Linux TCP/IP Netfilter Devel

Thread Index

[Prev Page][Next Page]

[ulogd2 PATCH v2 02/27] ulog: remove empty log-line
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
[ulogd2 PATCH v2 11/12] build: quote and reformat some autoconf macro arguments
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
[ulogd2 PATCH v2 10/12] build: update obsolete autoconf macros
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
[ulogd2 PATCH v2 12/12] build: reformat autoconf AC_ARG_WITH, AC_ARG_ENABLE and related macros
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
[ulogd2 PATCH v2 06/12] build: add Make_global.am for common flags and include it where necessary
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
[ulogd2 PATCH v2 09/12] build: move library dependencies from LDFLAGS to LIBADD
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
[ulogd2 PATCH v2 07/12] build: use `dist_man_MANS`
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
[ulogd2 PATCH v2 04/12] build: remove empty filter sub-directory
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
[ulogd2 PATCH v2 00/13] Build Improvements
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
[ulogd2 PATCH v2 08/12] build: only conditionally enter sub-directories containing optional code
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
[ulogd2 PATCH v2 05/12] build: move cpp flag to the only Makefile.am file where it's needed
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
[ulogd2 PATCH v2 03/12] build: remove unused Makefile fragment
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
[ulogd2 PATCH v2 01/12] gitignore: add Emacs artefacts
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
[ulogd2 PATCH v2 02/12] gitignore: ignore .dirstamp
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
Re: [ulogd2 PATCH 15/26] input: UNIXSOCK: prevent unaligned pointer access.
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
Re: [ulogd2 PATCH 13/26] input: UNIXSOCK: stat socket-path first before creating the socket.
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
Re: [ulogd2 PATCH 13/13] build: bump autoconf version to 2.71
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
Re: [ulogd2 PATCH 10/13] build: update obsolete autoconf macros
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
Re: [ulogd2 PATCH 08/13] build: only conditionally enter sub-directories containing optional code
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
Re: [ulogd2 PATCH 02/13] gitignore: ignore util/.dirstamp
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
Re: [PATCH RFC bpf-next v1 0/6] Introduce unstable CT lookup helpers
- From: Kumar Kartikeya Dwivedi <memxor@xxxxxxxxx>
Re: [PATCH RFC bpf-next v1 0/6] Introduce unstable CT lookup helpers
- From: Alexei Starovoitov <alexei.starovoitov@xxxxxxxxx>
Re: [PATCH RFC bpf-next v1 5/6] net: netfilter: Add unstable CT lookup helper for XDP and TC-BPF
- From: Kumar Kartikeya Dwivedi <memxor@xxxxxxxxx>
[PATCH nft] tests: py: update rawpayload.t.json
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft 2/2] evaluate: grab reference in set expression evaluation
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft 1/2] evaluate: clone variable expression if there is more than one reference
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nft v2 1/4] tests: shell: README: copy edit
- From: Phil Sutter <phil@xxxxxx>
Re: [PATCH nft] tests: shell: $NFT needs to be invoked unquoted
- From: Štěpán Němec <snemec@xxxxxxxxxx>
[PATCH nft v2 4/4] tests: shell: $NFT needs to be invoked unquoted
- From: Štěpán Němec <snemec@xxxxxxxxxx>
[PATCH nft v2 3/4] tests: shell: README: clarify test file name convention
- From: Štěpán Němec <snemec@xxxxxxxxxx>
[PATCH nft v2 2/4] tests: shell: README: $NFT does not have to be a path to a binary
- From: Štěpán Němec <snemec@xxxxxxxxxx>
[PATCH nft v2 1/4] tests: shell: README: copy edit
- From: Štěpán Němec <snemec@xxxxxxxxxx>
[PATCH] netfilter: nft_payload: remove duplicate include in nft_payload.c
- From: cgel.zte@xxxxxxxxx
[PATCH nft 2/2] mnl: do not build nftnl_set element list
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft 1/2] tests: py: remove verdict from closing end interval
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH libnftnl 2/2] set: use NFTNL_SET_ELEM_VERDICT to print verdict
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH libnftnl 1/2] set: expose nftnl_set_elem_nlmsg_build()
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nf-next v6] netfilter: ipvs: Fix reuse connection if RS weight is 0
- From: Julian Anastasov <ja@xxxxxx>
Re: [PATCH nf-next v6] netfilter: ipvs: Fix reuse connection if RS weight is 0
- From: Simon Horman <horms@xxxxxxxxxxxx>
Re: [PATCH RFC bpf-next v1 0/6] Introduce unstable CT lookup helpers
- From: Kumar Kartikeya Dwivedi <memxor@xxxxxxxxx>
[PATCH] netfilter: xt_IDLETIMER: replace snprintf in show functions with sysfs_emit
- From: cgel.zte@xxxxxxxxx
[PATCH nf-next v6] netfilter: ipvs: Fix reuse connection if RS weight is 0
- From: yangxingwu <xingwu.yang@xxxxxxxxx>
[PATCH nf] netfilter: ctnetlink: do not erase error code with EINVAL
- From: Florent Fourcot <florent.fourcot@xxxxxxxxxx>
[PATCH nf] netfilter: ctnetlink: fix filtering with CTA_TUPLE_REPLY
- From: Florent Fourcot <florent.fourcot@xxxxxxxxxx>
[PATCH nft] src: raw payload match and mangle on inner header / payload data
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH 1/2] selftests: nft_nat: Improve port shadow test stability
- From: Phil Sutter <phil@xxxxxx>
[nf PATCH 0/2] Review port shadow selftest
- From: Phil Sutter <phil@xxxxxx>
[PATCH 2/2] selftests: nft_nat: Simplify port shadow notrack test
- From: Phil Sutter <phil@xxxxxx>
Re: [PATCH nf-next v5] netfilter: ipvs: Fix reuse connection if RS weight is 0
- From: Simon Horman <horms@xxxxxxxxxxxx>
Re: [PATCH nf-next v5] netfilter: ipvs: Fix reuse connection if RS weight is 0
- From: Simon Horman <horms@xxxxxxxxxxxx>
Re: Potential problem with VRF+conntrack after kernel upgrade
- From: Greg KH <gregkh@xxxxxxxxxxxxxxxxxxx>
[PATCH net v2 RESEND] netfilter: fix conntrack flows stuck issue on cleanup.
- From: Volodymyr Mytnyk <volodymyr.mytnyk@xxxxxxxxxxx>
Re: [nft PATCH] tests: shell: Fix bogus testsuite failure with 250Hz
- From: Lukas Wunner <lukas@xxxxxxxxx>
Re: [PATCH net 1/2] netfilter: nfnetlink_queue: fix OOB when mac header was cleared
- From: patchwork-bot+netdevbpf@xxxxxxxxxx
Re: [PATCH RFC bpf-next v1 5/6] net: netfilter: Add unstable CT lookup helper for XDP and TC-BPF
- From: Alexei Starovoitov <alexei.starovoitov@xxxxxxxxx>
Re: [PATCH RFC bpf-next v1 0/6] Introduce unstable CT lookup helpers
- From: Alexei Starovoitov <alexei.starovoitov@xxxxxxxxx>
[PATCH nft,v3] datatype: add xinteger_type alias to print in hexadecimal
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft,v2] datatype: add xinteger_type alias to print in hexadecimal
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nft] tests: run-tests.sh: ensure non-zero exit when $failed != 0
- From: Phil Sutter <phil@xxxxxx>
Re: [PATCH nft] tests: run-tests.sh: ensure non-zero exit when $failed != 0
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH RFC bpf-next v1 5/6] net: netfilter: Add unstable CT lookup helper for XDP and TC-BPF
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH nft] tests: run-tests.sh: ensure non-zero exit when $failed != 0
- From: Phil Sutter <phil@xxxxxx>
Re: [nft PATCH] tests: shell: Fix bogus testsuite failure with 250Hz
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[nft PATCH] tests: shell: Fix bogus testsuite failure with 250Hz
- From: Phil Sutter <phil@xxxxxx>
Re: Potential problem with VRF+conntrack after kernel upgrade
- From: Florian Westphal <fw@xxxxxxxxx>
Potential problem with VRF+conntrack after kernel upgrade
- From: Arturo Borrero Gonzalez <arturo@xxxxxxxxxxxxx>
[PATCH nft] datatype: add xinteger_type alias to print in hexadecimal
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [libnetfilter_log PATCH] build: fix pkg-config syntax-errors
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [nft PATCH v2 0/3] parser: refactor and extend limit rate rules
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nft] tests: shell: $NFT needs to be invoked unquoted
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft] evaluate: postpone transport protocol match check after nat expression evaluation
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH] netfilter: nft_payload: Remove duplicated include in nft_payload.c
- From: Wan Jiabing <wanjiabing@xxxxxxxx>
Re: [PATCH nf-next v5] netfilter: ipvs: Fix reuse connection if RS weight is 0
- From: yangxingwu <xingwu.yang@xxxxxxxxx>
[PATCH net 0/2] Netfilter/IPVS fixes for net
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH net 2/2] ipvs: autoload ipvs on genl access
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH net 1/2] netfilter: nfnetlink_queue: fix OOB when mac header was cleared
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH RFC bpf-next v1 5/6] net: netfilter: Add unstable CT lookup helper for XDP and TC-BPF
- From: Toke Høiland-Jørgensen <toke@xxxxxxxxxx>
Re: [PATCH nf-next v5] netfilter: ipvs: Fix reuse connection if RS weight is 0
- From: Julian Anastasov <ja@xxxxxx>
Re: [PATCH net-next 1/5] netfilter: ebtables: use array_size() helper in copy_{from,to}_user()
- From: patchwork-bot+netdevbpf@xxxxxxxxxx
[PATCH net-next 4/5] netfilter: nf_tables: convert pktinfo->tprot_set to flags field
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH net-next 3/5] netfilter: nft_meta: add NFT_META_IFTYPE
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH net-next 5/5] netfilter: nft_payload: support for inner header matching / mangling
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH net-next 2/5] netfilter: conntrack: set on IPS_ASSURED if flows enters internal stream state
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH net-next 1/5] netfilter: ebtables: use array_size() helper in copy_{from,to}_user()
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH net-next 0/5] Netfilter updates for net-next
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nf-next v5] netfilter: ipvs: Fix reuse connection if RS weight is 0
- From: yangxingwu <xingwu.yang@xxxxxxxxx>
Re: [PATCH nf-next v4] netfilter: ipvs: Fix reuse connection if RS weight is 0
- From: yangxingwu <xingwu.yang@xxxxxxxxx>
Re: [PATCH RFC bpf-next v1 5/6] net: netfilter: Add unstable CT lookup helper for XDP and TC-BPF
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [ulogd2 PATCH 15/26] input: UNIXSOCK: prevent unaligned pointer access.
