOssFG9kZkXcVTmis3KFP1ZAahBRB33OJgSfi +WKc/mWLMEQcljbysbJzq74Vrjg44DNK7vhAXGoR35kjj5saduxTywdb3iZhGXEsg +9zqV0uOIfMQsQJQCZTlkqvZibdB3xlRyiCwqlf1eHB2Vo7efWbRIizX2da4c5xUj ++IL1eSPmTV+52x1dYXpn/cSVKJAROtcSmwvMRyjuGOcTNtir0XHCxC5YYBow6tKR +U1hrFiulCMH80HeS+u/g4SpT4lcv+x0DlN5BfWQuN5k5ZzwKb6EQs092qQARAQAB tCxOZXRmaWx0ZXIgQ29yZSBUZWFtIDxjb3JldGVhbUBuZXRmaWx0ZXIub3JnPokC -PgQTAQIAKAUCTMBLkQIbAwUJCWYBgAYLCQgHAwIGFQgCCQoLBBYCAwECHgECF4AA -CgkQpBEfibtfWMzULxAAtGgYeuEqk0F9y4sz6hFJf+fXKSPPrwWTIUXs/sCxlBtS -lgf9oTvk3aT48zsMIfsDsS8yfIUjaK+eedIZW3oJ0lBtwRncZKjks8Od5J7DvEhR -Kpo3cajT1KXJh584IvXN0/BbCdPUI6EQE8n0fEUrSWANfzhuD3qYtX9UUGBq/7i8 -Cf3pGFDeYRjcwWeNZ1T+xbaCKPS5BGlOVhMtauaTBZvTJniB828bOZXd3KrXUeul
commit nftables for openSUSE:Factory
Hello community, here is the log from the commit of package nftables for openSUSE:Factory checked in at 2020-06-18 10:36:08 Comparing /work/SRC/openSUSE:Factory/nftables (Old) and /work/SRC/openSUSE:Factory/.nftables.new.3606 (New) Package is "nftables" Thu Jun 18 10:36:08 2020 rev:21 rq:815268 version:0.9.6 Changes: --- /work/SRC/openSUSE:Factory/nftables/nftables.changes2020-06-11 10:01:31.938548806 +0200 +++ /work/SRC/openSUSE:Factory/.nftables.new.3606/nftables.changes 2020-06-18 10:36:59.150520487 +0200 @@ -1,0 +2,6 @@ +Tue Jun 16 13:37:28 UTC 2020 - Jan Engelhardt + +- Update to release 0.9.6 + * Fix two ASAN runtime errors + +--- Old: nftables-0.9.5.tar.bz2 nftables-0.9.5.tar.bz2.sig New: nftables-0.9.6.tar.bz2 nftables-0.9.6.tar.bz2.sig Other differences: -- ++ nftables.spec ++ --- /var/tmp/diff_new_pack.bTr7Bv/_old 2020-06-18 10:37:09.178552890 +0200 +++ /var/tmp/diff_new_pack.bTr7Bv/_new 2020-06-18 10:37:09.182552903 +0200 @@ -17,7 +17,7 @@ Name: nftables -Version:0.9.5 +Version:0.9.6 Release:0 Summary:Userspace utility to access the nf_tables packet filter License:GPL-2.0-only ++ nftables-0.9.5.tar.bz2 -> nftables-0.9.6.tar.bz2 ++ diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/nftables-0.9.5/configure new/nftables-0.9.6/configure --- old/nftables-0.9.5/configure2020-06-06 12:00:31.927430708 +0200 +++ new/nftables-0.9.6/configure2020-06-15 22:23:48.001452605 +0200 @@ -1,6 +1,6 @@ #! /bin/sh # Guess values for system-dependent variables and create Makefiles. -# Generated by GNU Autoconf 2.69 for nftables 0.9.5. +# Generated by GNU Autoconf 2.69 for nftables 0.9.6. # # Report bugs to . # @@ -590,8 +590,8 @@ # Identity of this package. PACKAGE_NAME='nftables' PACKAGE_TARNAME='nftables' -PACKAGE_VERSION='0.9.5' -PACKAGE_STRING='nftables 0.9.5' +PACKAGE_VERSION='0.9.6' +PACKAGE_STRING='nftables 0.9.6' PACKAGE_BUGREPORT='netfilter-de...@vger.kernel.org' PACKAGE_URL='' @@ -1373,7 +1373,7 @@ # Omit some internal or obsolete options to make the list less imposing. # This message is too long to be a string in the A/UX 3.1 sh. cat <<_ACEOF -\`configure' configures nftables 0.9.5 to adapt to many kinds of systems. +\`configure' configures nftables 0.9.6 to adapt to many kinds of systems. Usage: $0 [OPTION]... [VAR=VALUE]... @@ -1444,7 +1444,7 @@ if test -n "$ac_init_help"; then case $ac_init_help in - short | recursive ) echo "Configuration of nftables 0.9.5:";; + short | recursive ) echo "Configuration of nftables 0.9.6:";; esac cat <<\_ACEOF @@ -1585,7 +1585,7 @@ test -n "$ac_init_help" && exit $ac_status if $ac_init_version; then cat <<\_ACEOF -nftables configure 0.9.5 +nftables configure 0.9.6 generated by GNU Autoconf 2.69 Copyright (C) 2012 Free Software Foundation, Inc. @@ -1863,7 +1863,7 @@ This file contains any messages produced by compilers while running configure, to aid debugging if configure makes a mistake. -It was created by nftables $as_me 0.9.5, which was +It was created by nftables $as_me 0.9.6, which was generated by GNU Autoconf 2.69. Invocation command line was $ $0 $@ @@ -2212,7 +2212,7 @@ -$as_echo "#define RELEASE_NAME \"Capital Idea\"" >>confdefs.h +$as_echo "#define RELEASE_NAME \"Capital Idea #2\"" >>confdefs.h ac_aux_dir= @@ -2731,7 +2731,7 @@ # Define the identity of the package. PACKAGE='nftables' - VERSION='0.9.5' + VERSION='0.9.6' cat >>confdefs.h <<_ACEOF @@ -14019,7 +14019,7 @@ # report actual input values of CONFIG_FILES etc. instead of their # values after options handling. ac_log=" -This file was extended by nftables $as_me 0.9.5, which was +This file was extended by nftables $as_me 0.9.6, which was generated by GNU Autoconf 2.69. Invocation command line was CONFIG_FILES= $CONFIG_FILES @@ -14085,7 +14085,7 @@ cat >>$CONFIG_STATUS <<_ACEOF || ac_write_fail=1 ac_cs_config="`$as_echo "$ac_configure_args" | sed 's/^ //; s/[\\""\`\$]/&/g'`" ac_cs_version="\\ -nftables config.status 0.9.5 +nftables config.status 0.9.6 configured by $0, generated by GNU Autoconf 2.69, with options \\"\$ac_cs_config\\" diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/nftables-0.9.5/configure.ac new/nftables-0.9.6/configure.ac --- old/nftables-0.9.5/configure.ac 2020-06-06 12:00:22.611435558 +0200 +++ new/nftables-0.9.6/configure.ac 2020-06-15 22:23:34.853457902 +0200 @@ -1,5 +1,5 @@ -AC_INIT([nftables], [0.9.5],
commit nftables for openSUSE:Factory
Hello community, here is the log from the commit of package nftables for openSUSE:Factory checked in at 2020-06-11 10:01:11 Comparing /work/SRC/openSUSE:Factory/nftables (Old) and /work/SRC/openSUSE:Factory/.nftables.new.3606 (New) Package is "nftables" Thu Jun 11 10:01:11 2020 rev:20 rq:812117 version:0.9.5 Changes: --- /work/SRC/openSUSE:Factory/nftables/nftables.changes2020-05-09 19:52:24.872845629 +0200 +++ /work/SRC/openSUSE:Factory/.nftables.new.3606/nftables.changes 2020-06-11 10:01:31.938548806 +0200 @@ -1,0 +2,13 @@ +Sat Jun 6 12:03:35 UTC 2020 - Jan Engelhardt + +- Update to release 0.9.5 + * Support for set counters. + * Support for restoring set element counters via nft -f. + * Counter support for flowtables. + * typeof concatenations support for sets. + * Support for concatenated ranges in anonymous sets. + * Allow to reject packets with 802.1q from the bridge family. + * Support for matching on the conntrack