OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/iptables?expand=0&rev=8

iptables-1.4.0-debian-docs.tar.bz2

@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:af04502f869b92350aebd5ecbb2d27a59eea3c45233da2951e0852f9a2ce278d
-size 24322

iptables-1.4.0-makefile.diff

@@ -1,29 +0,0 @@
---- Makefile
-+++ Makefile
-@@ -11,15 +11,9 @@
- # Standard part of Makefile for topdir.
- TOPLEVEL_INCLUDED=YES
- 
--# For recent kernels we only need the source in KERNEL_DIR to build. Older
--# kernels have a bug, where linux/netfilter_ipv4.h includes linux/config.h,
--# which includes linux/autoconf.h, which is placed into KBUILD_OUTPUT.
- ifndef KERNEL_DIR
- KERNEL_DIR="/lib/modules/$(shell uname -r)/source"
- endif
--ifndef KBUILD_OUTPUT
--KBUILD_OUTPUT="/lib/modules/$(shell uname -r)/build"
--endif
- IPTABLES_VERSION:=1.4.0
- OLD_IPTABLES_VERSION:=1.4.0rc1
- 
-@@ -42,8 +36,8 @@
- DO_SELINUX=0
- endif
- 
--COPT_FLAGS:=-O2
--CFLAGS:=$(COPT_FLAGS) -Wall -Wunused -I$(KBUILD_OUTPUT)/include -I$(KERNEL_DIR)/include -Iinclude/ -DIPTABLES_VERSION=\"$(IPTABLES_VERSION)\" #-g -DDEBUG #-pg # -DIPTC_DEBUG
-+COPT_FLAGS:=$(CFLAGS)
-+CFLAGS:=$(COPT_FLAGS) -Wall -Wunused -idirafter $(KERNEL_DIR)/include -Iinclude/ -DIPTABLES_VERSION=\"$(IPTABLES_VERSION)\"
- 
- ifdef NO_SHARED_LIBS
- CFLAGS += -DNO_SHARED_LIBS=1

iptables-1.4.0.tar.bz2

@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:fd9a978035e6a8f73344f986c84a222dc4ac3706b901e0c1ecae9647db5e5d52
-size 181610

iptables-1.4.2-rc1-debian-howtos.tar.bz2

@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:c1142b9bafeb94336e23a47731dae7d2295d8c53f0f81edf927f0799e9b63e97
+size 57562

iptables-1.4.2-rc1.tar.bz2

@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:d22b6efff7f068d959dac6ed3401bd55d39bdb818c934b547e0c29d9fdc4e5a9
+size 437753

iptables-batch.patch

@@ -1,21 +1,43 @@
---- Makefile
+--- Makefile.am
-+++ Makefile
++++ Makefile.am
-@@ -107,6 +107,12 @@
+@@ -31,6 +31,11 @@
- 	$(CC) $(CFLAGS) -DIPT_LIB_DIR=\"$(IPT_LIBDIR)\" $(LDFLAGS) -o $@ $^ $(LDLIBS)
+ iptables_save_LDFLAGS     = ${iptables_LDFLAGS}
+ iptables_save_LDADD       = ${iptables_LDADD}
+ 
++iptables_batch_SOURCES    = iptables-batch.c iptables.c xtables.c
++iptables_batch_CFLAGS     = ${AM_CFLAGS}
++iptables_batch_LDFLAGS    = ${iptables_LDFLAGS}
++iptables_batch_LDADD      = ${iptables_LDADD}
++
+ # iptables-multi, semi-static
+ iptables_static_SOURCES   = ${iptables_multi_SOURCES}
+ iptables_static_CFLAGS    = ${iptables_multi_CFLAGS} -DNO_SHARED_LIBS=1
+@@ -58,6 +63,11 @@
+ ip6tables_save_LDFLAGS    = ${ip6tables_LDFLAGS}
+ ip6tables_save_LDADD      = ${ip6tables_LDADD}
+ 
++ip6tables_batch_SOURCES   = iptables-batch.c ip6tables.c xtables.c
++ip6tables_batch_CFLAGS    = ${AM_CFLAGS} -DIP6T
++ip6tables_batch_LDFLAGS   = ${iptables_LDFLAGS}
++ip6tables_batch_LDADD     = ${iptables_LDADD}
++
+ # iptables-multi, semi-static
+ ip6tables_static_SOURCES    = ${ip6tables_multi_SOURCES}
+ ip6tables_static_CFLAGS     = ${ip6tables_multi_CFLAGS} -DNO_SHARED_LIBS=1
+@@ -82,8 +92,8 @@
+ sbin_PROGRAMS += iptables-static ip6tables-static
+ endif
+ if ENABLE_SHARED
+-sbin_PROGRAMS += iptables iptables-multi iptables-restore iptables-save \
+-                 ip6tables ip6tables-multi ip6tables-restore ip6tables-save
++sbin_PROGRAMS += iptables iptables-multi iptables-restore iptables-save iptables-batch \
++                 ip6tables ip6tables-multi ip6tables-restore ip6tables-save ip6tables-batch
  endif
  
