Linux TCP/IP Netfilter Devel
[Prev Page][Next Page]
- Re: nft_pipapo_avx2_lookup backtrace in linux 5.10
- From: Arturo Borrero Gonzalez <arturo@xxxxxxxxxxxxx>
- Re: [syzbot] WARNING in __nf_unregister_net_hook (4)
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [syzbot] WARNING in __nf_unregister_net_hook (4)
- From: Dmitry Vyukov <dvyukov@xxxxxxxxxx>
- Re: nft_pipapo_avx2_lookup backtrace in linux 5.10
- From: Stefano Brivio <sbrivio@xxxxxxxxxx>
- Re: nft_pipapo_avx2_lookup backtrace in linux 5.10
- From: Stefano Brivio <sbrivio@xxxxxxxxxx>
- Re: [PATCH net 1/8] netfilter: xt_SECMARK: add new revision to fix structure layout
- From: patchwork-bot+netdevbpf@xxxxxxxxxx
- [PATCH net 8/8] netfilter: nftables: avoid potential overflows on 32bit arches
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net 7/8] netfilter: nftables: avoid overflows in nft_hash_buckets()
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net 6/8] netfilter: nftables: Fix a memleak from userdata error path in new objects
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net 5/8] netfilter: remove BUG_ON() after skb_header_pointer()
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net 4/8] netfilter: nfnetlink_osf: Fix a missing skb_header_pointer() NULL check
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net 3/8] netfilter: nfnetlink: add a missing rcu_read_unlock()
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net 1/8] netfilter: xt_SECMARK: add new revision to fix structure layout
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net 2/8] netfilter: arptables: use pernet ops struct during unregister
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net 0/8] Netfilter fixes for net
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: nft_pipapo_avx2_lookup backtrace in linux 5.10
- From: Arturo Borrero Gonzalez <arturo@xxxxxxxxxxxxx>
- Re: nft_pipapo_avx2_lookup backtrace in linux 5.10
- From: Stefano Brivio <sbrivio@xxxxxxxxxx>
- Re: nft_pipapo_avx2_lookup backtrace in linux 5.10
- From: Stefano Brivio <sbrivio@xxxxxxxxxx>
- Re: nft_pipapo_avx2_lookup backtrace in linux 5.10
- From: Florian Westphal <fw@xxxxxxxxx>
- nft_pipapo_avx2_lookup backtrace in linux 5.10
- From: Arturo Borrero Gonzalez <arturo@xxxxxxxxxxxxx>
- Re: [PATCH net 2/2] netfilter: nf_tables: avoid potential overflows on 32bit arches
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH net 1/2] netfilter: nf_tables: avoid overflows in nft_hash_buckets()
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net 2/2] netfilter: nf_tables: avoid potential overflows on 32bit arches
- From: Eric Dumazet <eric.dumazet@xxxxxxxxx>
- [PATCH net 1/2] netfilter: nf_tables: avoid overflows in nft_hash_buckets()
- From: Eric Dumazet <eric.dumazet@xxxxxxxxx>
- Re: [PATCH nft 1/2] segtree: Fix range_mask_len() for subnet ranges exceeding unsigned int
- From: Phil Sutter <phil@xxxxxx>
- Re: [PATCH nft 1/2] segtree: Fix range_mask_len() for subnet ranges exceeding unsigned int
- From: Stefano Brivio <sbrivio@xxxxxxxxxx>
- Re: [PATCH nft 1/2] segtree: Fix range_mask_len() for subnet ranges exceeding unsigned int
- From: Phil Sutter <phil@xxxxxx>
- [nft PATCH] doc: Reduce size of NAT statement synopsis
- From: Phil Sutter <phil@xxxxxx>
- Re: [PATCH] Avoid potentially erroneos RST drop.