ID. +- Drop anonset-crashfix.patch (upstream solved differently) + +--- Old: anonset-crashfix.patch nftables-0.9.4.tar.bz2 nftables-0.9.4.tar.bz2.sig New: nftables-0.9.5.tar.bz2 nftables-0.9.5.tar.bz2.sig Other differences: -- ++ nftables.spec ++ --- /var/tmp/diff_new_pack.BKjJ9Q/_old 2020-06-11 10:01:33.210552903 +0200 +++ /var/tmp/diff_new_pack.BKjJ9Q/_new 2020-06-11 10:01:33.214552916 +0200 @@ -17,7 +17,7 @@ Name: nftables -Version:0.9.4 +Version:0.9.5 Release:0 Summary:Userspace utility to access the nf_tables packet filter License:GPL-2.0-only @@ -28,7 +28,6 @@ Source: http://ftp.netfilter.org/pub/nftables/nftables-%version.tar.bz2 Source2: http://ftp.netfilter.org/pub/nftables/nftables-%version.tar.bz2.sig Source3:%name.keyring -Patch1: anonset-crashfix.patch BuildRequires: asciidoc BuildRequires: bison BuildRequires: flex @@ -38,7 +37,7 @@ BuildRequires: readline-devel BuildRequires: pkgconfig(jansson) BuildRequires: pkgconfig(libmnl) >= 1.0.3 -BuildRequires: pkgconfig(libnftnl) >= 1.1.6 +BuildRequires: pkgconfig(libnftnl) >= 1.1.7 BuildRequires: pkgconfig(xtables) >= 1.6.1 %description ++ nftables-0.9.4.tar.bz2 -> nftables-0.9.5.tar.bz2 ++ 35780 lines of diff (skipped)
commit nftables for openSUSE:Factory
Hello community, here is the log from the commit of package nftables for openSUSE:Factory checked in at 2020-05-09 19:52:16 Comparing /work/SRC/openSUSE:Factory/nftables (Old) and /work/SRC/openSUSE:Factory/.nftables.new.2738 (New) Package is "nftables" Sat May 9 19:52:16 2020 rev:19 rq:801122 version:0.9.4 Changes: --- /work/SRC/openSUSE:Factory/nftables/nftables.changes2020-04-07 10:20:31.137775600 +0200 +++ /work/SRC/openSUSE:Factory/.nftables.new.2738/nftables.changes 2020-05-09 19:52:24.872845629 +0200 @@ -1,0 +2,5 @@ +Thu May 7 11:41:07 UTC 2020 - Jan Engelhardt + +- Add anonset-crashfix.patch [boo#1171321] + +--- New: anonset-crashfix.patch Other differences: -- ++ nftables.spec ++ --- /var/tmp/diff_new_pack.fK4W5o/_old 2020-05-09 19:52:25.892847819 +0200 +++ /var/tmp/diff_new_pack.fK4W5o/_new 2020-05-09 19:52:25.896847827 +0200 @@ -28,6 +28,7 @@ Source: http://ftp.netfilter.org/pub/nftables/nftables-%version.tar.bz2 Source2: http://ftp.netfilter.org/pub/nftables/nftables-%version.tar.bz2.sig Source3:%name.keyring +Patch1: anonset-crashfix.patch BuildRequires: asciidoc BuildRequires: bison BuildRequires: flex @@ -78,7 +79,7 @@ A Python module for nftables. %prep -%setup -q +%autosetup -p1 %build mkdir bin ++ anonset-crashfix.patch ++ >From pa...@netfilter.org Thu May 7 13:29:26 2020 Date: Thu, 7 May 2020 13:29:19 From: Pablo Neira Ayuso To: netfilter-de...@vger.kernel.org Cc: jeng...@inai.de Subject: [PATCH nft] mnl: fix error rule reporting with missing table/chain and anonymous sets Program received signal SIGSEGV, Segmentation fault. 0x77f64f1e in erec_print (octx=0xd2c0, erec=0xfcf0, debug_mask=0) at erec.c:95 95 switch (indesc->type) { (gdb) bt buf=0xdb20 "add rule inet traffic-filter input tcp dport { 22, 80, 443 } accept") at libnftables.c:459 (gdb) p indesc $1 = (const struct input_descriptor *) 0x0 Closes: http://bugzilla.opensuse.org/show_bug.cgi?id=1171321 Fixes: 086ec6f30c96 ("mnl: extended error support for create command") Reported-by: Jan Engelhardt Signed-off-by: Pablo Neira Ayuso --- src/mnl.c | 5 - 1 file changed, 4 insertions(+), 1 deletion(-) diff --git a/src/mnl.c b/src/mnl.c index 94e80261afb7..9ce4072859b1 100644 --- a/src/mnl.c +++ b/src/mnl.c @@ -1048,7 +1048,10 @@ int mnl_nft_set_add(struct netlink_ctx *ctx, struct cmd *cmd, cmd_add_loc(cmd, nlh->nlmsg_len, >table.location); mnl_attr_put_strz(nlh, NFTA_SET_TABLE, h->table.name); - cmd_add_loc(cmd, nlh->nlmsg_len, >set.location); + if (set_is_anonymous(set->flags)) + cmd_add_loc(cmd, nlh->nlmsg_len, >location); + else + cmd_add_loc(cmd, nlh->nlmsg_len, >set.location); mnl_attr_put_strz(nlh, NFTA_SET_NAME, h->set.name); nftnl_set_nlmsg_build_payload(nlh, nls); -- 2.20.1
commit nftables for openSUSE:Factory
Hello community, here is the log from the commit of package nftables for openSUSE:Factory checked in at 2020-04-07 10:20:26 Comparing /work/SRC/openSUSE:Factory/nftables (Old) and /work/SRC/openSUSE:Factory/.nftables.new.3248 (New) Package is "nftables" Tue Apr 7 10:20:26 2020 rev:18 rq:790695 version:0.9.4 Changes: --- /work/SRC/openSUSE:Factory/nftables/nftables.changes2019-12-23 22:34:10.893735396 +0100 +++ /work/SRC/openSUSE:Factory/.nftables.new.3248/nftables.changes 2020-04-07 10:20:31.137775600 +0200 @@ -1,0 +2,7 @@ +Wed Apr 1 18:48:56 UTC 2020 - Jan Engelhardt + +- Update to release 0.9.4 + * Add a helper for concat expression handling. + * Add "typeof" build/parse/print support. + +--- Old: nftables-0.9.3.tar.bz2 nftables-0.9.3.tar.bz2.sig New: nftables-0.9.4.tar.bz2 nftables-0.9.4.tar.bz2.sig Other differences: -- ++ nftables.spec ++ --- /var/tmp/diff_new_pack.xYEbHu/_old 2020-04-07 10:20:31.933776485 +0200 +++ /var/tmp/diff_new_pack.xYEbHu/_new 2020-04-07 10:20:31.937776489 +0200 @@ -1,7 +1,7 @@ # # spec file for package nftables # -# Copyright (c) 2019 SUSE LLC +# Copyright (c) 2020 SUSE LLC # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -17,7 +17,7 @@ Name: nftables -Version:0.9.3 +Version:0.9.4 Release:0 Summary:Userspace utility to access the nf_tables packet filter License:GPL-2.0-only @@ -37,7 +37,7 @@ BuildRequires: readline-devel BuildRequires: pkgconfig(jansson) BuildRequires: pkgconfig(libmnl) >= 1.0.3 -BuildRequires: pkgconfig(libnftnl) >= 1.1.4 +BuildRequires: pkgconfig(libnftnl) >= 1.1.6 BuildRequires: pkgconfig(xtables) >= 1.6.1 %description ++ nftables-0.9.3.tar.bz2 -> nftables-0.9.4.tar.bz2 ++ 36960 lines of diff (skipped)
commit nftables for openSUSE:Factory
