Get Gentoo!
gentoo.org sites
gentoo.org Wiki Bugs Forums Packages
Planet Archives Sources
Infra Status
summaryrefslogtreecommitdiff
path: root/net-firewall/nftables
Commit message (Collapse)AuthorAgeFilesLines
...
* net-firewall/nftables: drop 1.0.5-r1, 1.0.6-r1Sam James2023-05-013-466/+0
| | | | Signed-off-by: Sam James <sam@gentoo.org>
* net-firewall/nftables: stable 1.0.7-r1 for hppa, bug #904916Rolf Eike Beer2023-04-291-1/+1
| | | | | Signed-off-by: Rolf Eike Beer <eike@sf-mail.de> Signed-off-by: Sam James <sam@gentoo.org>
* net-firewall/nftables: stable 1.0.7-r1 for sparc, bug #904916Rolf Eike Beer2023-04-291-1/+1
| | | | | Signed-off-by: Rolf Eike Beer <eike@sf-mail.de> Signed-off-by: Sam James <sam@gentoo.org>
* net-firewall/nftables: Stabilize 1.0.7-r1 ppc, #904916Jakov Smolić2023-04-241-1/+1
| | | | Signed-off-by: Jakov Smolić <jsmolic@gentoo.org>
* net-firewall/nftables: Stabilize 1.0.7-r1 ppc64, #904916Arthur Zamarin2023-04-241-1/+1
| | | | Signed-off-by: Arthur Zamarin <arthurzam@gentoo.org>
* net-firewall/nftables: Stabilize 1.0.7-r1 arm, #904916Arthur Zamarin2023-04-241-1/+1
| | | | Signed-off-by: Arthur Zamarin <arthurzam@gentoo.org>
* net-firewall/nftables: Stabilize 1.0.7-r1 x86, #904916Sam James2023-04-231-1/+1
| | | | Signed-off-by: Sam James <sam@gentoo.org>
* net-firewall/nftables: Stabilize 1.0.7-r1 arm64, #904916Sam James2023-04-231-1/+1
| | | | Signed-off-by: Sam James <sam@gentoo.org>
* net-firewall/nftables: Stabilize 1.0.7-r1 amd64, #904916Sam James2023-04-231-1/+1
| | | | Signed-off-by: Sam James <sam@gentoo.org>
* net-firewall/nftables: Always require sys-devel/flex for buildingKerin Millar2023-03-224-24/+12
| | | | | | | | | | | | It is always necessary for flex to be available, whereas bison is only necessary where building from git. Update the BDEPEND declarations to reflect this. Also, bump the revision number for the formal releases because --changed-deps isn't a commonly used option and nftables isn't a particularly large package. Signed-off-by: Kerin Millar <kfm@plushkava.net> Closes: https://bugs.gentoo.org/876730 Signed-off-by: Sam James <sam@gentoo.org>
* net-firewall/nftables: Use the newly built libnftables.so in the pkg_preinst ↵Kerin Millar2023-03-194-75/+90
| | | | | | | | | | | check Doing so is appropriate because it's not a library that's provided externally. Also, tidy up the code structure and replace the outdated pkg_preinst() function in the ebuild for v1.0.5. Signed-off-by: Kerin Millar <kfm@plushkava.net> Signed-off-by: Sam James <sam@gentoo.org>
* net-firewall/nftables: Require >=libnftnl-1.2.5 for 1.0.7 and 9999Kerin Millar2023-03-192-2/+2
| | | | | Signed-off-by: Kerin Millar <kfm@plushkava.net> Signed-off-by: Sam James <sam@gentoo.org>
* net-firewall/nftables: add 1.0.7Sam James2023-03-153-2/+253
| | | | Signed-off-by: Sam James <sam@gentoo.org>
* net-firewall/nftables: add commentary re pkg_preinst checkSam James2023-03-102-0/+4
| | | | Signed-off-by: Sam James <sam@gentoo.org>
* net-firewall/nftables: Don't test iptables-nft rulesets in pkg_preinst()Kerin Millar2023-03-101-1/+14