- From: Jan Engelhardt <jengelh@xxxxxxx>
Re: [ulogd2 PATCH 13/26] input: UNIXSOCK: stat socket-path first before creating the socket.
- From: Jan Engelhardt <jengelh@xxxxxxx>
Re: [ulogd2 PATCH 13/13] build: bump autoconf version to 2.71
- From: Jan Engelhardt <jengelh@xxxxxxx>
Re: [ulogd2 PATCH 10/13] build: update obsolete autoconf macros
- From: Jan Engelhardt <jengelh@xxxxxxx>
Re: [ulogd2 PATCH 08/13] build: only conditionally enter sub-directories containing optional code
- From: Jan Engelhardt <jengelh@xxxxxxx>
[ulogd2 PATCH 16/26] output: DBI: fix deprecation warnings.
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
[ulogd2 PATCH 21/26] output: SQLITE3: catch errors creating SQL statement
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
[ulogd2 PATCH 23/26] output: JSON: fix output of GMT offset.
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
[ulogd2 PATCH 10/26] filter: HWHDR: remove zero-initialization of MAC type.
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
[ulogd2 PATCH 20/26] output: SQLITE3: Fix string truncation warnings and possible buffer overruns.
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
[ulogd2 PATCH 24/26] output: JSON: fix printf truncation warnings.
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
[ulogd2 PATCH 18/26] output: MYSQL: Fix string truncation warning
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
[ulogd2 PATCH 13/26] input: UNIXSOCK: stat socket-path first before creating the socket.
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
[ulogd2 PATCH 14/26] input: UNIXSOCK: fix possible truncation of socket path
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
[ulogd2 PATCH 22/26] util: db: fix possible string truncation.
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
[ulogd2 PATCH 12/26] filter: PWSNIFF: replace malloc+strncpy with strndup.
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
[ulogd2 PATCH 17/26] output: DBI: fix string truncation warnings
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
[ulogd2 PATCH 15/26] input: UNIXSOCK: prevent unaligned pointer access.
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
[ulogd2 PATCH 11/26] Replace malloc+memset with calloc
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
[ulogd2 PATCH 19/26] output: PGSQL: Fix string truncation warning
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
[ulogd2 PATCH 26/26] output: JSON: fix possible truncation of socket path
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
[ulogd2 PATCH 25/26] output: JSON: optimize appending of newline to output.
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
Re: [ulogd2 PATCH 02/13] gitignore: ignore util/.dirstamp
- From: Jan Engelhardt <jengelh@xxxxxxx>
[ulogd2 PATCH 06/26] jhash: add "fall through" comments to switch cases.
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
[ulogd2 PATCH 07/26] db: add missing `break` to switch-case.
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
[ulogd2 PATCH 09/26] filter: HWHDR: re-order KEY_RAW_MAC checks.
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
[ulogd2 PATCH 08/26] filter: HWHDR: replace `switch` with `if`.
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
[ulogd2 PATCH 05/26] output: IPFIX: correct format-specifiers.
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
[ulogd2 PATCH 04/26] ulog: correct log specifiers
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
[ulogd2 PATCH 02/26] ulog: remove empty log-line
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
[ulogd2 PATCH 01/26] include: add format attribute to __ulogd_log declaration
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
[ulogd2 PATCH 00/26] Compiler Warning Fixes
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
[ulogd2 PATCH 03/26] ulog: fix order of log arguments
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
[ulogd2 PATCH 11/13] build: quote and reformat some autoconf macro arguments
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
[ulogd2 PATCH 12/13] build: reformat autoconf AC_ARG_WITH, AC_ARG_ENABLE and related macros
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
[ulogd2 PATCH 13/13] build: bump autoconf version to 2.71
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
[ulogd2 PATCH 10/13] build: update obsolete autoconf macros
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
[ulogd2 PATCH 09/13] build: move library dependencies from LDFLAGS to LIBADD
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
[ulogd2 PATCH 02/13] gitignore: ignore util/.dirstamp
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
[ulogd2 PATCH 03/13] build: remove unused Makefile fragment
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
[ulogd2 PATCH 00/13] Build Improvements
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
[ulogd2 PATCH 04/13] build: remove empty filter sub-directory
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
[ulogd2 PATCH 01/13] gitignore: Add Emacs artefacts
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
[ulogd2 PATCH 06/13] build: add Make_global.am for common flags and include it where necessary
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
[ulogd2 PATCH 05/13] build: move cpp flag to the only Makefile.am file where it's needed
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
[ulogd2 PATCH 07/13] build: use `dist_man_MANS`
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
[ulogd2 PATCH 08/13] build: only conditionally enter sub-directories containing optional code
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
[PATCH RFC bpf-next v1 6/6] selftests/bpf: Add referenced PTR_TO_BTF_ID selftest
- From: Kumar Kartikeya Dwivedi <memxor@xxxxxxxxx>
[PATCH RFC bpf-next v1 5/6] net: netfilter: Add unstable CT lookup helper for XDP and TC-BPF
- From: Kumar Kartikeya Dwivedi <memxor@xxxxxxxxx>
[PATCH RFC bpf-next v1 4/6] bpf: Add reference tracking support to kfunc returned PTR_TO_BTF_ID
- From: Kumar Kartikeya Dwivedi <memxor@xxxxxxxxx>
[PATCH RFC bpf-next v1 3/6] bpf: Extend kfunc with PTR_TO_CTX and PTR_TO_MEM arguments
- From: Kumar Kartikeya Dwivedi <memxor@xxxxxxxxx>
[PATCH RFC bpf-next v1 2/6] bpf: Remove DEFINE_KFUNC_BTF_ID_SET
- From: Kumar Kartikeya Dwivedi <memxor@xxxxxxxxx>
[PATCH RFC bpf-next v1 1/6] bpf: Refactor bpf_check_mod_kfunc_call
- From: Kumar Kartikeya Dwivedi <memxor@xxxxxxxxx>
[PATCH RFC bpf-next v1 0/6] Introduce unstable CT lookup helpers
- From: Kumar Kartikeya Dwivedi <memxor@xxxxxxxxx>
Re: [PATCH nf-next v4] netfilter: ipvs: Fix reuse connection if RS weight is 0
- From: Julian Anastasov <ja@xxxxxx>
Re: [PATCH ulogd 2/2] NFLOG: attach struct nf_conntrack
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
Re: [PATCH ulogd 1/2] NFLOG: add NFULNL_CFG_F_CONNTRACK flag
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
[libnetfilter_log PATCH] build: fix pkg-config syntax-errors
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
Re: [PATCH nf-next v4] netfilter: ipvs: Fix reuse connection if RS weight is 0
- From: Julian Anastasov <ja@xxxxxx>
[PATCH nf-next v4] netfilter: ipvs: Fix reuse connection if RS weight is 0
- From: yangxingwu <xingwu.yang@xxxxxxxxx>
[PATCH net-next v3] ipvs: Fix reuse connection if RS weight is 0
- From: yangxingwu <xingwu.yang@xxxxxxxxx>
Re: [PATCH v2] ipvs: Fix reuse connection if RS weight is 0
- From: yangxingwu <xingwu.yang@xxxxxxxxx>
[nft PATCH v2 0/3] parser: refactor and extend limit rate rules
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
[nft PATCH v2 3/3] parser: extend limit syntax
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
[nft PATCH v2 2/3] parser: add `limit_rate_pkts` and `limit_rate_bytes` rules
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
[nft PATCH v2 1/3] parser: add new `limit_bytes` rule
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
Re: [PATCH v2] ipvs: Fix reuse connection if RS weight is 0
- From: Julian Anastasov <ja@xxxxxx>
[RFC] netfilter: ipset: fix AHASH_MAX_SIZE to documented one
- From: Thomas Lamprecht <t.lamprecht@xxxxxxxxxxx>
[PATCH nf-next,v4 2/2] netfilter: nft_payload: support for inner header matching / mangling
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PACH nf-next,v4] netfilter: nft_payload: support for inner header matching / mangling
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nf-next,v3 2/2] netfilter: nft_payload: support for inner header matching / mangling
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH v2] ipvs: Fix reuse connection if RS weight is 0
- From: yangxingwu <xingwu.yang@xxxxxxxxx>
[PATCH nf-next 2/2,v2] netfilter: nft_payload: support for inner header matching / mangling
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nf-next 1/2,v2] netfilter: nf_tables: convert pktinfo->tprot_set to flags field
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft] doc: update ct timeout section with the state names
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH nf-next,v1] netfilter: nft_payload: support for inner header matching / mangling
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [nft PATCH] parser: extend limit statement syntax.