- From: Ali Abdallah <ali.abdallah@xxxxxxxx>
- Re: [PATCH] netfilter: nf_conntrack: Add conntrack helper for ESP/IPsec
- From: Cole Dishington <Cole.Dishington@xxxxxxxxxxxxxxxxxxx>
- Re: [PATCH] ipv6: netfilter.c: fix missing line after declaration
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nft 2/2] tests: Introduce 0043_concatenated_ranges_1 for subnets of different sizes
- From: Stefano Brivio <sbrivio@xxxxxxxxxx>
- [PATCH nft 1/2] segtree: Fix range_mask_len() for subnet ranges exceeding unsigned int
- From: Stefano Brivio <sbrivio@xxxxxxxxxx>
- [PATCH nft 0/2] Fix display of < 64 bits IPv6 masks in concatenated elements
- From: Stefano Brivio <sbrivio@xxxxxxxxxx>
- [PATCH nf,v2] netfilter: remove BUG_ON() after skb_header_pointer()
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nf] netfilter: nftables: Fix a memleak from userdata error path in new objects
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nf] netfilter: remove BUG_ON() after skb_header_pointer()
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nf] netfilter: nfnetlink_osf: Fix a missing skb_header_pointer() NULL check
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [nft PATCH 3/3] exthdr: Implement SCTP Chunk matching
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [PATCH] Avoid potentially erroneos RST drop.
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH] ipv6: netfilter.c: fix missing line after declaration
- From: Pallavi Prabhu <rpallaviprabhu@xxxxxxxxx>
- Re: [nft PATCH 1/3] scanner: sctp: Move to own scope
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [PATCH net] netfilter: nfnetlink: add a missing rcu_read_unlock()
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH] netfilter: nf_conntrack: Add conntrack helper for ESP/IPsec
- From: Jan Engelhardt <jengelh@xxxxxxx>
- Re: [PATCH v3] netfilter: nf_conntrack: Add conntrack helper for ESP/IPsec
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH net] netfilter: nfnetlink: add a missing rcu_read_unlock()
- From: Eric Dumazet <eric.dumazet@xxxxxxxxx>
- Re: [PATCH v3] netfilter: nf_conntrack: Add conntrack helper for ESP/IPsec
- From: Florian Westphal <fw@xxxxxxxxx>
- [iptables PATCH 2/2] extensions: sctp: Translate --chunk-types option
- From: Phil Sutter <phil@xxxxxx>
- [iptables PATCH 1/2] extensions: sctp: Fix nftables translation
- From: Phil Sutter <phil@xxxxxx>
- [nft PATCH 3/3] exthdr: Implement SCTP Chunk matching
- From: Phil Sutter <phil@xxxxxx>
- [nft PATCH 2/3] json: Simplify non-tcpopt exthdr printing a bit
- From: Phil Sutter <phil@xxxxxx>
- [nft PATCH 1/3] scanner: sctp: Move to own scope
- From: Phil Sutter <phil@xxxxxx>
- [net-next PATCH] net: netfilter: nft_exthdr: Support SCTP chunks
- From: Phil Sutter <phil@xxxxxx>
- [PATCH nf] netfilter: conntrack: unregister ipv4 sockopts on error unwind
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [syzbot] memory leak in nf_hook_entries_grow (2)
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [syzbot] memory leak in nf_hook_entries_grow (2)
- From: syzbot <syzbot+050de9f900eb45b94ef9@xxxxxxxxxxxxxxxxxxxxxxxxx>
- Re: [PATCH] Avoid potentially erroneos RST check
- From: Ali Abdallah <ali.abdallah@xxxxxxxx>
- Re: [PATCH RFC libnetfilter_queue 0/1] Eliminate packet copy when constructing struct pkt_buff
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
- [PATCH RFC libnetfilter_queue 1/1] Eliminate packet copy when constructing struct pkt_buff
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
- [PATCH RFC libnetfilter_queue 0/1] Eliminate packet copy when constructing struct pkt_buff
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
- Re: [PATCH] Avoid potentially erroneos RST check
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [net-next PATCH v2] netfilter: xt_SECMARK: add new revision to fix structure layout
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH nf] netfilter: arptables: use pernet ops struct during unregister
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: conntrackd inverted NAT address, endianness issue?
