[ANNOUNCE] libnetfilter_conntrack 1.1.0 release
Pablo Neira Ayuso
pablo at netfilter.org
Wed Sep 25 14:18:32 CEST 2024
Hi!
The Netfilter project presents:
libnetfilter_conntrack 1.1.0
This release includes:
- Enhancements for filtering dump and flush commands,
see struct nfct_filter_dump and nfct_nlmsg_build_filter().
- ctnetlink event BPF fixes (endianness issue, IPv6 matching) and
enhancements (zone matching).
- fix for musl compilation.
See ChangeLog that comes attached to this email for more details.
You can download it from:
https://www.netfilter.org/projects/libnetfilter_conntrack/downloads.html
NB: This release has switched to tar.xz files.
-------------- next part --------------
Felix Huettner (2):
dump: support filtering by zone
conntrack: support flush filtering
Jeremy Sowden (5):
conntrack: fix BPF code for filtering on big-endian architectures
conntrack: simplify calculation of `struct sock_fprog` length
conntrack: increase the length of `l4proto_map`
Ignore `configure~`
conntrack: fix BPF for filtering IPv6 addresses
Pablo Neira Ayuso (7):
conntrack: add sanity check to netlink socket filter API
src: reverse calloc() invocation
conntrack: api: bail out if setting up filter for flush/dump fails
conntrack: mnl: clean up check for mismatching l3num and tuple filter
conntrack: update link to git repository
src: remove unused parameter from build functions
libnetfilter_conntrack: bump version to 1.1.0
Peter Fordham (1):
configure: C99 compatibility issues
Phil Sutter (3):
expect/conntrack: Avoid spurious covscan overrun warning
Makefile: Create LZMA-compressed dist-files
conntrack: bsf: Do not return -1 on failure
Priyankar Jain (1):
conntrack: Add zone filtering for conntrack events
Robert Marko (1):
conntrack: fix build with kernel 5.15 and musl
Romain Bellan (2):
Adding NFCT_FILTER_DUMP_TUPLE in filter_dump_attr, using kernel CTA_FILTER API
utils: add NFCT_FILTER_DUMP_TUPLE example
More information about the netfilter-announce
mailing list