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
Re: [PATCH nft] src: Support netdev egress hook
- From: Lukas Wunner <lukas@xxxxxxxxx>
Re: [PATCH] ipvs: Fix reuse connection if RS weight is 0
- From: yangxingwu <xingwu.yang@xxxxxxxxx>
Re: [PATCH nft] src: Support netdev egress hook
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: nft terse set listing issue: netlink: Error: Unknown set in lookup expression
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft] cache: disable NFT_CACHE_SETELEM_BIT on --terse listing only
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nft] src: Support netdev egress hook
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nft] src: Support netdev egress hook
- From: Lukas Wunner <lukas@xxxxxxxxx>
nft terse set listing issue: netlink: Error: Unknown set in lookup expression
- From: Chris Arges <carges@xxxxxxxxxxxxxx>
Re: [PATCH] ipvs: Fix reuse connection if RS weight is 0
- From: Julian Anastasov <ja@xxxxxx>
Re: [nft PATCH] parser: extend limit statement syntax.
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
Re: [PATCH nft 1/3] tests: shell: README: copy edit
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nft] src: Support netdev egress hook
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nft] src: Support netdev egress hook
- From: Lukas Wunner <lukas@xxxxxxxxx>
Re: [PATCH nft 1/3] tests: shell: README: copy edit
- From: Štěpán Němec <snemec@xxxxxxxxxx>
[PATCH nft] src: Support netdev egress hook
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nft 1/3] tests: shell: README: copy edit
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nft 1/3] tests: shell: README: copy edit
- From: Štěpán Němec <snemec@xxxxxxxxxx>
Re: [nft PATCH] parser: extend limit statement syntax.
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [nft PATCH] parser: extend limit statement syntax.
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nft] cache: ensure evaluate_cache_list flags are set correctly
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nft] tests: run-tests.sh: ensure non-zero exit when $failed != 0
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nft 1/3] tests: shell: README: copy edit
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH libnetfilter_queue v6] build: doc: Allow to specify whether to produce man pages, html, neither or both
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH libnetfilter_log v5 1/1] build: doc: `make` generates requested documentation
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH] ipvs: Fix reuse connection if RS weight is 0
- From: yangxingwu <xingwu.yang@xxxxxxxxx>
Re: capwap protocol nested header
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
[PATCH nft] cache: ensure evaluate_cache_list flags are set correctly
- From: Chris Arges <carges@xxxxxxxxxxxxxx>
Re: [PATCH net-next] ifb: Depend on netfilter alternatively to tc
- From: patchwork-bot+netdevbpf@xxxxxxxxxx
Re: [PATCH v2 net-next 2/2] vrf: run conntrack only in context of lower/physdev for locally generated packets
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH v2 net-next 2/2] vrf: run conntrack only in context of lower/physdev for locally generated packets
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH v2 net-next 2/2] vrf: run conntrack only in context of lower/physdev for locally generated packets
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH v2 net-next 0/2] vrf: rework interaction with netfilter/conntrack
- From: patchwork-bot+netdevbpf@xxxxxxxxxx
[PATCH nf-next] netfilter: nft_meta: infer ptktype from IP address from the output path
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH] ipvs: Fix reuse connection if RS weight is 0
- From: yangxingwu <xingwu.yang@xxxxxxxxx>
Re: [PATCH] ipvs: Fix reuse connection if RS weight is 0
- From: Julian Anastasov <ja@xxxxxx>
[PATCH net-next] ifb: Depend on netfilter alternatively to tc
- From: Lukas Wunner <lukas@xxxxxxxxx>
Re: [PATCH] ipvs: Fix reuse connection if RS weight is 0
- From: yangxingwu <xingwu.yang@xxxxxxxxx>
[PATCH nft 4/4] cache: honor table in set filtering
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft 3/4] cache: honor filter in set listing commands
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft 2/4] cache: always set on NFT_CACHE_REFRESH for listing
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft 1/4] configure: default to libedit for cli
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH] ipvs: Fix reuse connection if RS weight is 0
- From: Julian Anastasov <ja@xxxxxx>
Re: [PATCH v2 net-next 2/2] vrf: run conntrack only in context of lower/physdev for locally generated packets
- From: David Ahern <dsahern@xxxxxxxxx>
[PATCH v2 net-next 2/2] vrf: run conntrack only in context of lower/physdev for locally generated packets
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH v2 net-next 1/2] netfilter: conntrack: skip confirmation and nat hooks in postrouting for vrf
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH v2 net-next 0/2] vrf: rework interaction with netfilter/conntrack
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH nf-next] netfilter: nft_meta: add NFT_META_IFTYPE
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH] ipvs: Fix reuse connection if RS weight is 0
- From: yangxingwu <xingwu.yang@xxxxxxxxx>
[PATCH nf-next] netfilter: conntrack: set on IPS_ASSURED if flows enters internal stream state
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [syzbot] general protection fault in nf_tables_dump_tables
- From: Dmitry Vyukov <dvyukov@xxxxxxxxxx>
Re: [syzbot] general protection fault in nf_tables_dump_tables
- From: syzbot <syzbot+0e3358e5ebb1956c271d@xxxxxxxxxxxxxxxxxxxxxxxxx>
Re: [syzbot] WARNING in port100_send_frame_async/usb_submit_urb
- From: syzbot <syzbot+dbec6695a6565a9c6bc0@xxxxxxxxxxxxxxxxxxxxxxxxx>
Re: [PATCH] ipvs: autoload ipvs on genl access
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nf] netfilter: nfnetlink_queue: fix OOB when mac header was cleared
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH] ipvs: autoload ipvs on genl access
- From: Simon Horman <horms@xxxxxxxxxxxx>
Re: [PATCH net-next 2/2] vrf: run conntrack only in context of lower/physdev for locally generated packets
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH net-next 2/2] vrf: run conntrack only in context of lower/physdev for locally generated packets
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH net-next 2/2] vrf: run conntrack only in context of lower/physdev for locally generated packets
- From: Eugene Crosser <crosser@xxxxxxxxxxx>
Re: [PATCH net-next 2/2] vrf: run conntrack only in context of lower/physdev for locally generated packets
- From: Jakub Kicinski <kuba@xxxxxxxxxx>
Re: [syzbot] WARNING: proc registration bug in clusterip_tg_check (3)
- From: syzbot <syzbot+08e6343a8cbd89b0c9d8@xxxxxxxxxxxxxxxxxxxxxxxxx>
Re: [PATCH] ipvs: autoload ipvs on genl access
- From: Julian Anastasov <ja@xxxxxx>
Re: [PATCH][net-next] netfilter: ebtables: use array_size() helper in copy_{from,to}_user()
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft] tests: shell: $NFT needs to be invoked unquoted
- From: Štěpán Němec <snemec@xxxxxxxxxx>
Re: [PATCH][net-next] netfilter: ebtables: use array_size() helper in copy_{from,to}_user()
- From: Kees Cook <keescook@xxxxxxxxxxxx>
[PATCH net-next 2/2] vrf: run conntrack only in context of lower/physdev for locally generated packets
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH net-next 1/2] netfilter: conntrack: skip confirmation and nat hooks in postrouting for vrf
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH net-next 0/2] vrf: rework interaction with netfilter/conntrack
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH] ipvs: autoload ipvs on genl access
- From: Thomas Weißschuh <linux@xxxxxxxxxxxxxx>
Re: [PATCH net 1/8] netfilter: xt_IDLETIMER: fix panic that occurs when timer_type has garbage value
- From: patchwork-bot+netdevbpf@xxxxxxxxxx
Re: [PATCH nft 1/3] tests: shell: README: copy edit
- From: Štěpán Němec <snemec@xxxxxxxxxx>
Re: [PATCH nft 1/3] tests: shell: README: copy edit
- From: Phil Sutter <phil@xxxxxx>
[PATCH net 8/8] netfilter: ebtables: allocate chainstack on CPU local nodes
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH net 7/8] selftests: netfilter: remove stray bash debug line
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH net 5/8] netfilter: ip6t_rt: fix rt0_hdr parsing in rt_mt6
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH net 6/8] netfilter: ipvs: make global sysctl readonly in non-init netns
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH net 4/8] selftests: nft_nat: add udp hole punch test case
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH net 3/8] netfilter: nf_tables: skip netdev events generated on netns removal
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH net 1/8] netfilter: xt_IDLETIMER: fix panic that occurs when timer_type has garbage value
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH net 2/8] netfilter: Kconfig: use 'default y' instead of 'm' for bool config option
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH net 0/8] Netfilter/IPVS fixes for net
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nft 1/3] tests: shell: README: copy edit
- From: Štěpán Němec <snemec@xxxxxxxxxx>
[PATCH nf] selftests: netfilter: extend nfqueue tests to cover vrf device
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH nf] netfilter: nfnetlink_queue: fix OOB when mac header was cleared
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH nft] tests: run-tests.sh: ensure non-zero exit when $failed != 0
- From: Phil Sutter <phil@xxxxxx>
Re: [PATCH nft 1/3] tests: shell: README: copy edit
- From: Phil Sutter <phil@xxxxxx>
Re: [PATCH nft] tests: cover baecd1cf2685 ("segtree: Fix segfault when restoring a huge interval set")
- From: Phil Sutter <phil@xxxxxx>
Re: [PATCH nft] tests: cover baecd1cf2685 ("segtree: Fix segfault when restoring a huge interval set")
- From: Štěpán Němec <snemec@xxxxxxxxxx>
Re: [PATCH nft] tests: cover baecd1cf2685 ("segtree: Fix segfault when restoring a huge interval set")
- From: Phil Sutter <phil@xxxxxx>
[PATCH nft 3/3] tests: shell: README: clarify test file name convention
- From: Štěpán Němec <snemec@xxxxxxxxxx>
[PATCH nft 2/3] tests: shell: README: $NFT does not have to be a path to a binary
- From: Štěpán Němec <snemec@xxxxxxxxxx>
[PATCH nft 1/3] tests: shell: README: copy edit
- From: Štěpán Němec <snemec@xxxxxxxxxx>
[PATCH nft] tests: run-tests.sh: ensure non-zero exit when $failed != 0
- From: Štěpán Němec <snemec@xxxxxxxxxx>
[PATCH nft] tests: cover baecd1cf2685 ("segtree: Fix segfault when restoring a huge interval set")
- From: Štěpán Němec <snemec@xxxxxxxxxx>
Re: [PATCH net 1/1] vrf: Revert "Reset skb conntrack connection..."