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH v4 0/5] conntrack: save output format
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH conntrack-tools] conntrack: release options after parsing
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [syzbot] upstream test error: WARNING in __nf_unregister_net_hook
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [syzbot] net test error: WARNING in __nf_unregister_net_hook
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [syzbot] bpf test error: WARNING in __nf_unregister_net_hook
- From: Florian Westphal <fw@xxxxxxxxx>
- [syzbot] bpf test error: WARNING in __nf_unregister_net_hook
- From: syzbot <syzbot+854457fa0d41f836cd0e@xxxxxxxxxxxxxxxxxxxxxxxxx>
- [syzbot] net test error: WARNING in __nf_unregister_net_hook
- From: syzbot <syzbot+33d023f240aa788eb7fe@xxxxxxxxxxxxxxxxxxxxxxxxx>
- [syzbot] memory leak in nf_hook_entries_grow (2)
- From: syzbot <syzbot+050de9f900eb45b94ef9@xxxxxxxxxxxxxxxxxxxxxxxxx>
- [syzbot] upstream test error: WARNING in __nf_unregister_net_hook
- From: syzbot <syzbot+7ad5cd1615f2d89c6e7e@xxxxxxxxxxxxxxxxxxxxxxxxx>
- [PATCH nf] netfilter: arptables: use pernet ops struct during unregister
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [syzbot] bpf-next test error: WARNING in __nf_unregister_net_hook
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [syzbot] linux-next test error: WARNING in __nf_unregister_net_hook
- From: Florian Westphal <fw@xxxxxxxxx>
- [syzbot] bpf-next test error: WARNING in __nf_unregister_net_hook
- From: syzbot <syzbot+0d9ff6eeee8f4b6e2aed@xxxxxxxxxxxxxxxxxxxxxxxxx>
- [PATCH v3] netfilter: nf_conntrack: Add conntrack helper for ESP/IPsec
- From: Cole Dishington <Cole.Dishington@xxxxxxxxxxxxxxxxxxx>
- Re: [PATCH libnetfilter_queue v2] build: doc: `make distcheck` passes with doxygen enabled
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH nft] parser: allow to load stateful ct connlimit elements in sets
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [syzbot] linux-next test error: WARNING in __nf_unregister_net_hook
- From: syzbot <syzbot+dcccba8a1e41a38cb9df@xxxxxxxxxxxxxxxxxxxxxxxxx>
- [iptables PATCH v2] extensions: SECMARK: Implement revision 1
- From: Phil Sutter <phil@xxxxxx>
- [net-next PATCH v2] netfilter: xt_SECMARK: add new revision to fix structure layout
- From: Phil Sutter <phil@xxxxxx>
- Re: [net-next PATCH] netfilter: xt_SECMARK: add new revision to fix structure layout
- From: Jan Engelhardt <jengelh@xxxxxxx>
- Re: [net-next PATCH] netfilter: xt_SECMARK: add new revision to fix structure layout
- From: Phil Sutter <phil@xxxxxx>
- [PATCH] Avoid potentially erroneos RST drop.
- From: Ali Abdallah <ali.abdallah@xxxxxxxx>
- Re: [PATCH] Avoid potentially erroneos RST check
- From: Ali Abdallah <ali.abdallah@xxxxxxxx>
- [PATCH] netfilter: Remove redundant assignment to ret
- From: Yang Li <yang.lee@xxxxxxxxxxxxxxxxx>
- [PATCH nft 18/18] evaluate: remove object from cache on delete object command
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nft 16/18] evaluate: remove set from cache on delete set command
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nft 17/18] evaluate: remove flowtable from cache on delete flowtable command
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nft 15/18] evaluate: remove chain from cache on delete chain command
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nft 14/18] cache: add hashtable cache for table
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nft 13/18] evaluate: add object to the cache
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nft 12/18] cache: missing table cache for several policy objects
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nft 11/18] evaluate: add flowtable to the cache
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nft 10/18] evaluate: add set to the cache
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nft 08/18] cache: add hashtable cache for flowtable
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nft 07/18] cache: add hashtable cache for object
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nft 09/18] cache: add set_cache_del() and use it
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nft 06/18] src: consolidate object cache infrastructure
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nft 05/18] src: consolidate nft_cache infrastructure
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nft 04/18] src: pass chain name to chain_cache_find()
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nft 03/18] rule: skip fuzzy lookup for unexisting 64-bit handle
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nft 02/18] src: unbreak deletion by table handle
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nft 01/18] tests: shell: remove missing modules
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nft 00/18] cache updates,v2
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next] netfilter: x_tables: improve limit_mt scalability
- From: Jason Baron <jbaron@xxxxxxxxxx>
- Re: [net-next PATCH] netfilter: xt_SECMARK: add new revision to fix structure layout
- From: Jan Engelhardt <jengelh@xxxxxxx>
- [iptables PATCH] extensions: SECMARK: Implement revision 1