-+iptables-batch: iptables-batch.c iptables.o xtables.o $(STATIC_LIBS) libiptc/libiptc.a
+ iptables.8: ${srcdir}/iptables.8.in extensions/matches4.man extensions/targets4.man
-+	$(CC) $(CFLAGS) -DIPT_LIB_DIR=\"$(IPT_LIBDIR)\" $(LDFLAGS) -o $@ $^ $(LDLIBS)
-+
-+ip6tables-batch: iptables-batch.c ip6tables.o xtables.o $(STATIC6_LIBS) libiptc/libiptc.a
-+	$(CC) $(CFLAGS) -DIP6T_LIB_DIR=\"$(IPT_LIBDIR)\" $(LDFLAGS) -o $@ $^ $(LDLIBS)
-+
- $(DESTDIR)$(BINDIR)/iptables: iptables
- 	@[ -d $(DESTDIR)$(BINDIR) ] || mkdir -p $(DESTDIR)$(BINDIR)
- 	cp $< $@
 --- iptables-batch.c
 +++ iptables-batch.c
-@@ -0,0 +1,454 @@
+@@ -0,0 +1,450 @@
 +/*
 + * Author: Ludwig Nussel <ludwig.nussel@suse.de>
 + *
@@ -55,7 +77,8 @@
 +#include <errno.h>
 +#include <string.h>
 +
-+#ifdef IP6T_LIB_DIR
++#include <xtables.h>
++#ifdef IP6T
 +#include <ip6tables.h>
 +#else
 +#include <iptables.h>
@@ -195,7 +218,7 @@
 +struct table_handle
 +{
 +	char* name;
-+#ifdef IP6T_LIB_DIR
++#ifdef IP6T
 +	ip6tc_handle_t handle;
 +#else
 +	iptc_handle_t handle;
@@ -207,7 +230,7 @@
 +struct table_handle* current_table;
 +
 +static void
-+alloc_tables()
++alloc_tables(void)
 +{
 +	tables = realloc(tables, sizeof(struct table_handle) * num_tables);
 +}
@@ -272,7 +295,7 @@
 +	if(!find_table(argc, argv))
 +		return 0;
 +
-+#ifdef IP6T_LIB_DIR
++#ifdef IP6T
 +	ret = do_command6(argc, argv, &table, &current_table->handle);
 +
 +	if (!ret)
@@ -310,7 +333,7 @@
 +}
 +
 +static int
-+do_commit()
++do_commit(void)
 +{
 +	unsigned i;
 +	int ret = 1;
@@ -319,7 +342,7 @@
 +	{
 +		if(tables[i].handle)
 +		{
-+#ifdef IP6T_LIB_DIR
++#ifdef IP6T
 +			if(!ip6tc_commit(&tables[i].handle))
 +			{
 +				fprintf(stderr, "commit failed on table %s: %s\n", tables[i].name, ip6tc_strerror(errno));
@@ -339,7 +362,7 @@
 +}
 +
 +static void
-+help()
++help(void)
 +{
 +	fprintf(stderr, "Usage: %s [FILE]\n\n", program_name);
 +	puts("Read iptables commands from FILE, commit them at EOF\n");
@@ -360,20 +383,15 @@
 +	char* nargv[256];
 +	FILE* fp = stdin;
 +
-+#ifdef IP6T_LIB_DIR
++#ifdef IP6T
 +	program_name = "ip6tables-batch";
-+
-+	lib_dir = getenv("IP6TABLES_LIB_DIR");
-+	if (!lib_dir)
-+		lib_dir = IP6T_LIB_DIR;
 +#else
 +	program_name = "iptables-batch";
-+
-+	lib_dir = getenv("IPTABLES_LIB_DIR");
-+	if (!lib_dir)
-+		lib_dir = IPT_LIB_DIR;
 +#endif
-+	program_version = IPTABLES_VERSION;
++	lib_dir = getenv("XTABLES_LIBDIR");
++	if (!lib_dir)
++		lib_dir = XTABLES_LIBDIR;
++	program_version = XTABLES_VERSION;
 +
 +#ifdef NO_SHARED_LIBS
 +	init_extensions();
@@ -441,7 +459,7 @@
 +		dumpargv(nargc, nargv);
 +#endif
 +
-+#ifdef IP6T_LIB_DIR
++#ifdef IP6T
 +		if(!strcmp(nargv[0], "ip6tables"))
 +#else
 +		if(!strcmp(nargv[0], "iptables"))