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH net 1/1] vrf: Revert "Reset skb conntrack connection..."
- From: David Ahern <dsahern@xxxxxxxxx>
Re: You dropped the wrong patvh from patchwork
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
Re: Commit 09e856d54bda5f288ef8437a90ab2b9b3eab83d1r "vrf: Reset skb conntrack connection on VRF rcv" breaks expected netfilter behaviour
- From: Jakub Kicinski <kuba@xxxxxxxxxx>
Re: Commit 09e856d54bda5f288ef8437a90ab2b9b3eab83d1r "vrf: Reset skb conntrack connection on VRF rcv" breaks expected netfilter behaviour
- From: Florian Westphal <fw@xxxxxxxxx>
Re: Commit 09e856d54bda5f288ef8437a90ab2b9b3eab83d1r "vrf: Reset skb conntrack connection on VRF rcv" breaks expected netfilter behaviour
- From: David Ahern <dsahern@xxxxxxxxx>
Re: Commit 09e856d54bda5f288ef8437a90ab2b9b3eab83d1r "vrf: Reset skb conntrack connection on VRF rcv" breaks expected netfilter behaviour
- From: Eugene Crosser <crosser@xxxxxxxxxxx>
Re: [PATCH net-next] net: sched: Allow statistics reads from softirq.
- From: patchwork-bot+netdevbpf@xxxxxxxxxx
Re: [PATCH nft] main: _exit() if setuid
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: Commit 09e856d54bda5f288ef8437a90ab2b9b3eab83d1r "vrf: Reset skb conntrack connection on VRF rcv" breaks expected netfilter behaviour
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH nft] main: _exit() if setuid
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH net-next] net: sched: Allow statistics reads from softirq.
- From: Sebastian Andrzej Siewior <bigeasy@xxxxxxxxxxxxx>
Re: [PATCH net-next 9/9] net: sched: Remove Qdisc::running sequence counter
- From: Eric Dumazet <eric.dumazet@xxxxxxxxx>
Re: linux-next: manual merge of the netfilter-next tree with the netfilter tree
- From: Stephen Rothwell <sfr@xxxxxxxxxxxxxxxx>
Re: [PATCH net-next 9/9] net: sched: Remove Qdisc::running sequence counter
- From: Eric Dumazet <eric.dumazet@xxxxxxxxx>
Re: [PATCH net-next 9/9] net: sched: Remove Qdisc::running sequence counter
- From: Eric Dumazet <eric.dumazet@xxxxxxxxx>
[PATCH net 1/1] vrf: Revert "Reset skb conntrack connection..."
- From: Eugene Crosser <crosser@xxxxxxxxxxx>
[PATCH net] vrf: Revert "Reset skb conntrack connection..."
- From: Eugene Crosser <crosser@xxxxxxxxxxx>
Re: Commit 09e856d54bda5f288ef8437a90ab2b9b3eab83d1r "vrf: Reset skb conntrack connection on VRF rcv" breaks expected netfilter behaviour
- From: David Ahern <dsahern@xxxxxxxxx>
Re: [PATCH net-next 9/9] net: sched: Remove Qdisc::running sequence counter
- From: Eric Dumazet <eric.dumazet@xxxxxxxxx>
Re: Commit 09e856d54bda5f288ef8437a90ab2b9b3eab83d1r "vrf: Reset skb conntrack connection on VRF rcv" breaks expected netfilter behaviour
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH nf] selftests: netfilter: add a vrf+conntrack testcase
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH v3 net-next] net: make use of helper netif_is_bridge_master()
- From: patchwork-bot+netdevbpf@xxxxxxxxxx
Re: [PATCH libnetfilter_log v5] build: doc: Allow to specify whether to produce man pages, html, neither or both
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
[PATCH libnetfilter_queue v6] build: doc: Allow to specify whether to produce man pages, html, neither or both
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
[PATCH libnetfilter_queue] build: doc: Ensure clean `git status` after in_tree build
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
Re: You dropped the wrong patvh from patchwork
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
Re: [PATCH] netfilter: ebtables: allocate chainstack on CPU local nodes
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nft] main: _exit() if setuid
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nf-next 15/15] netfilter: core: Fix clang warnings about unused static inlines
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nf-next 13/15] netfilter: ipvs: remove unneeded input wrappers
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nf-next 12/15] netfilter: ipvs: remove unneeded output wrappers
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nf-next 14/15] netfilter: ipvs: merge ipv4 + ipv6 icmp reply handlers
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nf-next 10/15] netfilter: ebtables: allow use of ebt_do_table as hookfn
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nf-next 09/15] netfilter: ip6tables: allow use of ip6t_do_table as hookfn
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nf-next 11/15] netfilter: ipvs: prepare for hook function reduction
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nf-next 08/15] netfilter: arp_tables: allow use of arpt_do_table as hookfn
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nf-next 06/15] af_packet: Introduce egress hook
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nf-next 07/15] netfilter: iptables: allow use of ipt_do_table as hookfn
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nf-next 05/15] netfilter: Introduce egress hook
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nf-next 03/15] netfilter: Rename ingress hook include file
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nf-next 04/15] netfilter: Generalize ingress hook include file
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nf-next 02/15] netfilter: nft_dynset: relax superfluous check on set updates
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nf-next 01/15] ipvs: add sysctl_run_estimation to support disable estimation
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nf-next 00/15] Netfilter/IPVS updates for net-next
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH netfilter] netfilter: conntrack: udp: generate event on switch to stream timeout
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH 2/2] conntrack: use same nfct handle for all entries
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH libnetfilter_log v5] build: doc: Allow to specify whether to produce man pages, html, neither or both
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nf-next] netfilter: core: Fix clang warnings about unused static inlines
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: You dropped the wrong patvh from patchwork
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: You dropped the wrong patvh from patchwork
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH net] netfilter: ipvs: make global sysctl readonly in non-init netns
- From: Simon Horman <horms@xxxxxxxxxxxx>
Re: [PATCH nf-next v2 0/4] netfilter: ipvs: remove unneeded hook wrappers
- From: Simon Horman <horms@xxxxxxxxxxxx>
You dropped the wrong patvh from patchwork
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
[PATCH libnetfilter_log v5 1/1] build: doc: `make` generates requested documentation
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
[PATCH nft] main: _exit() if setuid
- From: Florian Westphal <fw@xxxxxxxxx>
Re: Commit 09e856d54bda5f288ef8437a90ab2b9b3eab83d1r "vrf: Reset skb conntrack connection on VRF rcv" breaks expected netfilter behaviour
- From: David Ahern <dsahern@xxxxxxxxx>
Re: xtable-addons document request
- From: Jan Engelhardt <jengelh@xxxxxxx>
Re: [PATCH v3 net-next] net: make use of helper netif_is_bridge_master()
- From: Nikolay Aleksandrov <nikolay@xxxxxxxxxx>
[PATCH v3 net-next] net: make use of helper netif_is_bridge_master()
- From: Kyungrok Chung <acadx0@xxxxxxxxx>
Re: [PATCH v2 net-next] net: make use of helper netif_is_bridge_master()
- From: Nikolay Aleksandrov <nikolay@xxxxxxxxxx>
[PATCH net-next 6/9] net: sched: Protect Qdisc::bstats with u64_stats
- From: Sebastian Andrzej Siewior <bigeasy@xxxxxxxxxxxxx>
[PATCH net-next 9/9] net: sched: Remove Qdisc::running sequence counter
- From: Sebastian Andrzej Siewior <bigeasy@xxxxxxxxxxxxx>
[PATCH net-next 8/9] net: sched: Merge Qdisc::bstats and Qdisc::cpu_bstats data types
- From: Sebastian Andrzej Siewior <bigeasy@xxxxxxxxxxxxx>
[PATCH net-next 7/9] net: sched: Use _bstats_update/set() instead of raw writes
- From: Sebastian Andrzej Siewior <bigeasy@xxxxxxxxxxxxx>
[PATCH net-next 3/9] mq, mqprio: Use gnet_stats_add_queue().
- From: Sebastian Andrzej Siewior <bigeasy@xxxxxxxxxxxxx>
[PATCH net-next 5/9] u64_stats: Introduce u64_stats_set()
- From: Sebastian Andrzej Siewior <bigeasy@xxxxxxxxxxxxx>
[PATCH net-next 1/9] gen_stats: Add instead Set the value in __gnet_stats_copy_basic().
- From: Sebastian Andrzej Siewior <bigeasy@xxxxxxxxxxxxx>
[PATCH net-next 4/9] gen_stats: Move remaining users to gnet_stats_add_queue().
- From: Sebastian Andrzej Siewior <bigeasy@xxxxxxxxxxxxx>
[PATCH net-next 2/9] gen_stats: Add gnet_stats_add_queue().