Hello community, here is the log from the commit of package nftables for openSUSE:Factory checked in at 2019-12-23 22:33:58 Comparing /work/SRC/openSUSE:Factory/nftables (Old) and /work/SRC/openSUSE:Factory/.nftables.new.6675 (New) Package is "nftables" Mon Dec 23 22:33:58 2019 rev:17 rq:755181 version:0.9.3 Changes: --- /work/SRC/openSUSE:Factory/nftables/nftables.changes2019-08-27 15:21:42.536831122 +0200 +++ /work/SRC/openSUSE:Factory/.nftables.new.6675/nftables.changes 2019-12-23 22:34:10.893735396 +0100 @@ -1,0 +2,17 @@ +Mon Dec 9 09:39:52 UTC 2019 - Jan Engelhardt + +- Add json, python [boo#1158723] + +--- +Tue Dec 3 09:09:28 UTC 2019 - Jan Engelhardt + +- Update to release 0.9.3 + * meta: Introduce new conditions "time", "day" and "hour". + * src: add ability to set/get secmarks to/from connection. + * flowtable: add support for named flowtable listing. + * flowtable: add support for delete command by handle. + * json: add support for element deletion. + * Add `-T` as the short option for `--numeric-time`. + * meta: add ibrpvid and ibrvproto support + +--- Old: nftables-0.9.2.tar.bz2 nftables-0.9.2.tar.bz2.sig New: nftables-0.9.3.tar.bz2 nftables-0.9.3.tar.bz2.sig nftables.keyring Other differences: -- ++ nftables.spec ++ --- /var/tmp/diff_new_pack.QsQcQl/_old 2019-12-23 22:34:11.529735671 +0100 +++ /var/tmp/diff_new_pack.QsQcQl/_new 2019-12-23 22:34:11.529735671 +0100 @@ -1,7 +1,7 @@ # # spec file for package nftables # -# Copyright (c) 2019 SUSE LINUX GmbH, Nuernberg, Germany. +# Copyright (c) 2019 SUSE LLC # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -17,7 +17,7 @@ Name: nftables -Version:0.9.2 +Version:0.9.3 Release:0 Summary:Userspace utility to access the nf_tables packet filter License:GPL-2.0-only @@ -27,12 +27,15 @@ #Git-Clone:git://git.netfilter.org/nftables Source: http://ftp.netfilter.org/pub/nftables/nftables-%version.tar.bz2 Source2: http://ftp.netfilter.org/pub/nftables/nftables-%version.tar.bz2.sig +Source3:%name.keyring BuildRequires: asciidoc BuildRequires: bison BuildRequires: flex BuildRequires: gmp-devel BuildRequires: pkg-config >= 0.21 +BuildRequires: python3-base BuildRequires: readline-devel +BuildRequires: pkgconfig(jansson) BuildRequires: pkgconfig(libmnl) >= 1.0.3 BuildRequires: pkgconfig(libnftnl) >= 1.1.4 BuildRequires: pkgconfig(xtables) >= 1.6.1 @@ -67,6 +70,13 @@ This package contains the header files for the library. +%package -n python3-nftables +Summary:Python interface for nftables +Group: Development/Languages/Python + +%description -n python3-nftables +A Python module for nftables. + %prep %setup -q @@ -78,7 +88,8 @@ pushd obj/ %define _configure ../configure %configure --disable-silent-rules --disable-static --docdir="%_docdir/%name" \ - --includedir="%_includedir/%name" --disable-python + --includedir="%_includedir/%name" --with-json \ + --enable-python --with-python-bin="$(which python3)" make %{?_smp_mflags} popd @@ -93,7 +104,6 @@ %postun -n libnftables1 -p /sbin/ldconfig %files -%defattr(-,root,root) %license COPYING %_sbindir/nft %_mandir/man5/*.5* @@ -109,4 +119,7 @@ %_libdir/pkgconfig/*.pc %_mandir/man3/*.3* +%files -n python3-nftables +%python3_sitelib/nftables* + %changelog ++ nftables-0.9.2.tar.bz2 -> nftables-0.9.3.tar.bz2 ++ 29164 lines of diff (skipped) ++ nftables.keyring ++ pub 4096R/0xA4111F89BB5F58CC 2010-10-21 [expires: 2015-10-20] Key fingerprint = 57FF 5E9C 9AA6 7A86 0B55 7AF7 A411 1F89 BB5F 58CC uid [ expired] Netfilter Core Team sub 4096R/0x0FD3A13A04B92F5C 2010-10-21 [expires: 2015-10-20] pub 4096R/0xAB4655A126D292E4 2015-10-19 [expires: 2020-10-17] Key fingerprint = C09D B206 3F1D 7034 BA61 52AD AB46 55A1 26D2 92E4 uid [ unknown] Netfilter Core Team sub 4096R/0xE3B0B6BAE3AAA39E 2015-10-19 [expires: 2020-10-17] -BEGIN PGP PUBLIC KEY BLOCK- mQINBEzAS5EBEADVlGm+KwODJcVmP33HTCbn/eP8obZbgu+3Z1CYRklF8V43vC6D 8Jfk7fjD4/gWbAKZxriOESXVAN7mp0Fho4+Ga+pxWeLIET9tVM5xbNFK1p9R3XCK p5SrugG+tGhizTR9b/1YCMVRz/yX3aDtC7lwObas4hkr5BqhphjvlkjFE7us32by 43LPpFj2yUpp1VdOf6gxl03kAgJg08h9J7a+n9KHQeAhIpXSRFq3tXiTdXQlovsv ckwBjO0m8P2d1Z8/UYwXQgXzuO8W8EqaUSR95nDwl7UnilnKJm2fGvNg3A6PfCSk 3KdeEBZ45SRfMTPsuC5C4T0Az75h3HFR6YSae46ymg7d4ZA/Bd5K4hvp4PdYrfCi
commit nftables for openSUSE:Factory
Hello community, here is the log from the commit of package nftables for openSUSE:Factory checked in at 2019-08-27 15:21:40 Comparing /work/SRC/openSUSE:Factory/nftables (Old) and /work/SRC/openSUSE:Factory/.nftables.new.7948 (New) Package is "nftables" Tue Aug 27 15:21:40 2019 rev:16 rq:724575 version:0.9.2 Changes: --- /work/SRC/openSUSE:Factory/nftables/nftables.changes2019-02-04 21:22:13.131642442 +0100 +++ /work/SRC/openSUSE:Factory/.nftables.new.7948/nftables.changes 2019-08-27 15:21:42.536831122 +0200 @@ -1,0 +2,8 @@ +Mon Aug 19 12:37:45 UTC 2019 - Jan Engelhardt + +- Update to new upstream release 0.9.2 + * Transport header port matching, e.g. "th dport 53" + * Support for matching on IPv4 options + * Support for synproxy + +--- Old: nftables-0.9.0.tar.bz2 nftables-0.9.0.tar.bz2.sig New: nftables-0.9.2.tar.bz2 nftables-0.9.2.tar.bz2.sig Other differences: -- ++ nftables.spec ++ --- /var/tmp/diff_new_pack.LCZOdW/_old 2019-08-27 15:21:43.412830681 +0200 +++ /var/tmp/diff_new_pack.LCZOdW/_new 2019-08-27 15:21:43.424830675 +0200 @@ -1,7 +1,7 @@ # # spec file for package nftables # -# Copyright (c) 2018 SUSE LINUX GmbH, Nuernberg, Germany. +# Copyright (c) 2019 SUSE LINUX GmbH, Nuernberg, Germany. # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -12,56 +12,54 @@ # license that conforms to the Open Source Definition (Version 1.9) # published by the Open Source Initiative. -# Please submit bugfixes or comments via http://bugs.opensuse.org/ +# Please submit bugfixes or comments via https://bugs.opensuse.org/ # Name: nftables -Version:0.9.0 +Version:0.9.2 Release:0 Summary:Userspace utility to access the nf_tables packet filter License:GPL-2.0-only Group: Productivity/Networking/Security -Url:http://netfilter.org/projects/nftables/ +URL:https://netfilter.org/projects/nftables/ #Git-Clone:git://git.netfilter.org/nftables Source: http://ftp.netfilter.org/pub/nftables/nftables-%version.tar.bz2 Source2: http://ftp.netfilter.org/pub/nftables/nftables-%version.tar.bz2.sig -BuildRoot: %{_tmppath}/%{name}-%{version}-build +BuildRequires: asciidoc BuildRequires: bison -BuildRequires: docbook2x BuildRequires: flex BuildRequires: gmp-devel BuildRequires: pkg-config >= 0.21 BuildRequires: readline-devel -BuildRequires: xsltproc BuildRequires: pkgconfig(libmnl) >= 1.0.3 -BuildRequires: pkgconfig(libnftnl) >= 1.1.1 +BuildRequires: pkgconfig(libnftnl) >= 1.1.4 BuildRequires: pkgconfig(xtables) >= 1.6.1 %description nf_tables is a firewalling mechanism in the Linux kernel, running -independently of, and thus parallel to, ip_tables, ip6_tables, +independently of and parallel to ip_tables, ip6_tables, arp_tables and ebtables. nftables is the corresponsing userspace frontend. -nftables features support for sets and dictionaries of arbitrary -types, support for different protocols, meta data types, access to -connection tracking and NAT, logging, atomic incremental and full -ruleset updates. +The nftables frontend features support for sets and dictionaries of arbitrary +types, meta data types, atomic incremental and full ruleset updates, and, +similar to iptables, support for different protocols, access to connection +tracking and NAT and logging. -%package -n libnftables0 +%package -n libnftables1 Summary:nftables firewalling command interface Group: System/Libraries -%description -n libnftables0 +%description -n libnftables1 libnftables is the nftables command line interface placed into a library. %package devel Summary:Development files for the nftables command line interface Group: Development/Libraries/C and C++ -Requires: libnftables0 = %version +Requires: libnftables1 = %version %description devel libnftables is the nftables command line interface placed into a @@ -80,7 +78,7 @@ pushd obj/ %define _configure ../configure %configure --disable-silent-rules --disable-static --docdir="%_docdir/%name" \ - --includedir="%_includedir/%name" + --includedir="%_includedir/%name" --disable-python make %{?_smp_mflags} popd @@ -91,22 +89,24 @@ mkdir -p "$b/%_docdir/%name/examples" mv "$b/%_sysconfdir/nftables"/* "$b/%_docdir/%name/examples/" -%post -n libnftables0 -p /sbin/ldconfig -%postun -n libnftables0 -p /sbin/ldconfig +%post -n libnftables1 -p /sbin/ldconfig +%postun -n libnftables1 -p /sbin/ldconfig %files
commit nftables for openSUSE:Factory
Hello community, here is the log from the commit of package nftables for openSUSE:Factory checked in at 2019-02-04 21:22:11 Comparing /work/SRC/openSUSE:Factory/nftables (Old) and /work/SRC/openSUSE:Factory/.nftables.new.28833 (New) Package is "nftables" Mon Feb 4 21:22:11 2019 rev:15 rq:667312 version:0.9.0 Changes: --- /work/SRC/openSUSE:Factory/nftables/nftables.changes2018-07-14 20:24:03.676007330 +0200 +++ /work/SRC/openSUSE:Factory/.nftables.new.28833/nftables.changes 2019-02-04 21:22:13.131642442 +0100 @@ -1,0 +2,6 @@ +Sat Jan 19 20:53:09 UTC 2019 - Stefan BrĂ¼ns + +- Remove unused dblatex BuildRequires, only needed for the optional + and disabled PDF generation (same contents as shipped manpage). + +--- Other differences: -- ++ nftables.spec ++ --- /var/tmp/diff_new_pack.tqKhhi/_old 2019-02-04 21:22:13.923642251 +0100 +++ /var/tmp/diff_new_pack.tqKhhi/_new 2019-02-04 21:22:13.927642250 +0100 @@ -29,7 +29,6 @@ Source2: http://ftp.netfilter.org/pub/nftables/nftables-%version.tar.bz2.sig BuildRoot: %{_tmppath}/%{name}-%{version}-build BuildRequires: bison -BuildRequires: dblatex BuildRequires: docbook2x BuildRequires: flex BuildRequires: gmp-devel
commit nftables for openSUSE:Factory
Hello community, here is the log from the commit of package nftables for openSUSE:Factory checked in at 2018-07-14 20:24:00 Comparing /work/SRC/openSUSE:Factory/nftables (Old) and /work/SRC/openSUSE:Factory/.nftables.new (New) Package is "nftables" Sat Jul 14 20:24:00 2018 rev:14 rq:621107 version:0.9.0 Changes: --- /work/SRC/openSUSE:Factory/nftables/nftables.changes2018-06-05 12:53:39.759987398 +0200 +++ /work/SRC/openSUSE:Factory/.nftables.new/nftables.changes 2018-07-14 20:24:03.676007330 +0200 @@ -1,0 +2,10 @@ +Sat Jun 9 07:28:57 UTC 2018 - jeng...@inai.de + +- Update to new upstream release 0.9.0 + * Support to check if packet matches an existing socket. + * Support to limit number of active connections by arbitrary +criteria, such as ip addresses, networks, conntrack zones or +any combination thereof. + * Added support for "audit" logging. + +--- Old: nftables-0.8.5.tar.bz2 nftables-0.8.5.tar.bz2.sig New: nftables-0.9.0.tar.bz2 nftables-0.9.0.tar.bz2.sig Other differences: -- ++ nftables.spec ++ --- /var/tmp/diff_new_pack.PBdkNs/_old 2018-07-14 20:24:04.188008646 +0200 +++ /var/tmp/diff_new_pack.PBdkNs/_new 2018-07-14 20:24:04.196008667 +0200 @@ -17,7 +17,7 @@ Name: nftables -Version:0.8.5 +Version:0.9.0 Release:0 Summary:Userspace utility to access the nf_tables packet filter License:GPL-2.0-only @@ -37,8 +37,8 @@ BuildRequires: readline-devel BuildRequires: xsltproc BuildRequires: pkgconfig(libmnl) >= 1.0.3 -BuildRequires: pkgconfig(libnftnl) >= 1.1.0 -BuildRequires: pkgconfig(xtables) >= 1.6.0 +BuildRequires: pkgconfig(libnftnl) >= 1.1.1 +BuildRequires: pkgconfig(xtables) >= 1.6.1 %description nf_tables is a firewalling mechanism in the Linux kernel, running ++ nftables-0.8.5.tar.bz2 -> nftables-0.9.0.tar.bz2 ++ 65738 lines of diff (skipped)
commit nftables for openSUSE:Factory