iptables.changes

@@ -1,3 +1,76 @@
+-------------------------------------------------------------------
+Wed Sep 10 13:36:30 CEST 2008 - prusnak@suse.cz
+
+- updated to 1.4.2-rc1
+  * libxt_TOS: make sure --set-tos value/mask is recognized
+  * libiptc: fix scalability performance issue during initial ruleset parsing
+  * xt_string: string extension case insensitive matching
+  * ip6tables: add --goto support
+
+-------------------------------------------------------------------
+Wed Sep 10 12:02:03 CEST 2008 - prusnak@suse.cz
+
+- updated to 1.4.1.1
+  * iptables: fix printing of line numbers with --line-numbers arg
+  * ip6tables: fix printing of ipv6 network masks
+  * build: fix `make install` when --disable-shared is used
+  * iprange: kernel flags were not set
+
+-------------------------------------------------------------------
+Wed Sep 10 11:59:58 CEST 2008 - prusnak@suse.cz
+
+- updated to 1.4.1
+  * iptables: use C99 lists for struct options
+  * Make iptables-restore usable over a pipe
+  * Add support for --set-counters to iptables -P
+  * iptables --list-rules command
+  * iptables --list chain rulenum
+  * Make --set-counters (-c) accept comma separated counters
+  * libxt_iprange: Fix IP validation logic
+  * fix ip6tables dest address printing
+  * Converts the iptables build infrastructure to autotools.
+  * Introduce strtonum(), which works like string_to_number(), but passes
+  * print warning when dlopen fails
+  * libxt_owner: UID/GID range support
+  * Fix compilation of iptables-static build
+  * xtables.h: move non-exported parts to internal.h
+  * Combine IP{,6}T_LIB_DIR into XTABLES_LIBDIR
+  * manpages: fix broken markup (missing close tags)
+  * manpages: update to reflect fine-grained control
+  * configure: split --enable-libipq from --enable-devel
+  * Add all necessary header files - compilation fix for various cases
+  * Install libiptc header files because xtables.h depends on it
+  * Implement AF_UNSPEC as a wildcard for extensions
+  * Combine ipt and ip6t manpages
+  * Resolve warnings on 64-bit compile
+  * Wrap dlopen code into NO_SHARED_LIBS
+  * Remove support for compilation of conditional extensions
+  * Resolve libipt_set warnings
+  * Update documentation about building the package
+  * configure.ac: AC_SUBST must be separate
+  * Dynamically create xtables.h.in with version
+  * configure.ac: remove already-defined variables
+  * Remove old functions, constants
+  * Makefile.am: use PACKAGE_TARNAME
+  * iptables out-of-tree build directory
+  * Introduce a counter for number of user defined chains.
+  * Solving scalability issue: for chain list "name" searching.
+  * REDIRECT: Allow symbolic port in REDIRECT --to-port
+  * Fix iptables-save output of libxt_owner match
+  * allow empty strings in argument parser
+  * Fix define value of SCTP chunk type.
+  * cleanup several code wraparounds
+  * Add RATEEST target extension
+  * Add rateest match extension
+  * Properly initialize revision for ip6tables targets
+  * Resync header files with kernel
+  * libiptc: move variable definitions to head of function
+  * Fix CONNMARK mask initialisation
+  * iptables-save:remove unnecessary code.
+  * Don't assume /bin/sh is bash
+  * Add xtables version defines.
+  * Use s6_addr32 to access bits in int6_addr instead of incompatible name
+
 -------------------------------------------------------------------
 Tue Jan  8 17:10:54 CET 2008 - prusnak@suse.cz
 