| | | | | | | | | | | | | | | | | | | | | | | | | | Rulesets generated by iptables-nft are special in nature and will not always be printed in a way that constitutes a valid syntax for nft(8). Consider the following example in which iptables-nft would ideally have generated a native rule that specifies "reject with tcp reset". Instead, it generated a rule that integrates with an xtables target. # iptables-nft -S -A INPUT -j REJECT --reject-with tcp-reset # nft list ruleset # Warning: table ip filter is managed by iptables-nft, do not touch! table ip filter { chain INPUT { type filter hook input priority filter; policy accept; counter packets 0 bytes 0 xt target REJECT } } Simply ignore the ruleset in the case that it appears to have been generated by iptables-nft. Signed-off-by: Kerin Millar <kfm@plushkava.net> Signed-off-by: Sam James <sam@gentoo.org>
* net-firewall/nftables: Stabilize 1.0.6 ppc64, #899340Arthur Zamarin2023-03-041-1/+1
| | | | Signed-off-by: Arthur Zamarin <arthurzam@gentoo.org>
* net-firewall/nftables: Stabilize 1.0.6 amd64, #899340Arthur Zamarin2023-03-041-1/+1
| | | | Signed-off-by: Arthur Zamarin <arthurzam@gentoo.org>
* net-firewall/nftables: Stabilize 1.0.6 x86, #899340Arthur Zamarin2023-03-041-1/+1
| | | | Signed-off-by: Arthur Zamarin <arthurzam@gentoo.org>
* net-firewall/nftables: Stabilize 1.0.6 ppc, #899340Arthur Zamarin2023-03-041-1/+1
| | | | Signed-off-by: Arthur Zamarin <arthurzam@gentoo.org>
* net-firewall/nftables: Stabilize 1.0.6 hppa, #899340Arthur Zamarin2023-03-041-1/+1
| | | | Signed-off-by: Arthur Zamarin <arthurzam@gentoo.org>
* net-firewall/nftables: Stabilize 1.0.6 arm, #899340Arthur Zamarin2023-03-041-1/+1
| | | | Signed-off-by: Arthur Zamarin <arthurzam@gentoo.org>
* net-firewall/nftables: Stabilize 1.0.6 arm64, #899340Arthur Zamarin2023-03-041-1/+1
| | | | Signed-off-by: Arthur Zamarin <arthurzam@gentoo.org>
* net-firewall/nftables: Stabilize 1.0.6 sparc, #899340Arthur Zamarin2023-03-041-1/+1
| | | | Signed-off-by: Arthur Zamarin <arthurzam@gentoo.org>
* */*: remove py3.8 from PYTHON_COMPATDavid Seifert2023-01-143-6/+6
| | | | Signed-off-by: David Seifert <soap@gentoo.org>
* net-firewall/nftables: drop 1.0.2-r1, 1.0.4-r2Sam James2022-12-267-763/+0
| | | | Signed-off-by: Sam James <sam@gentoo.org>
* net-firewall/nftables: add 1.0.6Sam James2022-12-213-5/+226
| | | | Signed-off-by: Sam James <sam@gentoo.org>
* net-firewall/nftables: keyword 1.0.5 for ~loongWANG Xuerui2022-11-191-1/+1
| | | | Signed-off-by: WANG Xuerui <xen0n@gentoo.org>
* net-firewall/nftables: Stabilize 1.0.5 amd64, #872743Sam James2022-10-111-1/+1
| | | | Signed-off-by: Sam James <sam@gentoo.org>
* net-firewall/nftables: Stabilize 1.0.5 hppa, #872743Arthur Zamarin2022-10-111-1/+1
| | | | Signed-off-by: Arthur Zamarin <arthurzam@gentoo.org>
* net-firewall/nftables: Stabilize 1.0.5 sparc, #872743Agostino Sarubbo2022-10-111-1/+1
| | | | Signed-off-by: Agostino Sarubbo <ago@gentoo.org>
* net-firewall/nftables: Stabilize 1.0.5 ppc, #872743Agostino Sarubbo2022-10-111-1/+1
| | | | Signed-off-by: Agostino Sarubbo <ago@gentoo.org>
* net-firewall/nftables: Stabilize 1.0.5 ppc64, #872743Agostino Sarubbo2022-10-111-1/+1
| | | | Signed-off-by: Agostino Sarubbo <ago@gentoo.org>