Hello community, here is the log from the commit of package nftables for openSUSE:Factory checked in at 2018-06-05 12:53:37 Comparing /work/SRC/openSUSE:Factory/nftables (Old) and /work/SRC/openSUSE:Factory/.nftables.new (New) Package is "nftables" Tue Jun 5 12:53:37 2018 rev:13 rq:614163 version:0.8.5 Changes: --- /work/SRC/openSUSE:Factory/nftables/nftables.changes2018-05-11 14:27:29.189811131 +0200 +++ /work/SRC/openSUSE:Factory/.nftables.new/nftables.changes 2018-06-05 12:53:39.759987398 +0200 @@ -1,0 +2,9 @@ +Fri May 11 07:30:10 UTC 2018 - jeng...@inai.de + +- Update to new upstream release 0.8.5 + * support to add/insert a rule at a given index position + * meter statement now supports a configureable upper max size + * timeouts for sets can now be specified in milliseconds + * re-add iptables-like empty skeleton rulesets + +--- Old: nftables-0.8.4.tar.bz2 nftables-0.8.4.tar.bz2.sig New: nftables-0.8.5.tar.bz2 nftables-0.8.5.tar.bz2.sig Other differences: -- ++ nftables.spec ++ --- /var/tmp/diff_new_pack.Mos37C/_old 2018-06-05 12:53:40.511959856 +0200 +++ /var/tmp/diff_new_pack.Mos37C/_new 2018-06-05 12:53:40.515959709 +0200 @@ -17,7 +17,7 @@ Name: nftables -Version:0.8.4 +Version:0.8.5 Release:0 Summary:Userspace utility to access the nf_tables packet filter License:GPL-2.0-only @@ -46,10 +46,29 @@ arp_tables and ebtables. nftables is the corresponsing userspace frontend. -nftables features native support for sets and dictionaries of -arbitrary types, support for many different protocols, meta data -types, connection tracking, NAT setup, logging, atomic incremental -and full ruleset updates. +nftables features support for sets and dictionaries of arbitrary +types, support for different protocols, meta data types, access to +connection tracking and NAT, logging, atomic incremental and full +ruleset updates. + +%package -n libnftables0 +Summary:nftables firewalling command interface +Group: System/Libraries + +%description -n libnftables0 +libnftables is the nftables command line interface placed into a +library. + +%package devel +Summary:Development files for the nftables command line interface +Group: Development/Libraries/C and C++ +Requires: libnftables0 = %version + +%description devel +libnftables is the nftables command line interface placed into a +library. + +This package contains the header files for the library. %prep %setup -q @@ -61,7 +80,8 @@ mkdir obj pushd obj/ %define _configure ../configure -%configure --disable-silent-rules --disable-static --docdir="%_docdir/%name" +%configure --disable-silent-rules --disable-static --docdir="%_docdir/%name" \ + --includedir="%_includedir/%name" make %{?_smp_mflags} popd @@ -69,17 +89,25 @@ b="%buildroot" %make_install -C obj rm -f "%buildroot/%_libdir"/*.la -# No headers, so it is quite pointless to have. -rm -f "%buildroot/%_libdir"/*.so "%buildroot/%_libdir/pkgconfig"/*.pc +mkdir -p "$b/%_docdir/%name/examples" +mv "$b/%_sysconfdir/nftables"/* "$b/%_docdir/%name/examples/" -%post -p /sbin/ldconfig -%postun -p /sbin/ldconfig +%post -n libnftables0 -p /sbin/ldconfig +%postun -n libnftables0 -p /sbin/ldconfig %files %defattr(-,root,root) -%_libdir/libnftables.so.* +%license COPYING %_sbindir/nft %_mandir/man8/nft* -%doc COPYING +%_docdir/%name/ + +%files -n libnftables0 +%_libdir/libnftables.so.* + +%files devel +%_includedir/%name/ +%_libdir/libnftables.so +%_libdir/pkgconfig/*.pc %changelog ++ nftables-0.8.4.tar.bz2 -> nftables-0.8.5.tar.bz2 ++ 25412 lines of diff (skipped)
commit nftables for openSUSE:Factory
Hello community, here is the log from the commit of package nftables for openSUSE:Factory checked in at 2018-05-11 14:27:25 Comparing /work/SRC/openSUSE:Factory/nftables (Old) and /work/SRC/openSUSE:Factory/.nftables.new (New) Package is "nftables" Fri May 11 14:27:25 2018 rev:12 rq:602954 version:0.8.4 Changes: --- /work/SRC/openSUSE:Factory/nftables/nftables.changes2018-03-04 12:52:57.066831971 +0100 +++ /work/SRC/openSUSE:Factory/.nftables.new/nftables.changes 2018-05-11 14:27:29.189811131 +0200 @@ -1,0 +2,18 @@ +Wed May 2 06:08:00 UTC 2018 - jeng...@inai.de + +- Update to new upstream release 0.8.4 + * Support to match IPv6 segment routing headers. + * New "meta ibrname" and "meta obrname" arguments to match the +name of the logical bridge a packet is passing through. +These new names replace the old (misnamed) "ibriport"/"obriport". + * `nft -a` will now show handle identifier for all objects, +including tables and chains. + * nft can now delete objects by their handle number. + * Support to update maps from the ruleset (packet path). + * the "--echo" option now prints handle id for tables and +object too. + * `nft -f -` will now read from standard input + * Support for flow tables, cf. man page or +https://lwn.net/Articles/738214/ . + +--- Old: nftables-0.8.3.tar.bz2 nftables-0.8.3.tar.bz2.sig New: nftables-0.8.4.tar.bz2 nftables-0.8.4.tar.bz2.sig Other differences: -- ++ nftables.spec ++ --- /var/tmp/diff_new_pack.z494vg/_old 2018-05-11 14:27:29.921784535 +0200 +++ /var/tmp/diff_new_pack.z494vg/_new 2018-05-11 14:27:29.925784390 +0200 @@ -17,7 +17,7 @@ Name: nftables -Version:0.8.3 +Version:0.8.4 Release:0 Summary:Userspace utility to access the nf_tables packet filter License:GPL-2.0-only @@ -37,11 +37,11 @@ BuildRequires: readline-devel BuildRequires: xsltproc BuildRequires: pkgconfig(libmnl) >= 1.0.3 -BuildRequires: pkgconfig(libnftnl) >= 1.0.9 +BuildRequires: pkgconfig(libnftnl) >= 1.1.0 BuildRequires: pkgconfig(xtables) >= 1.6.0 %description -nf_tables is a new firewalling mechanism in the Linux kernel, running +nf_tables is a firewalling mechanism in the Linux kernel, running independently of, and thus parallel to, ip_tables, ip6_tables, arp_tables and ebtables. nftables is the corresponsing userspace frontend. @@ -61,17 +61,23 @@ mkdir obj pushd obj/ %define _configure ../configure -%configure --disable-silent-rules --docdir="%_docdir/%name" +%configure --disable-silent-rules --disable-static --docdir="%_docdir/%name" make %{?_smp_mflags} popd %install b="%buildroot" %make_install -C obj -rm -f "%buildroot/%_libdir/pkgconfig"/*.pc +rm -f "%buildroot/%_libdir"/*.la +# No headers, so it is quite pointless to have. +rm -f "%buildroot/%_libdir"/*.so "%buildroot/%_libdir/pkgconfig"/*.pc + +%post -p /sbin/ldconfig +%postun -p /sbin/ldconfig %files %defattr(-,root,root) +%_libdir/libnftables.so.* %_sbindir/nft %_mandir/man8/nft* %doc COPYING ++ nftables-0.8.3.tar.bz2 -> nftables-0.8.4.tar.bz2 ++ 41141 lines of diff (skipped)
commit nftables for openSUSE:Factory