iptables.spec

@@ -1,29 +1,37 @@
 #
-# spec file for package iptables (Version 1.4.0)
+# spec file for package iptables (Version 1.4.1.91)
 #
 # Copyright (c) 2008 SUSE LINUX Products GmbH, Nuernberg, Germany.
-# This file and all modifications and additions to the pristine
-# package are under the same license as the package itself.
 #
+# All modifications and additions to the file contributed by third parties
+# remain the property of their copyright owners, unless otherwise agreed
+# upon. The license for this file, and modifications and additions to the
+# file, is the same license as for the pristine package itself (unless the
+# license for the pristine package is not an Open Source License, in which
+# case the license is the MIT License). An "Open Source License" is a
+# license that conforms to the Open Source Definition (Version 1.9)
+# published by the Open Source Initiative.
+
 # Please submit bugfixes or comments via http://bugs.opensuse.org/
 #
 
 # norootforbuild
 
+%define real_ver 1.4.2-rc1
+
 Name:           iptables
-BuildRequires:  kernel-source
 License:        GPL v2 or later
 Group:          Productivity/Networking/Security
 AutoReqProv:    on
-Version:        1.4.0
+Version:        1.4.1.91
 Release:        1
 Summary:        IP Packet Filter Administration
-Source0:        %{name}-%{version}.tar.bz2
+Source0:        %{name}-%{real_ver}.tar.bz2
-Source1:        %{name}-%{version}-debian-docs.tar.bz2
+Source1:        %{name}-%{real_ver}-debian-howtos.tar.bz2
-Patch0:         %{name}-%{version}-makefile.diff
+Patch0:         %{name}-batch.patch
-Patch1:         %{name}-%{version}-batch.diff
 Url:            http://www.iptables.org
 BuildRoot:      %{_tmppath}/%{name}-%{version}-build
+BuildRequires:  linux-kernel-headers sgmltool
 
 %description
 Iptables is used to set up, maintain, and inspect the tables of IP
@@ -37,6 +45,7 @@ Authors:
     Netfilter Core Team <netfilter-core@linuxcare.com.au>
 
 %package devel
+License:        GPL v2 or later
 Summary:        Libraries, Headers and Development Man Pages for libipq
 Group:          Development/Libraries/C and C++
 AutoReqProv:    on
@@ -52,38 +61,34 @@ Authors:
     Netfilter Core Team <netfilter-core@linuxcare.com.au>
 