- From: Sebastian Andrzej Siewior <bigeasy@xxxxxxxxxxxxx>
[PATCH net-next 0/9] Try to simplify the gnet_stats and remove qdisc->running sequence counter.
- From: Sebastian Andrzej Siewior <bigeasy@xxxxxxxxxxxxx>
[PATCH nf-next] netfilter: core: Fix clang warnings about unused static inlines
- From: Lukas Wunner <lukas@xxxxxxxxx>
[PATCH libnetfilter_queue v5] build: doc: Allow to specify whether to produce man pages, html, neither or both
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
Re: [PATCH libnetfilter_log v5] build: doc: Allow to specify whether to produce man pages, html, neither or both
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
[PATCH v2 net-next] net: make use of helper netif_is_bridge_master()
- From: Kyungrok Chung <acadx0@xxxxxxxxx>
[PATCH libnetfilter_log v5] build: doc: Allow to specify whether to produce man pages, html, neither or both
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
Re: Commit 09e856d54bda5f288ef8437a90ab2b9b3eab83d1r "vrf: Reset skb conntrack connection on VRF rcv" breaks expected netfilter behaviour
- From: Florian Westphal <fw@xxxxxxxxx>
[iptables PATCH v3 07/13] libxtables: Introduce xtables_globals print_help callback
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH v3 04/13] xtables: Simplify addr_mask freeing
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH v3 00/13] Eliminate dedicated arptables-nft parser
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH v3 02/13] xshared: Store optstring in xtables_globals
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH v3 09/13] nft-arp: Introduce post_parse callback
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH v3 12/13] xtables: arptables accepts empty interface names
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH v3 13/13] nft: Merge xtables-arp-standalone.c into xtables-standalone.c
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH v3 06/13] xtables-standalone: Drop version number from init errors
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH v3 03/13] nft-shared: Introduce init_cs family ops callback
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH v3 11/13] xtables: Derive xtables_globals from family
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH v3 08/13] arptables: Use standard data structures when parsing
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH v3 01/13] nft: Introduce builtin_tables_lookup()
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH v3 05/13] nft: Add family ops callbacks wrapping different nft_cmd_* functions
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH v3 10/13] nft-shared: Make nft_check_xt_legacy() family agnostic
- From: Phil Sutter <phil@xxxxxx>
Re: [iptables PATCH v2 00/17] Eliminate dedicated arptables-nft parser
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [iptables PATCH v2 00/17] Eliminate dedicated arptables-nft parser
- From: Phil Sutter <phil@xxxxxx>
Re: [PATCH netfilter] netfilter: conntrack: udp: generate event on switch to stream timeout
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH netfilter] netfilter: conntrack: udp: generate event on switch to stream timeout
- From: Maciej Żenczykowski <zenczykowski@xxxxxxxxx>
Re: [PATCH netfilter] netfilter: conntrack: udp: generate event on switch to stream timeout
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH netfilter] netfilter: conntrack: udp: generate event on switch to stream timeout
- From: Maciej Żenczykowski <zenczykowski@xxxxxxxxx>
Re: [PATCH netfilter] netfilter: conntrack: udp: generate event on switch to stream timeout
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH netfilter] netfilter: conntrack: udp: generate event on switch to stream timeout
- From: Maciej Żenczykowski <zenczykowski@xxxxxxxxx>
linux-next: manual merge of the netfilter-next tree with the netfilter tree
- From: Stephen Rothwell <sfr@xxxxxxxxxxxxxxxx>
Re: [PATCH nf] selftests: netfilter: remove stray bash debug line
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH net] netfilter: ipvs: make global sysctl readonly in non-init netns
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCHv2 nf] netfilter: ip6t_rt: fix rt0_hdr parsing in rt_mt6
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nf-next v2 0/4] netfilter: ipvs: remove unneeded hook wrappers
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nf-next 0/4] netfilter: remove obsolete hook wrappers
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nf-next v6 0/4] Netfilter egress hook
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [iptables PATCH v2 00/17] Eliminate dedicated arptables-nft parser
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH RFC nf-next 9/9] netfilter: hook_jit: add prog cache
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH RFC nf-next 8/9] netfilter: ingress: switch to invocation via bpf
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH RFC nf-next 7/9] netfilter: core: do not rebuild bpf program on dying netns
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH RFC nf-next 6/9] netfilter: add bpf base hook program generator
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH RFC nf-next 5/9] netfilter: reduce allowed hook count to 32
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH RFC nf-next 4/9] netfilter: make hook functions accept only one argument
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH RFC nf-next 3/9] netfilter: remove hook index from nf_hook_slow arguments
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH RFC nf-next 2/9] netfilter: nat: split nat hook iteration into a helper
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH RFC nf-next 1/9] netfilter: nf_queue: carry index in hook state
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH 1/1] netfilter: add bpf base hook program generator
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH RFC nf-next 0/9] netfilter: bpf base hook program generator
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH net-next] net: bridge: make use of helper netif_is_bridge_master()
- From: Jakub Kicinski <kuba@xxxxxxxxxx>
Re: Commit 09e856d54bda5f288ef8437a90ab2b9b3eab83d1r "vrf: Reset skb conntrack connection on VRF rcv" breaks expected netfilter behaviour
- From: Florian Westphal <fw@xxxxxxxxx>
Re: Commit 09e856d54bda5f288ef8437a90ab2b9b3eab83d1r "vrf: Reset skb conntrack connection on VRF rcv" breaks expected netfilter behaviour
- From: Lahav Schlesinger <lschlesinger@xxxxxxxxxxxxx>
Re: Commit 09e856d54bda5f288ef8437a90ab2b9b3eab83d1r "vrf: Reset skb conntrack connection on VRF rcv" breaks expected netfilter behaviour
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH net] netfilter: ipvs: make global sysctl readonly in non-init netns
- From: Julian Anastasov <ja@xxxxxx>
Re: [PATCH nf-next v2 0/4] netfilter: ipvs: remove unneeded hook wrappers
- From: Julian Anastasov <ja@xxxxxx>
[PATCH nf-next v2 3/4] netfilter: ipvs: remove unneeded input wrappers
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH nf-next v2 4/4] netfilter: ipvs: merge ipv4 + ipv6 icmp reply handlers
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH nf-next v2 2/4] netfilter: ipvs: remove unneeded output wrappers
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH nf-next v2 1/4] netfilter: ipvs: prepare for hook function reduction
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH nf-next v2 0/4] netfilter: ipvs: remove unneeded hook wrappers
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH nf-next 4/4] netfilter: ipvs: merge ipv4 + ipv6 icmp reply handlers
- From: Julian Anastasov <ja@xxxxxx>
[PATCH nf] selftests: netfilter: remove stray bash debug line
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [RFC][PATCH] rcu: Use typeof(p) instead of typeof(*p) *
- From: Steven Rostedt <rostedt@xxxxxxxxxxx>
Re: [PATCH net-next] net: bridge: make use of helper netif_is_bridge_master()
- From: Nikolay Aleksandrov <nikolay@xxxxxxxxxx>
[PATCH net] netfilter: ipvs: make global sysctl readonly in non-init netns
- From: Antoine Tenart <atenart@xxxxxxxxxx>
[PATCH net-next] net: bridge: make use of helper netif_is_bridge_master()
- From: Kyungrok Chung <acadx0@xxxxxxxxx>
Re: [RFC][PATCH] rcu: Use typeof(p) instead of typeof(*p) *
- From: Mathieu Desnoyers <mathieu.desnoyers@xxxxxxxxxxxx>
Commit 09e856d54bda5f288ef8437a90ab2b9b3eab83d1r "vrf: Reset skb conntrack connection on VRF rcv" breaks expected netfilter behaviour
- From: Eugene Crosser <crosser@xxxxxxxxxxx>
Re: [PATCHv2 nf] netfilter: ip6t_rt: fix rt0_hdr parsing in rt_mt6
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH nf] netfilter: ip6t_rt: fix rt0_hdr parsing in rt_mt6
- From: Xin Long <lucien.xin@xxxxxxxxx>
[PATCHv2 nf] netfilter: ip6t_rt: fix rt0_hdr parsing in rt_mt6
- From: Xin Long <lucien.xin@xxxxxxxxx>
[PATCH nf-next 4/4] netfilter: ipvs: merge ipv4 + ipv6 icmp reply handlers
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH nf-next 3/4] netfilter: ipvs: remove unneeded input wrappers
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH nf-next 2/4] netfilter: ipvs: remove unneeded output wrappers
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH nf-next 0/4] netfilter: ipvs: remove unneeded hook wrappers
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH nf-next 1/4] netfilter: ipvs: prepare for hook function reduction
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH ulogd] XML: show both nflog packet and conntrack
- From: Ken-ichirou MATSUZAWA <chamas@xxxxxxxxxxxxx>
[PATCH ulogd 2/2] NFLOG: attach struct nf_conntrack
- From: Ken-ichirou MATSUZAWA <chamas@xxxxxxxxxxxxx>
[PATCH ulogd 1/2] NFLOG: add NFULNL_CFG_F_CONNTRACK flag
- From: Ken-ichirou MATSUZAWA <chamas@xxxxxxxxxxxxx>
Re: [PATCH nf] netfilter: ip6t_rt: fix rt0_hdr parsing in rt_mt6
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nf] netfilter: ip6t_rt: fix rt0_hdr parsing in rt_mt6
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH nf] netfilter: ip6t_rt: fix rt0_hdr parsing in rt_mt6
- From: Xin Long <lucien.xin@xxxxxxxxx>
[PATCH libnf-log] src: add conntrack ID to XML output
- From: Ken-ichirou MATSUZAWA <chamas@xxxxxxxxxxxxx>
Re: [PATCH nft 1/2] doc: libnftables-json: make the example valid JSON
- From: Phil Sutter <phil@xxxxxx>
Re: [PATCH nf 1/2] selftests: nft_nat: add udp hole punch test case
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH ulogd] NFLOG: fix seq global flag setting
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH ulogd] XML: support nflog pkt output
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [RFC PATCH libnetfilter_log] src: support conntrack XML output
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [nft PATCH v3 0/3] Stateless output fixes
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [libnetfilter_log PATCH 0/8] Build fixes
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nf-next 4/4] netfilter: ebtables: allow use of ebt_do_table as hookfn
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH nf-next 3/4] netfilter: ip6tables: allow use of ip6t_do_table as hookfn
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH nf-next 2/4] netfilter: arp_tables: allow use of arpt_do_table as hookfn
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH nf-next 1/4] netfilter: ipv4: allow use of ipt_do_table as hookfn
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH nf-next 1/4] netfilter: iptables: allow use of ipt_do_table as hookfn
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH nf-next 0/4] netfilter: remove obsolete hook wrappers
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH nft 1/2] doc: libnftables-json: make the example valid JSON
- From: Štěpán Němec <snemec@xxxxxxxxxx>
[PATCH nft 2/2] doc: libnftables-json: make the example valid libnftables JSON input
- From: Štěpán Němec <snemec@xxxxxxxxxx>
Re: [PATCH] conntrack: fix invmap_icmpv6 entries
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
RE: [RFC][PATCH] rcu: Use typeof(p) instead of typeof(*p) *
- From: David Laight <David.Laight@xxxxxxxxxx>
RE: [RFC][PATCH] rcu: Use typeof(p) instead of typeof(*p) *
- From: David Laight <David.Laight@xxxxxxxxxx>
Re: [PATCH libnetfilter_log v5 1/1] build: doc: `make` generates requested documentation
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
[PATCH] netfilter: ebtables: allocate chainstack on CPU local nodes
- From: Davidlohr Bueso <dave@xxxxxxxxxxxx>
[PATCH] conntrack: fix invmap_icmpv6 entries
- From: Ken-ichirou MATSUZAWA <chamas@xxxxxxxxxxxxx>
[PATCH v2 net] netfilter: fix conntrack flows stuck issue on cleanup.