- From: Phil Sutter <phil@xxxxxx>
- [net-next PATCH] netfilter: xt_SECMARK: add new revision to fix structure layout
- From: Phil Sutter <phil@xxxxxx>
- [iptables PATCH] extensions: sctp: Explain match types in man page
- From: Phil Sutter <phil@xxxxxx>
- Re: [PATCH libnetfilter_queue v2] build: doc: `make distcheck` passes with doxygen enabled
- From: Jan Engelhardt <jengelh@xxxxxxx>
- Re: [PATCH libnetfilter_queue v2] build: doc: `make distcheck` passes with doxygen enabled
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
- [iptables PATCH 0/5] Merge some common code
- From: Phil Sutter <phil@xxxxxx>
- [iptables PATCH 2/5] xshared: Eliminate iptables_command_state->invert
- From: Phil Sutter <phil@xxxxxx>
- [iptables PATCH 3/5] xshared: Merge invflags handling code
- From: Phil Sutter <phil@xxxxxx>
- [iptables PATCH 5/5] Use proto_to_name() from xshared in more places
- From: Phil Sutter <phil@xxxxxx>
- [iptables PATCH 1/5] xtables: Make invflags 16bit wide
- From: Phil Sutter <phil@xxxxxx>
- [iptables PATCH 4/5] ebtables-translate: Use shared ebt_get_current_chain() function
- From: Phil Sutter <phil@xxxxxx>
- Re: [PATCH] Avoid potentially erroneos RST check
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH] Avoid potentially erroneos RST check
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH] Avoid potentially erroneos RST check
- From: Ali Abdallah <ali.abdallah@xxxxxxxx>
- [PATCH] Don't drop out of segments RST if tcp_be_liberal is set
- From: Ali Abdallah <ali.abdallah@xxxxxxxx>
- Re: [PATCH net-next 1/7] netfilter: nftables: rename set element data activation/deactivation functions
- From: patchwork-bot+netdevbpf@xxxxxxxxxx
- [PATCH net-next 7/7] netfilter: nft_socket: fix build with CONFIG_SOCK_CGROUP_DATA=n
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 6/7] netfilter: nft_socket: fix an unused variable warning
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 5/7] netfilter: nftables: add catch-all set element support
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 4/7] netfilter: nftables: add helper function to validate set element data
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 3/7] netfilter: nftables: add helper function to flush set elements
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 2/7] netfilter: nftables: add loop check helper function
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 1/7] netfilter: nftables: rename set element data activation/deactivation functions
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 0/7] Netfilter updates for net-next
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH 2/2] netfilter: nft_socket: fix build with CONFIG_SOCK_CGROUP_DATA=n
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH 1/2] netfilter: nft_socket: fix an unused variable warning
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH 2/2] netfilter: nft_socket: fix build with CONFIG_SOCK_CGROUP_DATA=n
- From: Arnd Bergmann <arnd@xxxxxxxxxx>
- [PATCH 1/2] netfilter: nft_socket: fix an unused variable warning
- From: Arnd Bergmann <arnd@xxxxxxxxxx>
- [PATCH nf-next 2/5,v2] netfilter: nftables: add loop check helper function
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nf-next 1/5, v2] netfilter: nftables: rename set element data activation/deactivation functions
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nf-next 3/5,v2] netfilter: nftables: add helper function to flush set elements
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nf-next 4/5] netfilter: nftables: add helper function to validate set element data
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nf-next 5/5,v4] netfilter: nftables: add catch-all set element support
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [iptables PATCH 1/2] Eliminate inet_aton() and inet_ntoa()
- From: Phil Sutter <phil@xxxxxx>
- [iptables PATCH 0/2] Drop use of some obsolete functions
- From: Phil Sutter <phil@xxxxxx>
- [iptables PATCH 2/2] nft-arp: Make use of ipv4_addr_to_string()
- From: Phil Sutter <phil@xxxxxx>
- Re: [PATCH net-next 01/22] netfilter: nat: move nf_xfrm_me_harder to where it is used
- From: patchwork-bot+netdevbpf@xxxxxxxxxx
- [PATCH net-next 20/22] netfilter: nfnetlink: pass struct nfnl_info to batch callbacks
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 19/22] netfilter: nfnetlink: pass struct nfnl_info to rcu callbacks
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 18/22] netfilter: nfnetlink: add struct nfnl_info and pass it to callbacks
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 17/22] netfilter: nftables: add nft_pernet() helper function
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 14/22] netfilter: ip6_tables: pass table pointer via nf_hook_ops
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 16/22] netfilter: nf_log_syslog: Unset bridge logger in pernet exit
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 15/22] netfilter: remove all xt_table anchors from struct net
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 13/22] netfilter: arp_tables: pass table pointer via nf_hook_ops
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 12/22] netfilter: ip_tables: pass table pointer via nf_hook_ops
