Package: iptables-netflow / 2.6-4+deb12u1

Metadata

Package Version Patches format
iptables-netflow 2.6-4+deb12u1 3.0 (quilt)

Patch series

view the series file
Patch File delta Description
1005 Do not check for dkms if called from dkms.patch | (download)

configure | 2 1 + 1 - 0 !
1 file changed, 1 insertion(+), 1 deletion(-)

 
 [patch] do not check for dkms if called from dkms

the recursive calls slowed down the configure script significantly

Signed-off-by: Andreas Beckmann <anbe@debian.org>
1006 Set KDIR early if called from dkms and get version f.patch | (download)

configure | 1 1 + 0 - 0 !
1 file changed, 1 insertion(+)

 
 [patch] set kdir early if called from dkms and get version from
 sources

Signed-off-by: Andreas Beckmann <anbe@debian.org>
1009 Unexporting find_module has been backported to Linux.patch | (download)

compat.h | 5 3 + 2 - 0 !
1 file changed, 3 insertions(+), 2 deletions(-)

 
 [patch] unexporting find_module() has been backported to linux
 v5.10.220

Signed-off-by: Andreas Beckmann <anbe@debian.org>
ignore unknown configure options.patch | (download)

configure | 8 7 + 1 - 0 !
1 file changed, 7 insertions(+), 1 deletion(-)

 
 warn about unknown configure options instead of bailing out
 Avoids "Invalid option: --build=x86_64-linux-gnu" build error.
 .
 Additionally make it understand some configure options passed by
 debhelper by default, namely --prefix, --libdir and --includedir.
properly pass CPPFLAGS and LDFLAGS.patch | (download)

Makefile.in | 4 2 + 2 - 0 !
1 file changed, 2 insertions(+), 2 deletions(-)

 
 properly pass $cppflags and $ldflags
disable kernel check.patch | (download)

configure | 2 2 + 0 - 0 !
1 file changed, 2 insertions(+)

 
 disable kernel check in configure script if no dkms is used
 This means it's skipped during package build but not during install
 time when a build of the kernel module is being triggered via dkms.
dont hardcode current gcc.patch | (download)

Makefile.in | 2 1 + 1 - 0 !
1 file changed, 1 insertion(+), 1 deletion(-)

 
 don't hardcode default gcc version (i.e. don't override $cc if set)
 Avoids compilation failures with older kernels which can't be
 compiled with the current gcc, e.g. 5.7 needs gcc-9 instead of the
 current gcc-10 (where the gcc symlink points to).
cherry pick_66e43041_namespace_sk_error_report.patch | (download)

ipt_NETFLOW.c | 4 2 + 2 - 0 !
1 file changed, 2 insertions(+), 2 deletions(-)

 
 namespace sk_error_report
 sk_error_report is introduced in v5.14-rc1: e3ae2365efc14 ("net: sock:
 introduce sk_error_report").
 .
 Fixes compilation against kernel 5.14.
Bug-Debian: https://bugs.debian.org/994883
cherry pick_6a55739a_fix_build_on_v5.15.patch | (download)

compat.h | 4 4 + 0 - 0 !
gen_compat_def | 16 16 + 0 - 0 !
ipt_NETFLOW.c | 16 11 + 5 - 0 !
3 files changed, 31 insertions(+), 5 deletions(-)

 
 [patch] fix build on v5.15 (ct_event)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit
Comment: Refreshed to apply against 2.6 release
Bug: https://github.com/aabc/ipt-netflow/issues/186
Bug-Debian: https://bugs.debian.org/1005401
Bug-Ubuntu: https://bugs.launchpad.net/bugs/1951611

    CC [M]  ipt_NETFLOW.o
  ipt_NETFLOW.c: In function netflow_conntrack_event:
  ipt_NETFLOW.c:4622:31: error: struct nf_ct_event_notifier has no member named fcn
   4622 |                 ret = notifier->fcn(events, item);
	|                               ^~
  ipt_NETFLOW.c: At top level:
  ipt_NETFLOW.c:4687:10: error: struct nf_ct_event_notifier has no member named fcn
   4687 |         .fcn = netflow_conntrack_event
	|          ^~~
  ipt_NETFLOW.c:4687:16: error: initialization of int (*)(unsigned int,  const struct nf_ct_event *) from incompatible pointer type int (*)(const unsigned int,  struct nf_ct_event *) [-Werror=incompatible-pointer-types]
   4687 |         .fcn = netflow_conntrack_event
	|                ^~~~~~~~~~~~~~~~~~~~~~~
  ipt_NETFLOW.c:4687:16: note: (near initialization for ctnl_notifier.ct_event)
  ipt_NETFLOW.c: In function unset_notifier_cb:
  ipt_NETFLOW.c:5455:25: error: too many arguments to function nf_conntrack_unregister_notifier
   5455 |                         nf_conntrack_unregister_notifier(NET_ARG &ctnl_notifier);
	|                         ^~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
  In file included from ./include/net/netfilter/nf_conntrack_core.h:18,
		   from ipt_NETFLOW.c:68:
  ./include/net/netfilter/nf_conntrack_ecache.h:88:6: note: declared here
     88 | void nf_conntrack_unregister_notifier(struct net *net);
	|      ^~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Reported-by: https://github.com/rcmcronny
Fixes: #186
cherry pick_0901f028_fix_building_on_old_kernels.patch | (download)

compat.h | 7 7 + 0 - 0 !
ipt_NETFLOW.c | 2 1 + 1 - 0 !
2 files changed, 8 insertions(+), 1 deletion(-)

 
---
verbose.patch | (download)

Makefile.in | 1 1 + 0 - 0 !
gen_compat_def | 3 2 + 1 - 0 !
2 files changed, 3 insertions(+), 1 deletion(-)

 
 dump compat_def.h