- From: Volodymyr Mytnyk <volodymyr.mytnyk@xxxxxxxxxxx>
[PATCH libnetfilter_log v5 1/1] build: doc: `make` generates requested documentation
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
[PATCH libnetfilter_log v5 0/1] build: doc: `make` generates requested documentation
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
xtable-addons document request
- From: alireza sadeghpour <alireza0101sadeghpour@xxxxxxxxx>
[libnetfilter_log PATCH 9/9] Add Emacs artefacts to .gitignore
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
[libnetfilter_log PATCH 8/9] build: replace `AC_HELP_STRING` with `AS_HELP_STRING`
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
[libnetfilter_log PATCH 6/9] build: remove `-dynamic` when linking check progs
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
[libnetfilter_log PATCH 5/9] build: remove superfluous .la when linking ulog_test
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
[libnetfilter_log PATCH 7/9] build: replace `AM_PROG_LIBTOOL` and `AC_DISABLE_STATIC` with `LT_INIT`
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
[libnetfilter_log PATCH 4/9] build: move dependency CFLAGS variables out of `AM_CPPFLAGS`
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
[libnetfilter_log PATCH 3/9] build: fix linker flags for nf-log
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
[libnetfilter_log PATCH 2/9] build: add pkg-config configuration for libipulog
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
[libnetfilter_log PATCH 1/9] build: correct pkg-config dependency configuration
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
[libnetfilter_log PATCH 0/8] Build fixes
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
Re: [PATCH libnetfilter_log v3] build: doc: `make` generates requested documentation
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
[PATCH libnetfilter_log v4] build: doc: `make` generates requested documentation
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
[PATCH nf-next v6 4/4] af_packet: Introduce egress hook
- From: Lukas Wunner <lukas@xxxxxxxxx>
[PATCH nf-next v6 3/4] netfilter: Introduce egress hook
- From: Lukas Wunner <lukas@xxxxxxxxx>
[PATCH nf-next v6 2/4] netfilter: Generalize ingress hook include file
- From: Lukas Wunner <lukas@xxxxxxxxx>
Re: [PATCH libnetfilter_log v3] build: doc: `make` generates requested documentation
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
[PATCH nf-next v6 1/4] netfilter: Rename ingress hook include file
- From: Lukas Wunner <lukas@xxxxxxxxx>
Re: [PATCH libnetfilter_log v3] build: doc: `make` generates requested documentation
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
[PATCH nf-next v6 0/4] Netfilter egress hook
- From: Lukas Wunner <lukas@xxxxxxxxx>
[PATCH net] netfilter: fix conntrack flows stack issue on cleanup.
- From: Volodymyr Mytnyk <volodymyr.mytnyk@xxxxxxxxxxx>
[nft PATCH v3 3/3] rule: replace three conditionals with one
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
[nft PATCH v3 2/3] rule: fix stateless output after listing sets containing counters
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
[nft PATCH v3 1/3] rule: remove fake stateless output of named counters
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
[nft PATCH v3 0/3] Stateless output fixes
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
[nft PATCH v2 0/3] Stateless output fixes
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
[nft PATCH v2 3/3] rule: replace three conditionals with one.
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
[nft PATCH v2 1/3] rule: remove fake stateless output of named counters
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
[nft PATCH v2 2/3] rule: fix stateless output after listing sets containing counters.
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
Re: [PATCH net-next v4] net: ipvs: add sysctl_run_estimation to support disable estimation
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nf] netfilter: nftables: skip netdev events generated on netns removal
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH] net/netfilter/Kconfig: use 'default y' instead of 'm' for bool config option
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nf v2] netfilter: xt_IDLETIMER: fix panic that occurs when timer_type has garbage value
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [syzbot] KASAN: use-after-free Read in nf_tables_dump_sets
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [syzbot] KASAN: use-after-free Read in nf_tables_dump_sets
- From: syzbot <syzbot+8cc940a9689599e10587@xxxxxxxxxxxxxxxxxxxxxxxxx>
Re: In raw prerouting, `iif` matches different interfaces in different kernels when enslaved in a vrf
- From: Florian Westphal <fw@xxxxxxxxx>
Re: In raw prerouting, `iif` matches different interfaces in different kernels when enslaved in a vrf
- From: Florian Westphal <fw@xxxxxxxxx>
Re: In raw prerouting, `iif` matches different interfaces in different kernels when enslaved in a vrf
- From: Eugene Crosser <crosser@xxxxxxxxxxx>
Re: In raw prerouting, `iif` matches different interfaces in different kernels when enslaved in a vrf
- From: Florian Westphal <fw@xxxxxxxxx>
Re: In raw prerouting, `iif` matches different interfaces in different kernels when enslaved in a vrf
- From: Eugene Crosser <crosser@xxxxxxxxxxx>
[PATCH nf] netfilter: nftables: skip netdev events generated on netns removal
- From: Florian Westphal <fw@xxxxxxxxx>
Re: In raw prerouting, `iif` matches different interfaces in different kernels when enslaved in a vrf
- From: Eugene Crosser <crosser@xxxxxxxxxxx>
[PATCH libnetfilter_log v3] build: doc: `make` generates requested documentation
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
Re: [RFC][PATCH] rcu: Use typeof(p) instead of typeof(*p) *
- From: Jan Engelhardt <jengelh@xxxxxxx>
Re: [RFC][PATCH] rcu: Use typeof(p) instead of typeof(*p) *
- From: Linus Torvalds <torvalds@xxxxxxxxxxxxxxxxxxxx>
Re: [RFC][PATCH] rcu: Use typeof(p) instead of typeof(*p) *
- From: Steven Rostedt <rostedt@xxxxxxxxxxx>
Re: [RFC][PATCH] rcu: Use typeof(p) instead of typeof(*p) *
- From: Jan Engelhardt <jengelh@xxxxxxx>
Re: [RFC][PATCH] rcu: Use typeof(p) instead of typeof(*p) *
- From: Steven Rostedt <rostedt@xxxxxxxxxxx>
[PATCH] net/netfilter/Kconfig: use 'default y' instead of 'm' for bool config option
- From: Vegard Nossum <vegard.nossum@xxxxxxxxxx>
Re: [RFC][PATCH] rcu: Use typeof(p) instead of typeof(*p) *
- From: Linus Torvalds <torvalds@xxxxxxxxxxxxxxxxxxxx>
Re: [RFC][PATCH] rcu: Use typeof(p) instead of typeof(*p) *
- From: Steven Rostedt <rostedt@xxxxxxxxxxx>
Re: [RFC][PATCH] rcu: Use typeof(p) instead of typeof(*p) *
- From: Steven Rostedt <rostedt@xxxxxxxxxxx>
Re: [RFC][PATCH] rcu: Use typeof(p) instead of typeof(*p) *
- From: Steven Rostedt <rostedt@xxxxxxxxxxx>
Re: [RFC][PATCH] rcu: Use typeof(p) instead of typeof(*p) *
- From: Mathieu Desnoyers <mathieu.desnoyers@xxxxxxxxxxxx>
Re: [RFC][PATCH] rcu: Use typeof(p) instead of typeof(*p) *