Hello community, here is the log from the commit of package nftables for openSUSE:Factory checked in at 2018-03-04 12:52:22 Comparing /work/SRC/openSUSE:Factory/nftables (Old) and /work/SRC/openSUSE:Factory/.nftables.new (New) Package is "nftables" Sun Mar 4 12:52:22 2018 rev:11 rq:582292 version:0.8.3 Changes: --- /work/SRC/openSUSE:Factory/nftables/nftables.changes2018-02-05 10:53:25.851128894 +0100 +++ /work/SRC/openSUSE:Factory/.nftables.new/nftables.changes 2018-03-04 12:52:57.066831971 +0100 @@ -1,0 +2,7 @@ +Sat Mar 3 22:59:01 UTC 2018 - jeng...@inai.de + +- Update to new upstream release 0.8.3 + * raw payload support to match headers that do not yet have +received a mnemonic. + +--- Old: nftables-0.8.2.tar.bz2 nftables-0.8.2.tar.bz2.sig New: nftables-0.8.3.tar.bz2 nftables-0.8.3.tar.bz2.sig Other differences: -- ++ nftables.spec ++ --- /var/tmp/diff_new_pack.Sx4kJ9/_old 2018-03-04 12:52:59.438745542 +0100 +++ /var/tmp/diff_new_pack.Sx4kJ9/_new 2018-03-04 12:52:59.442745396 +0100 @@ -17,10 +17,10 @@ Name: nftables -Version:0.8.2 +Version:0.8.3 Release:0 Summary:Userspace utility to access the nf_tables packet filter -License:GPL-2.0 +License:GPL-2.0-only Group: Productivity/Networking/Security Url:http://netfilter.org/projects/nftables/ @@ -41,15 +41,15 @@ BuildRequires: pkgconfig(xtables) >= 1.6.0 %description -nf_tables is the new firewalling infrastructure in the Linux kernel, -intended to replace ip_tables, ip6_tables, arp_tables and ebtables in -the long term. nftables is the corresponsing userspace frontend, -replacing their respective userspace utilities. +nf_tables is a new firewalling mechanism in the Linux kernel, running +independently of, and thus parallel to, ip_tables, ip6_tables, +arp_tables and ebtables. nftables is the corresponsing userspace +frontend. nftables features native support for sets and dictionaries of arbitrary types, support for many different protocols, meta data -types, connection tracking, NAT, logging, atomic incremental and full -ruleset updates. +types, connection tracking, NAT setup, logging, atomic incremental +and full ruleset updates. %prep %setup -q @@ -72,7 +72,6 @@ %files %defattr(-,root,root) -%config %_sysconfdir/nftables %_sbindir/nft %_mandir/man8/nft* %doc COPYING ++ nftables-0.8.2.tar.bz2 -> nftables-0.8.3.tar.bz2 ++ 25145 lines of diff (skipped)
commit nftables for openSUSE:Factory
Hello community, here is the log from the commit of package nftables for openSUSE:Factory checked in at 2018-02-05 10:52:34 Comparing /work/SRC/openSUSE:Factory/nftables (Old) and /work/SRC/openSUSE:Factory/.nftables.new (New) Package is "nftables" Mon Feb 5 10:52:34 2018 rev:10 rq:572303 version:0.8.2 Changes: --- /work/SRC/openSUSE:Factory/nftables/nftables.changes2018-01-24 15:30:56.045156374 +0100 +++ /work/SRC/openSUSE:Factory/.nftables.new/nftables.changes 2018-02-05 10:53:25.851128894 +0100 @@ -1,0 +2,6 @@ +Sat Feb 3 14:26:36 UTC 2018 - jeng...@inai.de + +- Update to new upstream release 0.8.2 + * add secpath support + +--- Old: nftables-0.8.1.tar.bz2 nftables-0.8.1.tar.bz2.sig New: nftables-0.8.2.tar.bz2 nftables-0.8.2.tar.bz2.sig Other differences: -- ++ nftables.spec ++ --- /var/tmp/diff_new_pack.3eLM9X/_old 2018-02-05 10:53:26.491098965 +0100 +++ /var/tmp/diff_new_pack.3eLM9X/_new 2018-02-05 10:53:26.491098965 +0100 @@ -17,7 +17,7 @@ Name: nftables -Version:0.8.1 +Version:0.8.2 Release:0 Summary:Userspace utility to access the nf_tables packet filter License:GPL-2.0 ++ nftables-0.8.1.tar.bz2 -> nftables-0.8.2.tar.bz2 ++ 21536 lines of diff (skipped)
commit nftables for openSUSE:Factory
Hello community, here is the log from the commit of package nftables for openSUSE:Factory checked in at 2018-01-24 15:30:54 Comparing /work/SRC/openSUSE:Factory/nftables (Old) and /work/SRC/openSUSE:Factory/.nftables.new (New) Package is "nftables" Wed Jan 24 15:30:54 2018 rev:9 rq:568524 version:0.8.1 Changes: --- /work/SRC/openSUSE:Factory/nftables/nftables.changes2017-10-24 22:22:44.682189869 +0200 +++ /work/SRC/openSUSE:Factory/.nftables.new/nftables.changes 2018-01-24 15:30:56.045156374 +0100 @@ -1,0 +2,7 @@ +Tue Jan 16 14:16:40 UTC 2018 - jeng...@inai.de + +- Update to new upstream release 0.8.1 + * This release deprecates the "flow table" syntax in favor +of "meter". + +--- Old: nftables-0.8.tar.bz2 nftables-0.8.tar.bz2.sig New: nftables-0.8.1.tar.bz2 nftables-0.8.1.tar.bz2.sig Other differences: -- ++ nftables.spec ++ --- /var/tmp/diff_new_pack.PoFYvk/_old 2018-01-24 15:30:56.837119335 +0100 +++ /var/tmp/diff_new_pack.PoFYvk/_new 2018-01-24 15:30:56.841119148 +0100 @@ -1,7 +1,7 @@ # # spec file for package nftables # -# Copyright (c) 2017 SUSE LINUX GmbH, Nuernberg, Germany. +# Copyright (c) 2018 SUSE LINUX GmbH, Nuernberg, Germany. # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -17,7 +17,7 @@ Name: nftables -Version:0.8 +Version:0.8.1 Release:0 Summary:Userspace utility to access the nf_tables packet filter License:GPL-2.0 @@ -33,14 +33,12 @@ BuildRequires: docbook2x BuildRequires: flex BuildRequires: gmp-devel -BuildRequires: pkgconfig >= 0.21 +BuildRequires: pkg-config >= 0.21 BuildRequires: readline-devel BuildRequires: xsltproc BuildRequires: pkgconfig(libmnl) >= 1.0.3 -BuildRequires: pkgconfig(libnftnl) >= 1.0.8 +BuildRequires: pkgconfig(libnftnl) >= 1.0.9 BuildRequires: pkgconfig(xtables) >= 1.6.0 -Obsoletes: nftables-plus < %version-%release -Provides: nftables-plus = %version-%release %description nf_tables is the new firewalling infrastructure in the Linux kernel, @@ -70,6 +68,7 @@ %install b="%buildroot" %make_install -C obj +rm -f "%buildroot/%_libdir/pkgconfig"/*.pc %files %defattr(-,root,root) ++ nftables-0.8.tar.bz2 -> nftables-0.8.1.tar.bz2 ++ 57018 lines of diff (skipped)
commit nftables for openSUSE:Factory