 %prep
-%setup -q -a 1
+%setup -q -a 1 -n %{name}-%{real_ver}
 %patch0
-%patch1
 
 %build
-[ -z "$KERNEL_DIR" ] && KERNEL_DIR="/usr/src/linux"
+autoreconf -f -i
-CFLAGS="$RPM_OPT_FLAGS" make LD=gcc BINDIR=%{_sbindir} LIBDIR=%{_libdir} MANDIR=%{_mandir} KERNEL_DIR="$KERNEL_DIR"
+%configure \
-CFLAGS="$RPM_OPT_FLAGS" make LD=gcc BINDIR=%{_sbindir} LIBDIR=%{_libdir} MANDIR=%{_mandir} KERNEL_DIR="$KERNEL_DIR" experimental
+    --enable-libipq
-CFLAGS="$RPM_OPT_FLAGS" make LD=gcc BINDIR=%{_sbindir} LIBDIR=%{_libdir} MANDIR=%{_mandir} KERNEL_DIR="$KERNEL_DIR" iptables-batch ip6tables-batch
+make %{?jobs:-j%jobs}
+# build howtos
+cd howtos
+make
 
 %install
-[ -z "$KERNEL_DIR" ] && KERNEL_DIR="/usr/src/linux"
+make DESTDIR=$RPM_BUILD_ROOT install
-CFLAGS="$RPM_OPT_FLAGS" \
+# install -m755 iptables-batch ip6tables-batch $RPM_BUILD_ROOT%{_sbindir}
-make IPT_LIBDIR=%{_libdir}/iptables \
-     BINDIR=$RPM_BUILD_ROOT%{_sbindir} \
-     LIBDIR=$RPM_BUILD_ROOT%{_libdir} \
-     INCDIR=$RPM_BUILD_ROOT%{_includedir} \
-     MANDIR=$RPM_BUILD_ROOT%{_mandir} \
-     KERNEL_DIR="$KERNEL_DIR" \
-     install install-devel install-experimental
-install -m755 iptables-batch ip6tables-batch $RPM_BUILD_ROOT%{_sbindir}
 
 %clean
 rm -rf $RPM_BUILD_ROOT
 
 %files
 %defattr(-,root,root)
-%doc COPYING doc/*.html
+%doc COPYING INCOMPATIBILITIES howtos/*.html
 %doc %{_mandir}/man8/*
+%{_bindir}/iptables*
 %{_sbindir}/iptables*
 %{_sbindir}/ip6tables*
-%{_libdir}/iptables
+%dir %{_libdir}/xtables
+%{_libdir}/xtables/*
 
 %files devel
 %defattr(-,root,root)
@@ -92,7 +97,71 @@ rm -rf $RPM_BUILD_ROOT
 %{_includedir}/*
 