- From: Linus Torvalds <torvalds@xxxxxxxxxxxxxxxxxxxx>
Re: [RFC][PATCH] rcu: Use typeof(p) instead of typeof(*p) *
- From: Steven Rostedt <rostedt@xxxxxxxxxxx>
Re: [RFC][PATCH] rcu: Use typeof(p) instead of typeof(*p) *
- From: Jan Engelhardt <jengelh@xxxxxxx>
Re: [RFC][PATCH] rcu: Use typeof(p) instead of typeof(*p) *
- From: Rasmus Villemoes <linux@xxxxxxxxxxxxxxxxxx>
Re: [RFC][PATCH] rcu: Use typeof(p) instead of typeof(*p) *
- From: Steven Rostedt <rostedt@xxxxxxxxxxx>
Re: [RFC][PATCH] rcu: Use typeof(p) instead of typeof(*p) *
- From: Jan Engelhardt <jengelh@xxxxxxx>
Re: [RFC][PATCH] rcu: Use typeof(p) instead of typeof(*p) *
- From: Mathieu Desnoyers <mathieu.desnoyers@xxxxxxxxxxxx>
Re: [RFC][PATCH] rcu: Use typeof(p) instead of typeof(*p) *
- From: Rasmus Villemoes <linux@xxxxxxxxxxxxxxxxxx>
Re: [RFC][PATCH] rcu: Use typeof(p) instead of typeof(*p) *
- From: Linus Torvalds <torvalds@xxxxxxxxxxxxxxxxxxxx>
Re: [RFC][PATCH] rcu: Use typeof(p) instead of typeof(*p) *
- From: Steven Rostedt <rostedt@xxxxxxxxxxx>
Re: [RFC][PATCH] rcu: Use typeof(p) instead of typeof(*p) *
- From: Steven Rostedt <rostedt@xxxxxxxxxxx>
Re: [RFC][PATCH] rcu: Use typeof(p) instead of typeof(*p) *
- From: Steven Rostedt <rostedt@xxxxxxxxxxx>
Re: [RFC][PATCH] rcu: Use typeof(p) instead of typeof(*p) *
- From: "Paul E. McKenney" <paulmck@xxxxxxxxxx>
Re: [RFC][PATCH] rcu: Use typeof(p) instead of typeof(*p) *
- From: Linus Torvalds <torvalds@xxxxxxxxxxxxxxxxxxxx>
Re: [RFC][PATCH] rcu: Use typeof(p) instead of typeof(*p) *
- From: Mathieu Desnoyers <mathieu.desnoyers@xxxxxxxxxxxx>
Re: [RFC][PATCH] rcu: Use typeof(p) instead of typeof(*p) *
- From: Steven Rostedt <rostedt@xxxxxxxxxxx>
Re: [RFC][PATCH] rcu: Use typeof(p) instead of typeof(*p) *
- From: Mathieu Desnoyers <mathieu.desnoyers@xxxxxxxxxxxx>
[PATCH AUTOSEL 5.14 20/40] netfilter: conntrack: serialize hash resizes and cleanups
- From: Sasha Levin <sashal@xxxxxxxxxx>
[PATCH AUTOSEL 5.14 18/40] netfilter: nf_nat_masquerade: make async masq_inet6_event handling generic
- From: Sasha Levin <sashal@xxxxxxxxxx>
[PATCH AUTOSEL 5.14 19/40] netfilter: nf_nat_masquerade: defer conntrack walk to work queue
- From: Sasha Levin <sashal@xxxxxxxxxx>
[PATCH AUTOSEL 5.14 17/40] netfilter: nf_tables: Fix oversized kvmalloc() calls
- From: Sasha Levin <sashal@xxxxxxxxxx>
[PATCH AUTOSEL 5.14 12/40] netfilter: ip6_tables: zero-initialize fragment offset
- From: Sasha Levin <sashal@xxxxxxxxxx>
[PATCH AUTOSEL 5.14 09/40] netfilter: ipset: Fix oversized kvmalloc() calls
- From: Sasha Levin <sashal@xxxxxxxxxx>
[RFC][PATCH] rcu: Use typeof(p) instead of typeof(*p) *
- From: Steven Rostedt <rostedt@xxxxxxxxxxx>
Linux 5.14 breaks wlan-ap traffic between wlan device
- From: Reindl Harald <h.reindl@xxxxxxxxxxxxx>
Re: [PATCH v1 net-next 1/1] net: Mark possible unused variables on stack with __maybe_unused
- From: Jakub Kicinski <kuba@xxxxxxxxxx>
Re: [PATCH nf v2] netfilter: xt_IDLETIMER: fix panic that occurs when timer_type has garbage value
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH nf v2] netfilter: xt_IDLETIMER: fix panic that occurs when timer_type has garbage value
- From: Juhee Kang <claudiajkang@xxxxxxxxx>
Re: [PATCH nf] netfilter: xt_IDLETIMER: fix panic that occurs when timer_type has garbage value
- From: Juhee Kang <claudiajkang@xxxxxxxxx>
Re: [PATCH nf] netfilter: xt_IDLETIMER: fix panic that occurs when timer_type has garbage value
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH nf] netfilter: xt_IDLETIMER: fix panic that occurs when timer_type has garbage value
- From: Juhee Kang <claudiajkang@xxxxxxxxx>
Re: [PATCH RFC 2/2] netfilter: nf_nat: don't allow source ports that shadow local port
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH RFC 2/2] netfilter: nf_nat: don't allow source ports that shadow local port
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [nft PATCH] parser: extend limit statement syntax.
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
Re: [PATCH libnetfilter_log v2] build: doc: `make` generates requested documentation
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
Re: [PATCH libnetfilter_log v2] build: doc: `make` generates requested documentation
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
[nft PATCH] rule: remove fake stateless output of named counters
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
Re: In raw prerouting, `iif` matches different interfaces in different kernels when enslaved in a vrf
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [xtables-addons] xt_ipp2p: add ipv6 module alias
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
Re: [xtables-addons] xt_ipp2p: add ipv6 module alias
- From: <kaskada@xxxxxxxx>
Re: [PATCH net 1/4] netfilter: conntrack: fix boot failure with nf_conntrack.enable_hooks=1
- From: patchwork-bot+netdevbpf@xxxxxxxxxx
[nft PATCH] parser: extend limit statement syntax.
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
[PATCH nft] cache: unset NFT_CACHE_SETELEM with --terse listing
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH net-next v4] net: ipvs: add sysctl_run_estimation to support disable estimation
- From: Simon Horman <horms@xxxxxxxxxxxx>
[PATCH net 4/4] netfilter: nf_tables: honor NLM_F_CREATE and NLM_F_EXCL in event notification
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH net 2/4] netfilter: nf_tables: add position handle in event notification
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH net 3/4] netfilter: nf_tables: reverse order in rule replacement expansion
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH net 1/4] netfilter: conntrack: fix boot failure with nf_conntrack.enable_hooks=1
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH net 0/4] Netfilter fixes for net (v2)
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [iptables PATCH] tests: shell: fix bashism
- From: Florian Westphal <fw@xxxxxxxxx>
[iptables PATCH] tests: shell: fix bashism
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
[PATCH iptables v2 8/8] tests: iptables-test: correct misspelt variable
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
[PATCH iptables v2 0/8] extensions: libxt_NFLOG: use nft back-end for iptables-nft
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
[PATCH iptables v2 3/8] extensions: libxt_NFLOG: don't truncate log prefix on print/save
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
[PATCH iptables v2 4/8] extensions: libxt_NFLOG: disable `--nflog-range` Python test-cases
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
[PATCH iptables v2 5/8] extensions: libxt_NFLOG: fix `--nflog-prefix` Python test-cases
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
[PATCH iptables v2 2/8] extensions: libxt_NFLOG: use nft built-in logging instead of xt_NFLOG
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
[PATCH iptables v2 6/8] extensions: libxt_NFLOG: remove extra space when saving targets with prefixes
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
[PATCH iptables v2 1/8] nft: fix indentation error.
