Update requests for packages imported from Arch Linux

Aragorn · 2 April 2025 18:48

1.8.11-2 is already in Arch Stable now, but somehow hasn’t made it into Manjaro Unstable yet.

Yochanan · 2 April 2025 23:12

papajoke · 3 April 2025 16:01

only in stable and testing

pacman -Si iptables-nft 
   
Repository      : core
Name            : iptables-nft
Version         : 1:1.8.11-1
...

Repository      : extra
Name            : iptables-nft
Version         : 1:1.8.11-2
Architecture    : x86_64

since this ? https://forum.manjaro.org/t/iptables-nft-1-8-11-1-has-a-bug-that-breaks-docker/176530

Yochanan · 3 April 2025 19:34

Are you sure?

Not sure why there’s a discrepancy…

❯ mbn info iptables-nft | grep 'Branch\|Version'
Branch         : archlinux
Version        : 1:1.8.11-2
Branch         : unstable
Version        : 1:1.8.11-2
Branch         : testing
Version        : 1:1.8.11-1
Branch         : stable
Version        : 1:1.8.11-1

papajoke · 4 April 2025 09:15

yes, mbn (as pacman) use the first repo found and after ignore if same package name. Online tool override (not ignore), or repo order is not good ? TODO open issue ? @cfinnberg

LANG=en sudo pacman -S iptables-nft
resolving dependencies...
looking for conflicting packages...
:: iptables-nft-1:1.8.11-1 and iptables-1:1.8.11-1 are in conflict.

#  default is first repo in pacman.conf, but we can force a repo

LANG=en sudo pacman -S extra/iptables-nft
resolving dependencies...
looking for conflicting packages...
:: iptables-nft-1:1.8.11-2 and iptables-1:1.8.11-1

a few days ago, I made a personal fork at mbn (ignore also second entry)

LANG=en mbc info iptables-nft --ia
stable
 Name:     iptables-nft
 Version:  1:1.8.11-1
 Date:     25-03-19 16:53
testing
 Name:     iptables-nft
 Version:  1:1.8.11-1
 Date:     25-03-19 16:53
unstable
 Name:     iptables-nft
 Version:  1:1.8.11-2
 Date:     25-03-22 18:58
archlinux
 Name:     iptables-nft
 Version:  1:1.8.11-2
 Date:     25-03-22 18:58

WARNING!
  # ignore duplicate : iptables-nft (stable.extra)
  # ignore duplicate : iptables-nft (testing.extra)

Package: iptables-nft (core repository)

Utility: This package provides iptables, ip6tables, arptables, and ebtables using the nftables backend. Essentially, it's a compatibility layer that allows you to use the familiar iptables commands and syntax while leveraging the more modern and efficient nftables framework in the background. This allows for a smoother transition from iptables to nftables.

Iptables itself is not a direct application but a command-line utility for configuring the Linux kernel's built-in firewall, netfilter.  It provides a powerful and flexible way to manage network traffic by defining rules to allow, deny, or modify packets based on various criteria such as source/destination IP address, port, protocol, and more.  It's a fundamental tool for network security and routing on Linux systems, now implemented with nftables as the backend.

cfinnberg · 4 April 2025 16:04

iptables-nft is found on two different repos: core and extra, what is wrong as far as I understand. It should be only in one of those.

The package is in Arch’s core repo, so I think the newer version should be moved from extra to core (and delete the older one ofc).

CC: @Yochanan

Edit: And yes, my web application was not prepared to find the same package on two different repos of the same branch.

Yochanan · 4 April 2025 18:19

Oops. Will correct that shortly.