 %changelog
-* Tue Jan 08 2008 - prusnak@suse.cz
+* Wed Sep 10 2008 prusnak@suse.cz
+- updated to 1.4.2-rc1
+  * libxt_TOS: make sure --set-tos value/mask is recognized
+  * libiptc: fix scalability performance issue during initial ruleset parsing
+  * xt_string: string extension case insensitive matching
+  * ip6tables: add --goto support
+* Wed Sep 10 2008 prusnak@suse.cz
+- updated to 1.4.1.1
+  * iptables: fix printing of line numbers with --line-numbers arg
+  * ip6tables: fix printing of ipv6 network masks
+  * build: fix `make install` when --disable-shared is used
+  * iprange: kernel flags were not set
+* Wed Sep 10 2008 prusnak@suse.cz
+- updated to 1.4.1
+  * iptables: use C99 lists for struct options
+  * Make iptables-restore usable over a pipe
+  * Add support for --set-counters to iptables -P
+  * iptables --list-rules command
+  * iptables --list chain rulenum
+  * Make --set-counters (-c) accept comma separated counters
+  * libxt_iprange: Fix IP validation logic
+  * fix ip6tables dest address printing
+  * Converts the iptables build infrastructure to autotools.
+  * Introduce strtonum(), which works like string_to_number(), but passes
+  * print warning when dlopen fails
+  * libxt_owner: UID/GID range support
+  * Fix compilation of iptables-static build
+  * xtables.h: move non-exported parts to internal.h
+  * Combine IP{,6}T_LIB_DIR into XTABLES_LIBDIR
+  * manpages: fix broken markup (missing close tags)
+  * manpages: update to reflect fine-grained control
+  * configure: split --enable-libipq from --enable-devel
+  * Add all necessary header files - compilation fix for various cases
+  * Install libiptc header files because xtables.h depends on it
+  * Implement AF_UNSPEC as a wildcard for extensions
+  * Combine ipt and ip6t manpages
+  * Resolve warnings on 64-bit compile
+  * Wrap dlopen code into NO_SHARED_LIBS
+  * Remove support for compilation of conditional extensions
+  * Resolve libipt_set warnings
+  * Update documentation about building the package
+  * configure.ac: AC_SUBST must be separate
+  * Dynamically create xtables.h.in with version
+  * configure.ac: remove already-defined variables
+  * Remove old functions, constants
+  * Makefile.am: use PACKAGE_TARNAME
+  * iptables out-of-tree build directory
+  * Introduce a counter for number of user defined chains.
+  * Solving scalability issue: for chain list "name" searching.
+  * REDIRECT: Allow symbolic port in REDIRECT --to-port
+  * Fix iptables-save output of libxt_owner match
+  * allow empty strings in argument parser
+  * Fix define value of SCTP chunk type.
+  * cleanup several code wraparounds
+  * Add RATEEST target extension
+  * Add rateest match extension
+  * Properly initialize revision for ip6tables targets
+  * Resync header files with kernel
+  * libiptc: move variable definitions to head of function
+  * Fix CONNMARK mask initialisation
+  * iptables-save:remove unnecessary code.
+  * Don't assume /bin/sh is bash
+  * Add xtables version defines.
+  * Use s6_addr32 to access bits in int6_addr instead of incompatible name
+* Tue Jan 08 2008 prusnak@suse.cz
 - updated to 1.4.0:
   * Add support for generic xtables infrastructure (improved IPv6 support!)
   * Deletes empty ->final_check() functions
@@ -134,10 +203,10 @@ rm -rf $RPM_BUILD_ROOT