* net-firewall/nftables: Stabilize 1.0.5 arm64, #872743Sam James2022-10-111-1/+1
| | | | Signed-off-by: Sam James <sam@gentoo.org>
* net-firewall/nftables: Stabilize 1.0.5 x86, #872743Sam James2022-10-111-1/+1
| | | | Signed-off-by: Sam James <sam@gentoo.org>
* net-firewall/nftables: Stabilize 1.0.5 arm, #872743Sam James2022-10-101-1/+1
| | | | Signed-off-by: Sam James <sam@gentoo.org>
* net-firewall/nftables: Stabilize 1.0.4-r2 ppc, #868963Arthur Zamarin2022-09-161-1/+1
| | | | Signed-off-by: Arthur Zamarin <arthurzam@gentoo.org>
* net-firewall/nftables: Stabilize 1.0.4-r2 hppa, #868963Arthur Zamarin2022-09-161-1/+1
| | | | Signed-off-by: Arthur Zamarin <arthurzam@gentoo.org>
* net-firewall/nftables: Stabilize 1.0.4-r2 ppc64, #868963Arthur Zamarin2022-09-151-1/+1
| | | | Signed-off-by: Arthur Zamarin <arthurzam@gentoo.org>
* net-firewall/nftables: drop RESTRICT="test? ( userpriv )"Mike Gilbert2022-09-133-6/+18
| | | | | | | Instead, check for root and skip the relevant tests otherwise. Closes: https://bugs.gentoo.org/869989 Signed-off-by: Mike Gilbert <floppym@gentoo.org>
* net-firewall/nftables: Stabilize 1.0.4-r2 arm64, #868963Agostino Sarubbo2022-09-081-1/+1
| | | | Signed-off-by: Agostino Sarubbo <ago@gentoo.org>
* net-firewall/nftables: Stabilize 1.0.4-r2 arm, #868963Agostino Sarubbo2022-09-081-1/+1
| | | | Signed-off-by: Agostino Sarubbo <ago@gentoo.org>
* net-firewall/nftables: x86 stable wrt bug #868963Agostino Sarubbo2022-09-081-1/+1
| | | | Signed-off-by: Agostino Sarubbo <ago@gentoo.org>
* net-firewall/nftables: sparc stable wrt bug #868963Agostino Sarubbo2022-09-071-1/+1
| | | | Signed-off-by: Agostino Sarubbo <ago@gentoo.org>
* net-firewall/nftables: amd64 stable wrt bug #868963Agostino Sarubbo2022-09-071-1/+1
| | | | Signed-off-by: Agostino Sarubbo <ago@gentoo.org>
* net-firewall/nftables: Sync 9999Patrick McLean2022-08-091-1/+1
| | | | Signed-off-by: Patrick McLean <chutzpah@gentoo.org>
* net-firewall/nftables: add 1.0.5Patrick McLean2022-08-092-0/+217
| | | | Signed-off-by: Patrick McLean <chutzpah@gentoo.org>
* net-firewall/nftables: drop 1.0.4-r1David Seifert2022-06-211-204/+0
| | | | Signed-off-by: David Seifert <soap@gentoo.org>
* net-firewall/nftables: add emergency pkg_preinst sanity checkSam James2022-06-172-1/+233
| | | | | | | | | | | | | | | | | The idea here is that we check just before merging whether the freshly built `nft` binary can safely (pretend) reload the system ruleset. A significant number of recent regressions have manifested in immediate segfaults when doing this, so it's worth doing the safety check (it's not as if it's niche or unlikely for a failure to occur at this point). Those who want a failed check to be *fatal* can set NFTABLES_ABORT_ON_RELOAD_FAILURE=1. Otherwise, it's just a warning. Bug: https://bugs.gentoo.org/852662 Thanks-to: Kerin Millar <kfm@plushkava.net> Signed-off-by: Sam James <sam@gentoo.org>
* net-firewall/nftables: backport upstream revertMike Gilbert2022-06-172-0/+255
| | | | | Closes: https://bugs.gentoo.org/852662 Signed-off-by: Mike Gilbert <floppym@gentoo.org>
* net-firewall/nftables: sync live ebuildMike Gilbert2022-06-171-6/+1
| | | | Signed-off-by: Mike Gilbert <floppym@gentoo.org>