Hello community, here is the log from the commit of package nftables for openSUSE:Factory checked in at 2017-10-24 22:22:19 Comparing /work/SRC/openSUSE:Factory/nftables (Old) and /work/SRC/openSUSE:Factory/.nftables.new (New) Package is "nftables" Tue Oct 24 22:22:19 2017 rev:8 rq:533989 version:0.8 Changes: --- /work/SRC/openSUSE:Factory/nftables/nftables.changes2017-01-04 19:35:58.968264834 +0100 +++ /work/SRC/openSUSE:Factory/.nftables.new/nftables.changes 2017-10-24 22:22:44.682189869 +0200 @@ -1,0 +2,33 @@ +Fri Oct 13 08:39:41 UTC 2017 - jeng...@inai.de + +- Update to new upstream release 0.8 + * This release contains new features available up to the +(upcoming) Linux 4.14 kernel release: + * Support for stateful objects, these objects are uniquely +identified by a user-defined name, you can refer to them from +rules, and there is a well established interface to operate +with them. + * Sort set elements when listing them, from lower to largest. + * TCP option matching and mangling support. This includes TCP +maximum segment size mangling. + * Add new "-s" option for listings without stateful information. + * Add new -c/--check option for nft, to tests if your ruleset +loads fine, into the kernel, this is a dry run mode. + * Connection tracking helper support. + * Add --echo option, to print the handle that the kernel +allocates to uniquely identify rules. + * Conntrack zone support + * Symmetric hash support + * Add support to include directories from nft natives scripts, +files are loaded in alphanumerical order. + * Allow to check if IPv6 extension header or TCP option exists +or is missing. + * Extend quota support to display used bytes. + * Add ct average matching, to match average bytes per packet a +connection has transferred so far, to map the existing +feature available in the iptables connbytes match. + * Allow to flush maps and flow tables. + * Allow to embed set definition into an existing set. + * Conntrack event filtering support via rule. + +--- Old: nftables-0.7.tar.bz2 nftables-0.7.tar.bz2.sig New: nftables-0.8.tar.bz2 nftables-0.8.tar.bz2.sig Other differences: -- ++ nftables.spec ++ --- /var/tmp/diff_new_pack.z98Zr0/_old 2017-10-24 22:22:45.230164253 +0200 +++ /var/tmp/diff_new_pack.z98Zr0/_new 2017-10-24 22:22:45.230164253 +0200 @@ -1,7 +1,7 @@ # # spec file for package nftables # -# Copyright (c) 2016 SUSE LINUX GmbH, Nuernberg, Germany. +# Copyright (c) 2017 SUSE LINUX GmbH, Nuernberg, Germany. # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -17,14 +17,14 @@ Name: nftables -Version:0.7 +Version:0.8 Release:0 Summary:Userspace utility to access the nf_tables packet filter License:GPL-2.0 Group: Productivity/Networking/Security Url:http://netfilter.org/projects/nftables/ -#Git-Clone:git://git.netfilter.org/nftables +#Git-Clone:git://git.netfilter.org/nftables Source: http://ftp.netfilter.org/pub/nftables/nftables-%version.tar.bz2 Source2: http://ftp.netfilter.org/pub/nftables/nftables-%version.tar.bz2.sig BuildRoot: %{_tmppath}/%{name}-%{version}-build @@ -37,7 +37,7 @@ BuildRequires: readline-devel BuildRequires: xsltproc BuildRequires: pkgconfig(libmnl) >= 1.0.3 -BuildRequires: pkgconfig(libnftnl) >= 1.0.7 +BuildRequires: pkgconfig(libnftnl) >= 1.0.8 BuildRequires: pkgconfig(xtables) >= 1.6.0 Obsoletes: nftables-plus < %version-%release Provides: nftables-plus = %version-%release ++ nftables-0.7.tar.bz2 -> nftables-0.8.tar.bz2 ++ 80837 lines of diff (skipped)
commit nftables for openSUSE:Factory
Hello community, here is the log from the commit of package nftables for openSUSE:Factory checked in at 2016-06-13 21:55:57 Comparing /work/SRC/openSUSE:Factory/nftables (Old) and /work/SRC/openSUSE:Factory/.nftables.new (New) Package is "nftables" Changes: --- /work/SRC/openSUSE:Factory/nftables/nftables.changes2015-09-27 08:39:40.0 +0200 +++ /work/SRC/openSUSE:Factory/.nftables.new/nftables.changes 2016-06-13 21:56:00.0 +0200 @@ -1,0 +2,10 @@ +Thu Jun 2 18:31:23 UTC 2016 - jeng...@inai.de + +- Update to new upstream release 0.6 +* Rules may be replaced now +* Flow table support (requires Linux >= 4.3) +* Support for tracing +* Ratelimiting now supports units like bytes/second. +* Matchinv VLAN IDs, DSCP/ECN, ICMP RtAdv & RtSol + +--- Old: nftables-0.5.tar.bz2 nftables-0.5.tar.bz2.sig New: nftables-0.6.tar.bz2 nftables-0.6.tar.bz2.sig Other differences: -- ++ nftables.spec ++ --- /var/tmp/diff_new_pack.BMgT6k/_old 2016-06-13 21:56:01.0 +0200 +++ /var/tmp/diff_new_pack.BMgT6k/_new 2016-06-13 21:56:01.0 +0200 @@ -1,7 +1,7 @@ # # spec file for package nftables # -# Copyright (c) 2015 SUSE LINUX GmbH, Nuernberg, Germany. +# Copyright (c) 2016 SUSE LINUX GmbH, Nuernberg, Germany. # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -17,7 +17,7 @@ Name: nftables -Version:0.5 +Version:0.6 Release:0 Summary:Userspace utility to access the nf_tables packet filter License:GPL-2.0 @@ -37,7 +37,7 @@ BuildRequires: readline-devel BuildRequires: xsltproc BuildRequires: pkgconfig(libmnl) >= 1.0.3 -BuildRequires: pkgconfig(libnftnl) >= 1.0.5 +BuildRequires: pkgconfig(libnftnl) >= 1.0.6 Obsoletes: nftables-plus < %version-%release Provides: nftables-plus = %version-%release ++ nftables-0.5.tar.bz2 -> nftables-0.6.tar.bz2 ++ 73735 lines of diff (skipped)
commit nftables for openSUSE:Factory
Hello community, here is the log from the commit of package nftables for openSUSE:Factory checked in at 2015-09-27 08:40:13 Comparing /work/SRC/openSUSE:Factory/nftables (Old) and /work/SRC/openSUSE:Factory/.nftables.new (New) Package is "nftables" Changes: --- /work/SRC/openSUSE:Factory/nftables/nftables.changes2015-05-24 19:34:40.0 +0200 +++ /work/SRC/openSUSE:Factory/.nftables.new/nftables.changes 2015-09-27 08:39:40.0 +0200 @@ -1,0 +2,9 @@ +Thu Sep 17 21:16:31 UTC 2015 - jeng...@inai.de + +- Update to new upstream release 0.5 +* Support combinations of two or more selectors to build a tuple +* Timeout support for sets +* Dormant flag for tables +* Default chain policy specifiable on creation + +--- Old: nftables-0.4.tar.bz2 nftables-0.4.tar.bz2.sig New: nftables-0.5.tar.bz2 nftables-0.5.tar.bz2.sig Other differences: -- ++ nftables.spec ++ --- /var/tmp/diff_new_pack.GxsZS0/_old 2015-09-27 08:39:40.0 +0200 +++ /var/tmp/diff_new_pack.GxsZS0/_new 2015-09-27 08:39:40.0 +0200 @@ -1,7 +1,7 @@ # # spec file for package nftables # -# Copyright (c) 2014 SUSE LINUX Products GmbH, Nuernberg, Germany. +# Copyright (c) 2015 SUSE LINUX GmbH, Nuernberg, Germany. # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -17,13 +17,14 @@ Name: nftables -Version:0.4 +Version:0.5 Release:0 Summary:Userspace utility to access the nf_tables packet filter License:GPL-2.0 Group: Productivity/Networking/Security Url:http://netfilter.org/projects/nftables/ #Git-Clone:git://git.netfilter.org/nftables + Source: http://ftp.netfilter.org/pub/nftables/nftables-%version.tar.bz2 Source2: http://ftp.netfilter.org/pub/nftables/nftables-%version.tar.bz2.sig BuildRoot: %{_tmppath}/%{name}-%{version}-build @@ -36,7 +37,7 @@ BuildRequires: readline-devel BuildRequires: xsltproc BuildRequires: pkgconfig(libmnl) >= 1.0.3 -BuildRequires: pkgconfig(libnftnl) >= 1.0.2 +BuildRequires: pkgconfig(libnftnl) >= 1.0.5 Obsoletes: nftables-plus < %version-%release Provides: nftables-plus = %version-%release ++ nftables-0.4.tar.bz2 -> nftables-0.5.tar.bz2 ++ 28399 lines of diff (skipped)
