From f38ecc2ca7e688ea06aade29492a70edb6fc58dec4cc94c34ae0873a26383b74 Mon Sep 17 00:00:00 2001
From: Jan Engelhardt <jengelh@inai.de>
Date: Mon, 19 Aug 2019 12:41:58 +0000
Subject: [PATCH 1/2] - Update to new upstream release 0.9.2

OBS-URL: https://build.opensuse.org/package/show/security:netfilter/nftables?expand=0&rev=41
---
 nftables-0.9.0.tar.bz2     |   3 ---
 nftables-0.9.0.tar.bz2.sig | Bin 590 -> 0 bytes
 nftables-0.9.2.tar.bz2     |   3 +++
 nftables-0.9.2.tar.bz2.sig | Bin 0 -> 590 bytes
 nftables.changes           |   8 ++++++++
 nftables.spec              |  40 ++++++++++++++++++-------------------
 6 files changed, 31 insertions(+), 23 deletions(-)
 delete mode 100644 nftables-0.9.0.tar.bz2
 delete mode 100644 nftables-0.9.0.tar.bz2.sig
 create mode 100644 nftables-0.9.2.tar.bz2
 create mode 100644 nftables-0.9.2.tar.bz2.sig

diff --git a/nftables-0.9.0.tar.bz2 b/nftables-0.9.0.tar.bz2
deleted file mode 100644
index 2621ef9..0000000
--- a/nftables-0.9.0.tar.bz2
+++ /dev/null
@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:ad8181b5fcb9ca572f444bed54018749588522ee97e4c21922648bb78d7e7e91
-size 711108
diff --git a/nftables-0.9.0.tar.bz2.sig b/nftables-0.9.0.tar.bz2.sig
deleted file mode 100644
index 91a74d58ab7119e54d4412056aabffc2ad5cad06c591614ecf729973015d27b0..0000000000000000000000000000000000000000000000000000000000000000
GIT binary patch
literal 0
HcmV?d00001

literal 590
zcmV-U0<ryx0!st{0SEv!79j+{ow5c$9dI<dVN$KDMpdCE(vsu_0$UoO!xtQ5Z*paH
zWnpbVZe?_4X>4?5axQOjX8;Nb5UWO2p(fIj<Qa4i{yE9&Z#y~x-b3bmU+P7QC<10r
zRF0Hd)#Z@gaBYz4@fXFqpfol1J^1cZz|PrO>2DAe1AUPfIp}>)>hhTZSEgpNE@T*>
z>G#J=sj(ab|8-gfG|2K_%}KoeXpK^3s-@=nQU;Tgp*1HPdN~#CUX!g<r1q##CyI+s
zhu0|IpEffUs<eXz#c1V5<Tg2dasZdO=h2}yJ){C|SCR1OX6;O<$|<)^XhjAcD)&l6
z=-k|Awl}^e)+IsNY*4?<z)ZS<mpTT?bsl24$(6BS$i8wF8@c=4PpoCgoE)IHav!wK
zCM+rW;QyPv$1ApgxU+;LJo)SzYD!*5{sIFSm&rmQEc2xT3)z>Dtu0dd_5Z`JtQ$1~
z5*sKK2vu0B!=+ti31(Q;T~g5=KRS?*x53%DnmLQEeeb4EW~CE^@Yr_3l#+&bRsjE$
zd5?!tV`%2*@*@6tjRp@vwuave(Rz-nRRjRc1wZ<iHoB{+p%9NX7t~lkyl^CsMY$En
z8Xt5|v`@G|p&vTA4JpE$c#rI#6jV9@XFZb?yY+@dJlF6<Dm#h7t$}s>^)|qWhKwY)
zD$rK0?Ld7BGT5zG1wTz#Sg><6H1W3xFv)$lrUX?kv<gv*E7pL1HCC7DEV4X01bXr2
cleI;{xV%aOi6KI3vnpOYGXv;9Tb?o@nU<gvQ2+n{