   * fix check_inverse() call
 - removed obsolete patch:
   * strict-aliasing-fix.diff (included in update)
-* Tue Jul 31 2007 - prusnak@suse.cz
+* Tue Jul 31 2007 prusnak@suse.cz
 - removed sed scripts in %%prep section from last update
   * not needed anymore
-* Thu Jul 26 2007 - prusnak@suse.cz
+* Thu Jul 26 2007 prusnak@suse.cz
 - updated to 1.3.8
   * Fix build error of conntrack match
   * Remove whitespace in ip6tables.c
@@ -171,13 +240,13 @@ rm -rf $RPM_BUILD_ROOT
   * newlines.diff (included in update)
   * shlibs.diff (done by sed in %%prep section)
   * extensions.diff
-* Wed May 09 2007 - prusnak@suse.cz
+* Wed May 09 2007 prusnak@suse.cz
 - added newlines to error messages (newlines.diff) [#271847]
-* Tue Mar 13 2007 - prusnak@suse.cz
+* Tue Mar 13 2007 prusnak@suse.cz
 - added initial setting of KERNEL_DIR variable in %%install section of spec file
-* Tue Jan 09 2007 - prusnak@suse.cz
+* Tue Jan 09 2007 prusnak@suse.cz
 - added experimental tools and extensions (removed by last update)
-* Wed Jan 03 2007 - prusnak@suse.cz
+* Wed Jan 03 2007 prusnak@suse.cz
 - updated to 1.3.7
   * Add revision support for ip6tables
   * Add port range support for ip6tables multiport match
@@ -187,9 +256,9 @@ rm -rf $RPM_BUILD_ROOT
   * Add NFLOG target extension for iptables/ip6tables (needs kernel > 2.6.19)
   * Bugfixes
 - updated debian-docs and moved into tar.bz2
-* Thu Nov 16 2006 - mjancar@suse.cz
+* Thu Nov 16 2006 mjancar@suse.cz
 - allow setting KERNEL_DIR on commandline for build (#220851)
-* Tue Oct 17 2006 - anosek@suse.cz
+* Tue Oct 17 2006 anosek@suse.cz
 - updated to version 1.3.6
   * Support multiple matches of the same type within a single rule
   * DCCP/SCTP support for multiport match (needs kernel >= 2.6.18)
@@ -198,93 +267,93 @@ rm -rf $RPM_BUILD_ROOT
   * Add support for statistic match (needs kernel >= 2.6.18)
   * Optionally read realm values from /etc/iproute2/rt_realms
   * Bugfixes
-* Wed Feb 01 2006 - lnussel@suse.de
+* Wed Feb 01 2006 lnussel@suse.de
 - updated to version 1.3.5
   * supports ip6tables state and conntrack \o/ (#145758)
-* Fri Jan 27 2006 - mls@suse.de
+* Fri Jan 27 2006 mls@suse.de
 - converted neededforbuild to BuildRequires
-* Tue Jan 24 2006 - schwab@suse.de
+* Tue Jan 24 2006 schwab@suse.de
 - Fix building of shared libraries.
-* Tue Jan 17 2006 - postadal@suse.cz
+* Tue Jan 17 2006 postadal@suse.cz
 - updated policy extension from upstream (policy-1.3.4.patch)
   * ported for changes in kernel
-* Tue Nov 15 2005 - postadal@suse.cz
+* Tue Nov 15 2005 postadal@suse.cz
 - updated to version 1.3.4
 - added RPM_OPT_FLAGS to CFLAGS
 - fixed strict aliasing (strict-aliasing-fix.patch)
-* Mon Aug 01 2005 - lnussel@suse.de
+* Mon Aug 01 2005 lnussel@suse.de
 - add iptables-batch and ip6tables-batch
-* Mon Aug 01 2005 - postadal@suse.cz
+* Mon Aug 01 2005 postadal@suse.cz
 - updated to version 1.3.3
-* Wed Jul 27 2005 - postadal@suse.cz
+* Wed Jul 27 2005 postadal@suse.cz
 - updated to version 1.3.2
-* Wed Mar 09 2005 - postadal@suse.cz
+* Wed Mar 09 2005 postadal@suse.cz
 - updated to version 1.3.1 (bug fixes)
-* Thu Feb 17 2005 - postadal@suse.cz
+* Thu Feb 17 2005 postadal@suse.cz
 - updated to version 1.3.0
 - removed obsoleted patch modules-secfix
-* Tue Nov 02 2004 - postadal@suse.cz
+* Tue Nov 02 2004 postadal@suse.cz
