summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorJozsef Kadlecsik <kadlec@netfilter.org>2022-11-21 13:39:47 +0100
committerJozsef Kadlecsik <kadlec@netfilter.org>2022-11-21 13:39:47 +0100
commit4b160315440cf6efc9622e8e71af35ab062af63c (patch)
tree79bc2ec499c09e20d716bb34368659210345258c
parent3794cb9a538242f750665827b9dee1410473340f (diff)
ipset 7.16 releasedHEADv7.16master
Signed-off-by: Jozsef Kadlecsik <kadlec@netfilter.org>
-rw-r--r--ChangeLog15
-rw-r--r--configure.ac2
-rw-r--r--kernel/ChangeLog21
3 files changed, 37 insertions, 1 deletions
diff --git a/ChangeLog b/ChangeLog
index c5bf19c..8c6ef3c 100644
--- a/ChangeLog
+++ b/ChangeLog
@@ -1,3 +1,18 @@
+7.16
+ - Add new ipset_parse_bitmask() function to the library interface
+ - test: Make sure no more than 64 clashing elements can be added
+ to hash:net,iface sets
+ - netfilter: ipset: add tests for the new bitmask feature (Vishwanath Pai)
+ - netfilter: ipset: Update the man page to include netmask/bitmask options
+ (Vishwanath Pai)
+ - netfilter: ipset: Add bitmask support to hash:netnet (Vishwanath Pai)
+ - netfilter: ipset: Add bitmask support to hash:ipport (Vishwanath Pai)
+ - netfilter: ipset: Add bitmask support to hash:ip (Vishwanath Pai)
+ - netfilter: ipset: Add support for new bitmask parameter (Vishwanath Pai)
+ - ipset-translate: allow invoking with a path name (Quentin Armitage)
+ - Fix IPv6 sets nftables translation (Pablo Neira Ayuso)
+ - Fix typo in ipset-translate man page (Bernhard M. Wiedemann)
+
7.14
- Add missing function to libipset.map and bump library version
(reported by Jan Engelhardt)
diff --git a/configure.ac b/configure.ac
index e1ff357..e94f4db 100644
--- a/configure.ac
+++ b/configure.ac
@@ -1,5 +1,5 @@
dnl Boilerplate
-AC_INIT([ipset], [7.15], [kadlec@netfilter.org])
+AC_INIT([ipset], [7.16], [kadlec@netfilter.org])
AC_CONFIG_AUX_DIR([build-aux])
AC_CANONICAL_HOST
AC_CONFIG_MACRO_DIR([m4])
diff --git a/kernel/ChangeLog b/kernel/ChangeLog
index 0ee716d..b7d2266 100644
--- a/kernel/ChangeLog
+++ b/kernel/ChangeLog
@@ -1,3 +1,24 @@
+7.16
+ - netfilter: ipset: restore allowing 64 clashing elements in hash:net,iface
+ - Fix all debug mode warnings
+ - netfilter: ipset: Add support for new bitmask parameter (Vishwanath Pai)
+ - netfilter: ipset: regression in ip_set_hash_ip.c (Vishwanath Pai)
+ - netfilter: move from strlcpy with unused retval to strscpy
+ (Wolfram Sang)
+ - compatibility: handle unsafe_memcpy()
+ - netlink: Bounds-check struct nlmsgerr creation (Kees Cook)
+ - compatibility: move to skb_protocol in the code from tc_skb_protocol
+ - Compatibility: check kvcalloc, kvfree, kvzalloc in slab.h too
+ - sched: consistently handle layer3 header accesses in the presence
+ of VLANs (Toke Høiland-Jørgensen)
+ - treewide: Replace GPLv2 boilerplate/reference with SPDX
+ - rule 500 (Thomas Gleixner)
+ - headers: Remove some left-over license text in
+ include/uapi/linux/netfilter/ (Christophe JAILLET)
+ - netfilter: ipset: enforce documented limit to prevent allocating
+ huge memory
+ - netfilter: ipset: Fix oversized kvmalloc() calls
+
7.15
- netfilter: ipset: Fix maximal range check in hash_ipportnet4_uadt()
(Nathan Chancellor)