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 22/22] netfilter: allow to turn off xtables compat layer
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 21/22] netfilter: nfnetlink: consolidate callback types
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 11/22] netfilter: xt_nat: pass table to hookfn
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 10/22] netfilter: x_tables: remove paranoia tests
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 09/22] netfilter: arptables: unregister the tables by name
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 08/22] netfilter: ip6tables: unregister the tables by name
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 07/22] netfilter: iptables: unregister the tables by name
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 06/22] netfilter: x_tables: add xt_find_table
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 05/22] netfilter: x_tables: remove ipt_unregister_table
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 04/22] netfilter: ebtables: remove the 3 ebtables pointers from struct net
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 03/22] netfilter: disable defrag once its no longer needed
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 02/22] netfilter: nft_socket: add support for cgroupsv2
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 01/22] netfilter: nat: move nf_xfrm_me_harder to where it is used
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 00/22] Netfilter updates for net-next
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH nf-next] netfilter: allow to turn off xtables compat layer
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [nf-next:for-net-next 25/25] net/netfilter/nf_tables_api.c:4448:22: warning: variable 'ext' set but not used
- From: kernel test robot <lkp@xxxxxxxxx>
- Re: [PATCH] netfilter: nf_conntrack: Add conntrack helper for ESP/IPsec
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [PATCH] net: netfilter: Add RFC-7597 Section 5.1 PSID support
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [PATCH nf-next] netfilter: allow to turn off xtables compat layer
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [PATCH] netfilter: nf_conntrack: Add conntrack helper for ESP/IPsec
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [PATCH nf-next] netfilter: allow to turn off xtables compat layer
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH nf-next] netfilter: allow to turn off xtables compat layer
- From: Jan Engelhardt <jengelh@xxxxxxx>
- [PATCH nf-next] netfilter: allow to turn off xtables compat layer
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: RSTs being marked as invalid because of wrong td_maxack value
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: RSTs being marked as invalid because of wrong td_maxack value
- From: Ali Abdallah <ali.abdallah@xxxxxxxx>
- Re: [PATCH] netfilter: nf_log_syslog: Unset bridge logger in pernet exit
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH nf-next v2 00/12] netfilter: x_tables: remove ipt_unregister_table
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH v2 nf-next] netfilter: disable defrag once its no longer needed
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH nf-next] netfilter: nat: move nf_xfrm_me_harder to where it is used
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nf-next 4/4,v3] netfilter: nftables: add catch-all set element support
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nf-next 3/4] netfilter: nftables: add helper function to flush set elements
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nf-next 2/4] netfilter: nftables: add loop check helper function
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nf-next 1/4] netfilter: nftables: rename set element data activation/deactivation functions
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nf-next,v2] netfilter: nftables: add catch-all set element support
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nf-next] netfilter: nftables: add catch-all set element support
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: RSTs being marked as invalid because of wrong td_maxack value
- From: Florian Westphal <fw@xxxxxxxxx>
- RSTs being marked as invalid because of wrong td_maxack value
- From: Ali Abdallah <ali.abdallah@xxxxxxxx>
- [PATCH nf-next 5/5] netfilter: nfnetlink: consolidate callback types
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nf-next 4/5] netfilter: nfnetlink: pass struct nfnl_info to batch callbacks
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nf-next 2/5] netfilter: nfnetlink: add struct nfnl_info and pass it to callbacks
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nf-next 1/5] netfilter: nftables: add nft_pernet() helper function
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nf-next 3/5] netfilter: nfnetlink: pass struct nfnl_info to rcu callbacks
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nf-next 0/5] nfnetlink housekeeping
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH libnetfilter_queue v2] build: doc: `make distcheck` passes with doxygen enabled
- From: Duncan Roe <duncan.roe2@xxxxxxxxx>
