00ecf'/>
<meta name='robots' content='noindex, nofollow'/>
<link rel='stylesheet' type='text/css' href='/cgit.css'/>
<script type='text/javascript' src='/cgit.js'></script>
<link rel='shortcut icon' href='http://distanz.ch/favicon.ico'/>
<link rel='alternate' title='Atom feed' href='https://git.distanz.ch/cgit.cgi/linux/net-next.git/atom/include/uapi?h=master' type='application/atom+xml'/>
<link rel='vcs-git' href='git://git.distanz.ch/linux/net-next.git' title='net-next.git Git repository'/>
<link rel='vcs-git' href='http:///git.distanz.ch/cgit.cgi/linux/net-next.git' title='net-next.git Git repository'/>
</head>
<body>
<div id='cgit'><table id='header'>
<tr>
<td class='logo' rowspan='2'><a href='/cgit.cgi/'><img src='/cgit.png' alt='cgit logo'/></a></td>
<td class='main'><a href='/cgit.cgi/'>index</a> : <a href='/cgit.cgi/linux/net-next.git/'>net-next.git</a></td><td class='form'><form method='get'>
<input type='hidden' name='id' value='61aad724ec0a685bc83b02b059a3ca0ad3bde6b0'/><input type='hidden' name='showmsg' value='1'/><select name='h' onchange='this.form.submit();'>
<option value='emaclite-cleanup'>emaclite-cleanup</option>
<option value='master' selected='selected'>master</option>
<option value='nds-private-remove'>nds-private-remove</option>
<option value='packet-loop-back'>packet-loop-back</option>
<option value='packet-rx-pump-back'>packet-rx-pump-back</option>
</select> <input type='submit' value='switch'/></form></td></tr>
<tr><td class='sub'>net-next plumbings</td><td class='sub right'>Tobias Klauser</td></tr></table>
<table class='tabs'><tr><td>
<a href='/cgit.cgi/linux/net-next.git/'>summary</a><a href='/cgit.cgi/linux/net-next.git/refs/?id=61aad724ec0a685bc83b02b059a3ca0ad3bde6b0'>refs</a><a class='active' href='/cgit.cgi/linux/net-next.git/log/include/uapi?showmsg=1'>log</a><a href='/cgit.cgi/linux/net-next.git/tree/include/uapi?id=61aad724ec0a685bc83b02b059a3ca0ad3bde6b0'>tree</a><a href='/cgit.cgi/linux/net-next.git/commit/include/uapi?id=61aad724ec0a685bc83b02b059a3ca0ad3bde6b0'>commit</a><a href='/cgit.cgi/linux/net-next.git/diff/include/uapi?id=61aad724ec0a685bc83b02b059a3ca0ad3bde6b0'>diff</a></td><td class='form'><form class='right' method='get' action='/cgit.cgi/linux/net-next.git/log/include/uapi'>
<input type='hidden' name='id' value='61aad724ec0a685bc83b02b059a3ca0ad3bde6b0'/><input type='hidden' name='showmsg' value='1'/><select name='qt'>
<option value='grep'>log msg</option>
<option value='author'>author</option>
<option value='committer'>committer</option>
<option value='range'>range</option>
</select>
<input class='txt' type='search' size='10' name='q' value=''/>
<input type='submit' value='search'/>
</form>
</td></tr></table>
<div class='path'>path: <a href='/cgit.cgi/linux/net-next.git/log/?id=61aad724ec0a685bc83b02b059a3ca0ad3bde6b0&amp;showmsg=1'>root</a>/<a href='/cgit.cgi/linux/net-next.git/log/include?id=61aad724ec0a685bc83b02b059a3ca0ad3bde6b0&amp;showmsg=1'>include</a>/<a href='/cgit.cgi/linux/net-next.git/log/include/uapi?id=61aad724ec0a685bc83b02b059a3ca0ad3bde6b0&amp;showmsg=1'>uapi</a></div><div class='content'><table class='list nowrap'><tr class='nohover'><th class='left'>Age</th><th class='left'>Commit message (<a href='/cgit.cgi/linux/net-next.git/log/include/uapi?id=61aad724ec0a685bc83b02b059a3ca0ad3bde6b0'>Collapse</a>)</th><th class='left'>Author</th><th class='left'>Files</th><th class='left'>Lines</th></tr>
<tr class='logheader'><td><span title='2017-02-12 22:11:43 -0500'>2017-02-12</span></td><td class='logsubject'><a href='/cgit.cgi/linux/net-next.git/commit/include/uapi?id=7c92d61eca453d5007669e4322dd8e469d443d04'>Merge git://git.kernel.org/pub/scm/linux/kernel/git/pablo/nf-next</a></td><td>David S. Miller</td><td>2</td><td><span class='deletions'>-1</span>/<span class='insertions'>+38</span></td></tr>
<tr class='nohover-highlight'><td/><td colspan='5' class='logmsg'>
Pablo Neira Ayuso says:

====================
Netfilter updates for net-next

The following patchset contains Netfilter updates for your net-next
tree, most relevantly they are:

1) Extend nft_exthdr to allow to match TCP options bitfields, from
   Manuel Messner.

2) Allow to check if IPv6 extension header is present in nf_tables,
   from Phil Sutter.

3) Allow to set and match conntrack zone in nf_tables, patches from
   Florian Westphal.

4) Several patches for the nf_tables set infrastructure, this includes
   cleanup and preparatory patches to add the new bitmap set type.

5) Add optional ruleset generation ID check to nf_tables and allow to
   delete rules that got no public handle yet via NFTA_RULE_ID. These
   patches add the missing kernel infrastructure to support rule
   deletion by description from userspace.

6) Missing NFT_SET_OBJECT flag to select the right backend when sets
   stores an object map.

7) A couple of cleanups for the expectation and SIP helper, from Gao
   feng.
====================

Signed-off-by: David S. Miller &lt;davem@davemloft.net&gt;


</td></tr>
<tr class='logheader'><td><span title='2017-02-12 14:45:13 +0100'>2017-02-12</span></td><td class='logsubject'><a href='/cgit.cgi/linux/net-next.git/commit/include/uapi?id=1a94e38d254b3622d5d53f74b3b716b0fcab0ba8'>netfilter: nf_tables: add NFTA_RULE_ID attribute</a></td><td>Pablo Neira Ayuso</td><td>1</td><td><span class='deletions'>-0</span>/<span class='insertions'>+2</span></td></tr>
<tr class='nohover-highlight'><td/><td colspan='5' class='logmsg'>
This new attribute allows us to uniquely identify a rule in transaction.
Robots may trigger an insertion followed by deletion in a batch, in that
scenario we still don't have a public rule handle that we can use to
delete the rule. This is similar to the NFTA_SET_ID attribute that
allows us to refer to an anonymous set from a batch.

Signed-off-by: Pablo Neira Ayuso &lt;pablo@netfilter.org&gt;


</td></tr>
<tr class='logheader'><td><span title='2017-02-12 14:45:11 +0100'>2017-02-12</span></td><td class='logsubject'><a href='/cgit.cgi/linux/net-next.git/commit/include/uapi?id=8c4d4e8b5626fec965fd5034e5bd5e57790f243f'>netfilter: nfnetlink: allow to check for generation ID</a></td><td>Pablo Neira Ayuso</td><td>1</td><td><span class='deletions'>-0</span>/<span class='insertions'>+12</span></td></tr>
<tr class='nohover-highlight'><td/><td colspan='5' class='logmsg'>
This patch allows userspace to specify the generation ID that has been
used to build an incremental batch update.

If userspace specifies the generation ID in the batch message as
attribute, then nfnetlink compares it to the current generation ID so
you make sure that you work against the right baseline. Otherwise, bail
out with ERESTART so userspace knows that its changeset is stale and
needs to respin. Userspace can do this transparently at the cost of
taking slightly more time to refresh caches and rework the changeset.

This check is optional, if there is no NFNL_BATCH_GENID attribute in the
batch begin message, then no check is performed.

Signed-off-by: Pablo Neira Ayuso &lt;pablo@netfilter.org&gt;


</td></tr>
<tr class='logheader'><td><span title='2017-02-11 02:31:11 -0500'>2017-02-11</span></td><td class='logsubject'><a href='/cgit.cgi/linux/net-next.git/commit/include/uapi?id=35eeacf1820a08305c2b0960febfa190f5a6dd63'>Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net</a></td><td>David S. Miller