commit nftables for openSUSE:Factory
Hello community, here is the log from the commit of package nftables for openSUSE:Factory checked in at 2015-05-24 19:34:39 Comparing /work/SRC/openSUSE:Factory/nftables (Old) and /work/SRC/openSUSE:Factory/.nftables.new (New) Package is nftables Changes: --- /work/SRC/openSUSE:Factory/nftables/nftables.changes2014-12-17 19:14:44.0 +0100 +++ /work/SRC/openSUSE:Factory/.nftables.new/nftables.changes 2015-05-24 19:34:40.0 +0200 @@ -1,0 +2,7 @@ +Sat May 23 23:06:12 UTC 2015 - mrueck...@suse.de + +- set the url to the project page +- pass --disable-silent-rules to configure to allow gcc post build + check to work + +--- Other differences: -- ++ nftables.spec ++ --- /var/tmp/diff_new_pack.mCnZ7C/_old 2015-05-24 19:34:41.0 +0200 +++ /var/tmp/diff_new_pack.mCnZ7C/_new 2015-05-24 19:34:41.0 +0200 @@ -22,7 +22,7 @@ Summary:Userspace utility to access the nf_tables packet filter License:GPL-2.0 Group: Productivity/Networking/Security - +Url:http://netfilter.org/projects/nftables/ #Git-Clone:git://git.netfilter.org/nftables Source: http://ftp.netfilter.org/pub/nftables/nftables-%version.tar.bz2 Source2: http://ftp.netfilter.org/pub/nftables/nftables-%version.tar.bz2.sig @@ -61,7 +61,7 @@ mkdir obj pushd obj/ %define _configure ../configure -%configure --docdir=%_docdir/%name +%configure --disable-silent-rules --docdir=%_docdir/%name make %{?_smp_mflags} popd
commit nftables for openSUSE:Factory
Hello community, here is the log from the commit of package nftables for openSUSE:Factory checked in at 2014-12-17 19:15:37 Comparing /work/SRC/openSUSE:Factory/nftables (Old) and /work/SRC/openSUSE:Factory/.nftables.new (New) Package is nftables Changes: --- /work/SRC/openSUSE:Factory/nftables/nftables.changes2014-08-13 08:49:00.0 +0200 +++ /work/SRC/openSUSE:Factory/.nftables.new/nftables.changes 2014-12-17 19:14:44.0 +0100 @@ -1,0 +2,14 @@ +Tue Dec 16 01:25:00 UTC 2014 - jeng...@inai.de + +- Update to new upstream release 0.4 +* Since Linux 3.18: support for global ruleset operations +* Since 3.17: full logging support for all the families, + including nfnetlink_log +* 3.16: automatic selection of the optimal set implementation +* 3.14: reject support for ip, ip6 and inet +* 3.18: reject support for bridge, and reject icmpx abstraction +* 3.18: masquerade support +* 3.19: redirect support +* Extend meta to support pkttype, cpu and devgroup matching. + +--- Old: nftables-plus-0.3.tar.asc nftables-plus-0.3.tar.xz New: nftables-0.4.tar.bz2 nftables-0.4.tar.bz2.sig Other differences: -- ++ nftables.spec ++ --- /var/tmp/diff_new_pack.VHfIZ0/_old 2014-12-17 19:14:46.0 +0100 +++ /var/tmp/diff_new_pack.VHfIZ0/_new 2014-12-17 19:14:46.0 +0100 @@ -17,17 +17,15 @@ Name: nftables -Version:0.3 +Version:0.4 Release:0 Summary:Userspace utility to access the nf_tables packet filter License:GPL-2.0 Group: Productivity/Networking/Security #Git-Clone:git://git.netfilter.org/nftables -#Git-Clone:git://git.inai.de/nftables plus -#Git-Snapshot: nftables-plus-0.3 -Source: http://xtables.de/files/nftables-plus-%version.tar.xz -Source2:http://xtables.de/files/nftables-plus-%version.tar.asc +Source: http://ftp.netfilter.org/pub/nftables/nftables-%version.tar.bz2 +Source2: http://ftp.netfilter.org/pub/nftables/nftables-%version.tar.bz2.sig BuildRoot: %{_tmppath}/%{name}-%{version}-build BuildRequires: bison BuildRequires: dblatex @@ -37,8 +35,10 @@ BuildRequires: pkgconfig = 0.21 BuildRequires: readline-devel BuildRequires: xsltproc -BuildRequires: pkgconfig(libmnl) -BuildRequires: pkgconfig(libnftnl) = 1.0 +BuildRequires: pkgconfig(libmnl) = 1.0.3 +BuildRequires: pkgconfig(libnftnl) = 1.0.2 +Obsoletes: nftables-plus %version-%release +Provides: nftables-plus = %version-%release %description nf_tables is the new firewalling infrastructure in the Linux kernel, @@ -46,38 +46,31 @@ the long term. nftables is the corresponsing userspace frontend, replacing their respective userspace utilities. -%package plus -Summary:Userspace utility to access the nf_tables packet filter -Group: Productivity/Networking/Security -Provides: nftables = %version-%release - -%description plus -nf_tables is the new firewalling infrastructure in the Linux kernel, -intended to replace ip_tables, ip6_tables, arp_tables and ebtables in -the long term. nftables is the corresponsing userspace frontend, -replacing their respective userspace utilities. - nftables features native support for sets and dictionaries of arbitrary types, support for many different protocols, meta data types, connection tracking, NAT, logging, atomic incremental and full ruleset updates. %prep -%setup -qn %name-plus-%version +%setup -q %build mkdir bin ln -s %_bindir/docbook-to-man bin/docbook2x-man export PATH=$PATH:$PWD/bin +mkdir obj +pushd obj/ +%define _configure ../configure %configure --docdir=%_docdir/%name make %{?_smp_mflags} +popd %install b=%buildroot -make install DESTDIR=$b +%make_install -C obj cp -a COPYING $b/%_docdir/%name/ -%files plus +%files %defattr(-,root,root) %config %_sysconfdir/nftables %_sbindir/nft ++ nftables-plus-0.3.tar.xz - nftables-0.4.tar.bz2 ++ 55421 lines of diff (skipped) -- To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org For additional commands, e-mail: opensuse-commit+h...@opensuse.org