diff --git a/nftables-0.9.2.tar.bz2 b/nftables-0.9.2.tar.bz2
new file mode 100644
index 0000000..c4951eb
--- /dev/null
+++ b/nftables-0.9.2.tar.bz2
@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:5cb66180143e6bfc774f4eb316206d40ac1cb6df269a90882404cbf7165513f5
+size 779850
diff --git a/nftables-0.9.2.tar.bz2.sig b/nftables-0.9.2.tar.bz2.sig
new file mode 100644
index 0000000000000000000000000000000000000000000000000000000000000000..44a5cd89a81957e6706198c16cedfa45d36c8034b03764a7572e4204810ba509
GIT binary patch
literal 590
zcmV-U0<ryx0!st{0SEv!79j+{ow5c$9dI<dVN$KDMpdCE(vsu_0$o~o?-v|nZ*paH
zWnpbVZe?_4X>4?5axQOjX8;Nb5UWO2p(fIj<hha%0E%-pWCQ2Im#w)}g3WE+L6%+3
zSwaCW#~})jxObefQ(J;&^pWHO>Pjt0Ev17g-NO5+SmR%-c1(7JUb^0$Z8&n~1P4<h
z`Wj_c+96Hr`4TEPP20w>1nN9J0MwUlYs}GvD4y<AI<(@E)z-ZsJo@DG*3;=SMJj~o
zT-g2lIvC)ffb@oXz6hzx*Dr8`lY*MqGjP@kc~ac1pRuj_LX^7Dt?BYo@ex$yaW7#Z
zsigft1{M17RSzPFS01<QUNK~wvI742m$&PG+fK<`Is2glL2!)KzUa{pR&5@sFE7Tp
zDq^RA$Gr0?5xh1Ll{;~BrVbN#SV7}iamq;yoi%zFxjL~k;)y^+Fm6pD;FrOV0^E(#
zmD1s>vto;@*v=R<L#33Cf?z<7<%wOzfH^Y3n%8K1*V3M^%g=%<fvzWA-zF=Hg|Yef
zoHXu#%@+6au$D5kgMc)6hcoNKaF`F)>HPK)+Hf1?OJIix!adxRPGKcR1u4oH3=G|T
zdD~IU86qc0`GqLF_Oypz#Ba!{1$B8k$=xjO#y8yKEEpdw_g&}L9?)>@46?Vrut2F?
zCA!4xj}b-{j~>%@LZk&@({vqz>+oNoUk!RI3{fP3sGAh{Km4w{8sTXwXTwx_1le6+
cDIf|IUEpuaReE?%qyHe$3v3HLlOvfE`>j+SQ~&?~

literal 0
HcmV?d00001

diff --git a/nftables.changes b/nftables.changes
index 8f9faf1..758a66e 100644
--- a/nftables.changes
+++ b/nftables.changes
@@ -1,3 +1,11 @@
+-------------------------------------------------------------------
+Mon Aug 19 12:37:45 UTC 2019 - Jan Engelhardt <jengelh@inai.de>
+
+- Update to new upstream release 0.9.2
+  * Transport header port matching, e.g. "th dport 53"
+  * Support for matching on IPv4 options
+  * Support for synproxy
+
 -------------------------------------------------------------------
 Sat Jan 19 20:53:09 UTC 2019 - Stefan Brüns <stefan.bruens@rwth-aachen.de>
 
diff --git a/nftables.spec b/nftables.spec
index e0b858d..1ab3301 100644
--- a/nftables.spec
+++ b/nftables.spec
@@ -1,7 +1,7 @@
 #
 # spec file for package nftables
 #
-# Copyright (c) 2018 SUSE LINUX GmbH, Nuernberg, Germany.
+# Copyright (c) 2019 SUSE LINUX GmbH, Nuernberg, Germany.
 #
 # All modifications and additions to the file contributed by third parties
 # remain the property of their copyright owners, unless otherwise agreed
@@ -12,56 +12,54 @@
 # license that conforms to the Open Source Definition (Version 1.9)
 # published by the Open Source Initiative.
 
-# Please submit bugfixes or comments via http://bugs.opensuse.org/
+# Please submit bugfixes or comments via https://bugs.opensuse.org/
 #
 
 
 Name:           nftables
-Version:        0.9.0
+Version:        0.9.2
 Release:        0
 Summary:        Userspace utility to access the nf_tables packet filter
 License:        GPL-2.0-only
 Group:          Productivity/Networking/Security
-Url:            http://netfilter.org/projects/nftables/
+URL:            https://netfilter.org/projects/nftables/
 