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
[PATCH iptables v2 7/8] build: replace `AM_PROG_LIBTOOL` and `AC_DISABLE_STATIC` with `LT_INIT`
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
In raw prerouting, `iif` matches different interfaces in different kernels when enslaved in a vrf
- From: Eugene Crosser <crosser@xxxxxxxxxxx>
[PATCH v1 net-next 1/1] net: Mark possible unused variables on stack with __maybe_unused
- From: Andy Shevchenko <andriy.shevchenko@xxxxxxxxxxxxxxx>
Re: [PATCH RFC 2/2] netfilter: nf_nat: don't allow source ports that shadow local port
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH 1/3] extensions: libtxt_NFLOG: use nft built-in logging instead of xt_NFLOG
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
Re: [PATCH nf-next v5 0/6] Netfilter egress hook
- From: Jakub Kicinski <kuba@xxxxxxxxxx>
Re: [PATCH nf-next v5 0/6] Netfilter egress hook
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nf-next v5 0/6] Netfilter egress hook
- From: Lukas Wunner <lukas@xxxxxxxxx>
Re: [syzbot] WARNING in __nf_unregister_net_hook (4)
- From: syzbot <syzbot+154bd5be532a63aa778b@xxxxxxxxxxxxxxxxxxxxxxxxx>
Re: [PATCH nf-next v5 0/6] Netfilter egress hook
- From: Jakub Kicinski <kuba@xxxxxxxxxx>
Re: [PATCH nf-next v5 0/6] Netfilter egress hook
- From: Lukas Wunner <lukas@xxxxxxxxx>
Re: [PATCH nf-next v5 0/6] Netfilter egress hook
- From: Jakub Kicinski <kuba@xxxxxxxxxx>
Re: [PATCH nf-next v5 0/6] Netfilter egress hook
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nf-next v5 0/6] Netfilter egress hook
- From: Jakub Kicinski <kuba@xxxxxxxxxx>
[iptables PATCH v2 07/17] libxtables: Introduce xtables_globals print_help callback
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH v2 03/17] nft-shared: Introduce init_cs family ops callback
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH v2 14/17] xtables: arptables accepts but ignores '-m'
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH v2 01/17] nft: Introduce builtin_tables_lookup()
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH v2 13/17] xtables: arptables doesn't warn about empty interface
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH v2 05/17] nft: Add family ops callbacks wrapping different nft_cmd_* functions
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH v2 17/17] nft: Store maximum allowed chain name length in family ops
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH v2 02/17] xshared: Store optstring in xtables_globals
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH v2 12/17] nft: Merge xtables-arp-standalone.c into xtables-standalone.c
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH v2 06/17] xtables-standalone: Drop version number from init errors
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH v2 10/17] nft-shared: Make nft_check_xt_legacy() family agnostic
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH v2 16/17] xtables: Support '!' betwen option and argument
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH v2 11/17] xtables: Derive xtables_globals from family
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH v2 09/17] nft-arp: Introduce post_parse callback
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH v2 04/17] xtables: Simplify addr_mask freeing
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH v2 15/17] xtables: arptables ignores wrong -t values
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH v2 00/17] Eliminate dedicated arptables-nft parser
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH v2 08/17] arptables: Use standard data structures when parsing
- From: Phil Sutter <phil@xxxxxx>
Re: [PATCH net 2/5] netfilter: nf_tables: add position handle in event notification
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: ebtables behaving weirdly on MIPS platform
- From: Florian Westphal <fw@xxxxxxxxx>
Re: ebtables behaving weirdly on MIPS platform
- From: Senthil Kumar Balasubramanian <senthilb@xxxxxxxxxxxxx>
Re: [PATCH net 2/5] netfilter: nf_tables: add position handle in event notification
- From: David Miller <davem@xxxxxxxxxxxxx>
Re: ebtables behaving weirdly on MIPS platform
- From: Florian Westphal <fw@xxxxxxxxx>
Re: ebtables behaving weirdly on MIPS platform
- From: Phil Sutter <phil@xxxxxx>
Re: [PATCH nf-next v5 0/6] Netfilter egress hook
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nf-next v5 0/6] Netfilter egress hook
- From: Daniel Borkmann <daniel@xxxxxxxxxxxxx>
Re: [PATCH net 2/5] netfilter: nf_tables: add position handle in event notification
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nf-next v5 0/6] Netfilter egress hook
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nf-next v5 0/6] Netfilter egress hook
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH 1/3] extensions: libtxt_NFLOG: use nft built-in logging instead of xt_NFLOG
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
Re: [PATCH nf-next v5 0/6] Netfilter egress hook
- From: Daniel Borkmann <daniel@xxxxxxxxxxxxx>
Re: [PATCH nf-next v5 0/6] Netfilter egress hook
- From: Lukas Wunner <lukas@xxxxxxxxx>
ebtables behaving weirdly on MIPS platform
- From: Senthil Kumar Balasubramanian <senthilb@xxxxxxxxxxxxx>
Re: [PATCH nf-next v5 0/6] Netfilter egress hook
- From: Daniel Borkmann <daniel@xxxxxxxxxxxxx>
Re: [PATCH net 2/5] netfilter: nf_tables: add position handle in event notification
- From: Jakub Kicinski <kuba@xxxxxxxxxx>
[PATCH net 5/5] netfilter: nf_tables: honor NLM_F_CREATE and NLM_F_EXCL in event notification
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH net 3/5] netfilter: nf_tables: reverse order in rule replacement expansion
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH net 4/5] netfilter: nft_dynset: relax superfluous check on set updates
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH net 2/5] netfilter: nf_tables: add position handle in event notification
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH net 1/5] netfilter: conntrack: fix boot failure with nf_conntrack.enable_hooks=1
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH net 0/5] Netfilter fixes for net
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[syzbot] WARNING: kmalloc bug in hash_netportnet_create
- From: syzbot <syzbot+60c1bad54e53f88e8c4f@xxxxxxxxxxxxxxxxxxxxxxxxx>
[PATCH nft] cache: filter out sets and maps that are not requested
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft 1/2] cache: finer grain cache population for list commands
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft 2/2] cache: filter out tables that are not requested
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft] cache: set on cache flags for nested notation
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH] Fix typo in ipset-translate man page
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft,v2 2/2] evaluate: check for missing transport protocol match in nat map with concatenations
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft 2/2] evaluate: check for missing transport protocol match in nat map with concatenations
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft 1/2] evaluate: check for concatenation in set data datatype
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH][net-next] netfilter: ebtables: use array_size() helper in copy_{from,to}_user()
- From: "Gustavo A. R. Silva" <gustavoars@xxxxxxxxxx>
[PATCH nft] netlink: dynset: set compound expr dtype based on set key definition
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH libnetfilter_log v2] src: doc: revise doxygen for all other modules
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
[syzbot] KASAN: use-after-free Read in nf_tables_fill_table_info
- From: syzbot <syzbot+46f298a3b7ae01600a54@xxxxxxxxxxxxxxxxxxxxxxxxx>
[PATCH nft] payload: don't adjust offsets of autogenerated dependency expressions
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH nf] netfilter: conntrack: fix boot failure with nf_conntrack.enable_hooks=1
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH conntrack-tools v2] conntrack.8: minor copy edit
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH libnetfilter_log 2/2] utils: nfulnl_test: Add rather extensive test of nflog_get_packet_hw()
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH libnetfilter_log 1/2] utils: nfulnl_test: Agree with man pages
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH libnetfilter_queue v4 0/1] build: doc: Allow to specify whether to produce man pages, html, neither or both
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nf-next v5 6/6] netfilter: nf_tables: add egress support
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nf-next v5 4/6] netfilter: Introduce egress hook
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nf-next v5 5/6] af_packet: Introduce egress hook
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nf-next v5 3/6] netfilter: nf_tables: move netdev ingress filter chain to nf_tables_netdev.c
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nf-next v5 2/6] netfilter: Generalize ingress hook include file
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nf-next v5 1/6] netfilter: Rename ingress hook include file
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nf-next v5 0/6] Netfilter egress hook
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH v2 1/1] xt_ECHO, xt_TARPIT: make properly conditional on IPv6
- From: Jan Engelhardt <jengelh@xxxxxxx>
[PATCH libnetfilter_log v2] build: doc: `make` generates requested documentation
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
Re: [PATCH libnetfilter_queue v3 1/4] src: doc: revise doxygen for all other modules
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
[PATCH conntrack-tools v2] conntrack.8: minor copy edit
- From: Štěpán Němec <snemec@xxxxxxxxxx>
[PATCH conntrack-tools] conntrack.8: minor copy edit
- From: Štěpán Němec <snemec@xxxxxxxxxx>
[iptables PATCH 07/12] libxtables: Introduce xtables_globals print_help callback
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH 08/12] arptables: Use standard data structures when parsing
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH 09/12] nft-arp: Introduce post_parse callback
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH 01/12] nft: Introduce builtin_tables_lookup()
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH 10/12] nft-shared: Make nft_check_xt_legacy() family agnostic
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH 11/12] xtables: Derive xtables_globals from family
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH 00/12] Eliminate dedicated arptables-nft parser
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH 04/12] xtables: Simplify addr_mask freeing
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH 05/12] nft: Add family ops callbacks wrapping different nft_cmd_* functions
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH 06/12] xtables-standalone: Drop version number from init errors
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH 12/12] nft: Merge xtables-arp-standalone.c into xtables-standalone.c
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH 03/12] nft-shared: Introduce init_cs family ops callback
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH 02/12] xshared: Store optstring in xtables_globals
- From: Phil Sutter <phil@xxxxxx>
Re: [conntrack-tools 0/6] Build fixes
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [iptables PATCH 4/4] nft: Delete builtin chains compatibly
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH libnetfilter_queue v3 4/4] src: doc: Document nflog_callback_register() and nflog_handle_packet()
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
[PATCH libnetfilter_queue v3 3/4] src: doc: Add \return for nflog_get_packet_hw()
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
[PATCH libnetfilter_queue v3 2/4] src: doc: Insert SYNOPSIS sections for man pages
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
[PATCH libnetfilter_queue v3 1/4] src: doc: revise doxygen for all other modules
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
[PATCH v2 1/1] xt_ECHO, xt_TARPIT: make properly conditional on IPv6
- From: "Philip Prindeville" <philipp@xxxxxxxxxxxxxxxxxxxxx>
[PATCH 1/1] xt_ECHO, xt_TARPIT: make properly conditional on IPv6
- From: "Philip Prindeville" <philipp@xxxxxxxxxxxxxxxxxxxxx>
[PATCH nf,v2] netfilter: nf_tables: honor NLM_F_CREATE and NLM_F_EXCL in event notification
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft] monitor: honor NLM_F_EXCL netlink flag
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nf] netfilter: nf_tables: honor NLM_F_CREATE and NLM_F_EXCL in event notification
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH iptables] xtables-translate: add missing argument and option to usage
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH nft] evaluate: provide a hint on missing dynamic flag
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH 2/3] monitor: honor NLM_F_APPEND flag for rules
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH 3/3] tests: monitor: update insert and replace commands
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH 1/3] monitor: display rule position handle
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nf] netfilter: nft_dynset: relax superfluous check on set updates
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [conntrack-tools 6/6] build: fix dependency-tracking of yacc-generated header
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
Re: [conntrack-tools 6/6] build: fix dependency-tracking of yacc-generated header
- From: Jan Engelhardt <jengelh@xxxxxxx>
[conntrack-tools 5/6] build: clean yacc- and lex-generated files with maintainer-clean
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>

[Index of Archives] [LARTC] [Berkeley Packet Filter] [Bugtraq] [Yosemite News] [Samba]