iptables: upgrade 1.8.11 -> 1.8.12

Changes:
  - fix null dereference parsing bitwise operations.
  - refuse to run under file capabilities, ie. getauxval(AT_SECURE).
  - fix for all-zero mask on Big Endian in arptables-nft.
  - support adding and replacing a rule in the same batch in iptables-nft.

  - filter
-A FORWARD -m comment --comment "new rule being replaced"
-R FORWARD 1 -m comment --comment "new replacing rule"
COMMIT

  - print -X in xtables-monitor command for base chains.
  - remove incorrect libebt_redirect translations.
  - translate bare '-m sctp' match to '-p sctp' just like TCP and UDP.
  - support for info-request and info-reply icmp types.
  - fix interface comparisons in `-C` commands in iptables-nft.
  - several fixes for ip[6]tables-translate, the tool to ease migration
    to nftables.
  - document flush behaviour with --noflush for user-defined chains.

Signed-off-by: Andrej Kozemcak <andrej.kozemcak@siemens.com>
Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>

diff --git a/meta/recipes-extended/iptables/iptables_1.8.11.bb b/meta/recipes-extended/iptables/iptables_1.8.12.bb
similarity index 98%
rename from meta/recipes-extended/iptables/iptables_1.8.11.bb
rename to meta/recipes-extended/iptables/iptables_1.8.12.bb
index 686dc5afe50f528c5cd160f771dd8bd6216df25d..928930d08cbc2cc7a96920faa380935e5c7ceb6f 100644 (file)
--- a/meta/recipes-extended/iptables/iptables_1.8.11.bb
+++ b/meta/recipes-extended/iptables/iptables_1.8.12.bb
@@ -14,7 +14,7 @@ SRC_URI = "http://netfilter.org/projects/iptables/files/iptables-${PV}.tar.xz \
            file://ip6tables.service \
            file://ip6tables.rules \
            "
-SRC_URI[sha256sum] = "d87303d55ef8c92bcad4dd3f978b26d272013642b029425775f5bad1009fe7b2"
+SRC_URI[sha256sum] = "8e7ee962601492de6503d171d4a948092ab18f89f111de72e3037c1f40cfb846"
 
 SYSTEMD_SERVICE:${PN} = "\
     iptables.service \