 #Git-Clone:	git://git.netfilter.org/nftables
 Source:         http://ftp.netfilter.org/pub/nftables/nftables-%version.tar.bz2
 Source2:        http://ftp.netfilter.org/pub/nftables/nftables-%version.tar.bz2.sig
-BuildRoot:      %{_tmppath}/%{name}-%{version}-build
+BuildRequires:  asciidoc
 BuildRequires:  bison
-BuildRequires:  docbook2x
 BuildRequires:  flex
 BuildRequires:  gmp-devel
 BuildRequires:  pkg-config >= 0.21
 BuildRequires:  readline-devel
-BuildRequires:  xsltproc
 BuildRequires:  pkgconfig(libmnl) >= 1.0.3
 BuildRequires:  pkgconfig(libnftnl) >= 1.1.1
 BuildRequires:  pkgconfig(xtables) >= 1.6.1
 
 %description
 nf_tables is a firewalling mechanism in the Linux kernel, running
-independently of, and thus parallel to, ip_tables, ip6_tables,
+independently of and parallel to ip_tables, ip6_tables,
 arp_tables and ebtables. nftables is the corresponsing userspace
 frontend.
 
-nftables features support for sets and dictionaries of arbitrary
-types, support for different protocols, meta data types, access to
-connection tracking and NAT, logging, atomic incremental and full
-ruleset updates.
+The nftables frontend features support for sets and dictionaries of arbitrary
+types, meta data types, atomic incremental and full ruleset updates, and,
+similar to iptables, support for different protocols, access to connection
+tracking and NAT and logging.
 
-%package -n libnftables0
+%package -n libnftables1
 Summary:        nftables firewalling command interface
 Group:          System/Libraries
 
-%description -n libnftables0
+%description -n libnftables1
 libnftables is the nftables command line interface placed into a
 library.
 
 %package devel
 Summary:        Development files for the nftables command line interface
 Group:          Development/Libraries/C and C++
-Requires:       libnftables0 = %version
+Requires:       libnftables1 = %version
 
 %description devel
 libnftables is the nftables command line interface placed into a
@@ -80,7 +78,7 @@ mkdir obj
 pushd obj/
 %define _configure ../configure
 %configure --disable-silent-rules --disable-static --docdir="%_docdir/%name" \
-	--includedir="%_includedir/%name"
+	--includedir="%_includedir/%name" --disable-python
 make %{?_smp_mflags}
 popd
 
@@ -91,22 +89,24 @@ rm -f "%buildroot/%_libdir"/*.la
 mkdir -p "$b/%_docdir/%name/examples"
 mv "$b/%_sysconfdir/nftables"/* "$b/%_docdir/%name/examples/"
 
-%post   -n libnftables0 -p /sbin/ldconfig
-%postun -n libnftables0 -p /sbin/ldconfig
+%post   -n libnftables1 -p /sbin/ldconfig
+%postun -n libnftables1 -p /sbin/ldconfig
 
 %files
 %defattr(-,root,root)
 %license COPYING
 %_sbindir/nft
+%_mandir/man5/*.5*
 %_mandir/man8/nft*
 %_docdir/%name/
 
-%files -n libnftables0
-%_libdir/libnftables.so.*
+%files -n libnftables1
+%_libdir/libnftables.so.1*
 
 %files devel
 %_includedir/%name/
 %_libdir/libnftables.so
 %_libdir/pkgconfig/*.pc
+%_mandir/man3/*.3*
 
 %changelog

From c46adb1d185e4018a16b1a344d4aa633ddfb5aa0b241da3b429135283c43500f Mon Sep 17 00:00:00 2001
From: Jan Engelhardt <jengelh@inai.de>
Date: Mon, 19 Aug 2019 12:49:51 +0000
Subject: [PATCH 2/2] OBS-URL:
 https://build.opensuse.org/package/show/security:netfilter/nftables?expand=0&rev=42

---
 nftables.spec | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/nftables.spec b/nftables.spec
index 1ab3301..1434bf4 100644
--- a/nftables.spec
+++ b/nftables.spec
@@ -34,7 +34,7 @@ BuildRequires:  gmp-devel
 BuildRequires:  pkg-config >= 0.21
 BuildRequires:  readline-devel
 BuildRequires:  pkgconfig(libmnl) >= 1.0.3
-BuildRequires:  pkgconfig(libnftnl) >= 1.1.1
+BuildRequires:  pkgconfig(libnftnl) >= 1.1.4
 BuildRequires:  pkgconfig(xtables) >= 1.6.1
 
 %description