 - fixed uninitialised variable [#47850] - CAN-2004-0986
-* Tue Aug 17 2004 - mludvig@suse.cz
+* Tue Aug 17 2004 mludvig@suse.cz
 - Fixed mode for extensions/.policy-test6
-* Thu Aug 05 2004 - mludvig@suse.cz
+* Thu Aug 05 2004 mludvig@suse.cz
 - Added IPv6 support to the 'policy' match.
-* Wed Aug 04 2004 - postadal@suse.cz
+* Wed Aug 04 2004 postadal@suse.cz
 - updated to version 1.2.11
 - removed obsoleted patch clusterip
-* Sat Apr 24 2004 - lmb@suse.de
+* Sat Apr 24 2004 lmb@suse.de
 - Add support for Cluster IP functionality.
-* Wed Apr 21 2004 - mludvig@suse.cz
+* Wed Apr 21 2004 mludvig@suse.cz
 - Added module for IPv6 conntrack from USAGI.
-* Wed Mar 24 2004 - mludvig@suse.cz
+* Wed Mar 24 2004 mludvig@suse.cz
 - Added policy module from patch-o-matic
-* Fri Feb 06 2004 - postadal@suse.cz
+* Fri Feb 06 2004 postadal@suse.cz
 - updated to version 1.2.9.
-* Sat Jan 10 2004 - adrian@suse.de
+* Sat Jan 10 2004 adrian@suse.de
 - add %%defattr
-* Wed Jul 23 2003 - postadal@suse.cz
+* Wed Jul 23 2003 postadal@suse.cz
 - updated to 1.2.8
-* Tue Apr 08 2003 - schwab@suse.de
+* Tue Apr 08 2003 schwab@suse.de
 - Prefer sanitized kernel headers.
-* Thu Sep 05 2002 - postadal@suse.cz
+* Thu Sep 05 2002 postadal@suse.cz
 - updated to bugfixed 1.2.7a version
-* Wed Aug 28 2002 - postadal@suse.cz
+* Wed Aug 28 2002 postadal@suse.cz
 - added Requires %%{name} = %%{version} to devel package
-* Thu Aug 08 2002 - nadvornik@suse.cz
+* Thu Aug 08 2002 nadvornik@suse.cz
 - updated to 1.2.7
-* Wed Mar 27 2002 - postadal@suse.cz
+* Wed Mar 27 2002 postadal@suse.cz
 - revert to compile it with kernel headers (#15448)
-* Fri Feb 01 2002 - nadvornik@suse.cz
+* Fri Feb 01 2002 nadvornik@suse.cz
 - compiled with kernel headers from glibc
-* Tue Jan 15 2002 - nadvornik@suse.cz
+* Tue Jan 15 2002 nadvornik@suse.cz
 - update to 1.2.5
-* Wed Nov 14 2001 - nadvornik@suse.cz
+* Wed Nov 14 2001 nadvornik@suse.cz
 - updated to 1.2.4 [bug #12104]
   - fixed problems with iptables-save/restore
 - iptables-1.2.4.debian.diff.bz2 contains documentation only,
   Makefile changes moved to separate patch
-* Sat Sep 22 2001 - garloff@suse.de
+* Sat Sep 22 2001 garloff@suse.de
 - Fix ipt_string support (compile fix).
-* Tue Jul 17 2001 - garloff@suse.de
+* Tue Jul 17 2001 garloff@suse.de
 - Update to iptables-1.2.2
 - Appply debian patch: mostly docu stuff
 - Added COMPILE_EXPERIMENTAL flag to Makefile and pass it from RPM
   .spec file to compile and install ip(6)tables-save/restore apps.
-* Fri Apr 06 2001 - kukuk@suse.de
+* Fri Apr 06 2001 kukuk@suse.de
 - changed neededforbuild from lx_suse to kernel-source
-* Tue Mar 27 2001 - lmuelle@suse.de
+* Wed Mar 28 2001 lmuelle@suse.de
 - update to 1.2.1a
 - add devel package with libipq stuff
 - minor spec file cleanup
-* Sun Jan 28 2001 - olh@suse.de
+* Sun Jan 28 2001 olh@suse.de
 - update to 1.2, needed for ppc and sparc
-* Tue Dec 19 2000 - nadvornik@suse.cz
+* Tue Dec 19 2000 nadvornik@suse.cz
 - compiled with lx_suse
-* Tue Oct 17 2000 - nadvornik@suse.cz
+* Tue Oct 17 2000 nadvornik@suse.cz
 - update to 1.1.2
-* Fri Sep 22 2000 - ro@suse.de
+* Fri Sep 22 2000 ro@suse.de
 - up to 1.1.1
-* Fri Jun 09 2000 - ro@suse.de
+* Fri Jun 09 2000 ro@suse.de
 - fixed neededforbuild
-* Wed Jun 07 2000 - nadvornik@suse.cz
+* Wed Jun 07 2000 nadvornik@suse.cz
 - new package 1.1.0