- [PATCH] net: netfilter: Add RFC-7597 Section 5.1 PSID support
- From: Cole Dishington <Cole.Dishington@xxxxxxxxxxxxxxxxxxx>
- Re: [PATCH libnetfilter_queue 1/1] build: doc: `make distcheck` passes with doxygen enabled
- From: Jan Engelhardt <jengelh@xxxxxxx>
- Re: [PATCH] netfilter: nf_log_syslog: Unset bridge logger in pernet exit
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [PATCH libnetfilter_queue 1/1] build: doc: `make distcheck` passes with doxygen enabled
- From: Duncan Roe <duncan.roe2@xxxxxxxxx>
- [PATCH] netfilter: nf_log_syslog: Unset bridge logger in pernet exit
- From: Phil Sutter <phil@xxxxxx>
- [PATCH nf-next v2 11/12] netfilter: ip6_tables: pass table pointer via nf_hook_ops
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nf-next v2 12/12] netfilter: remove all xt_table anchors from struct net
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nf-next v2 09/12] netfilter: ip_tables: pass table pointer via nf_hook_ops
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nf-next v2 10/12] netfilter: arp_tables: pass table pointer via nf_hook_ops
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nf-next v2 07/12] netfilter: x_tables: remove paranoia tests
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nf-next v2 08/12] netfilter: xt_nat: pass table to hookfn
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nf-next v2 06/12] netfilter: arptables: unregister the tables by name
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nf-next v2 05/12] netfilter: ip6tables: unregister the tables by name
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nf-next v2 04/12] netfilter: iptables: unregister the tables by name
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nf-next v2 03/12] netfilter: add xt_find_table
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nf-next v2 02/12] netfilter: x_tables: remove ipt_unregister_table
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nf-next v2 01/12] netfilter: ebtables: remove the 3 ebtables pointers from struct net
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nf-next v2 00/12] netfilter: x_tables: remove ipt_unregister_table
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH v2 nf-next] netfilter: disable defrag once its no longer needed
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [PATCH libnetfilter_queue 1/1] build: doc: `make distcheck` passes with doxygen enabled
- From: Jan Engelhardt <jengelh@xxxxxxx>
- Re: [PATCH libnetfilter_queue 1/1] build: doc: `make distcheck` passes with doxygen enabled
- From: Duncan Roe <duncan.roe2@xxxxxxxxx>
- [PATCH nft] src: add cgroupsv2 support
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH libnftnl] expr: socket: add cgroups v2 support
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nf-next] netfilter: nft_socket: add support for cgroupsv2
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH] netfilter: nf_conntrack: Add conntrack helper for ESP/IPsec
- From: Cole Dishington <Cole.Dishington@xxxxxxxxxxxxxxxxxxx>
- Re: [PATCH nf-next] netfilter: disable defrag once its no longer needed
- From: kernel test robot <lkp@xxxxxxxxx>
- Re: [PATCH nf-next 02/12] netfilter: x_tables: remove ipt_unregister_table
- From: kernel test robot <lkp@xxxxxxxxx>
- Re: [PATCH nf-next 02/12] netfilter: x_tables: remove ipt_unregister_table
- From: kernel test robot <lkp@xxxxxxxxx>
- [PATCH nf-next] netfilter: disable defrag once its no longer needed
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nf-next 12/12] netfilter: remove all xt_table anchors from struct net
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nf-next 11/12] netfilter: ip6_tables: pass table pointer via nf_hook_ops
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nf-next 10/12] netfilter: arp_tables: pass table pointer via nf_hook_ops
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nf-next 09/12] netfilter: ip_tables: pass table pointer via nf_hook_ops
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nf-next 08/12] netfilter: xt_nat: pass table to hookfn
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nf-next 07/12] netfilter: x_tables: remove paranoia tests
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nf-next 06/12] netfilter: arptables: unregister the tables by name
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nf-next 05/12] netfilter: ip6tables: unregister the tables by name
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [PATCH] netfilter: conntrack: Reset the max ACK flag on SYN in ignore state
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nf-next 04/12] netfilter: iptables: unregister the tables by name
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nf-next 03/12] netfilter: add xt_find_table
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nf-next 02/12] netfilter: x_tables: remove ipt_unregister_table
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nf-next 01/12] netfilter: ebtables: remove the 3 ebtables pointers from struct net
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nf-next 00/12] netfilter: remove xtables pointers from struct net
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH] netfilter: conntrack: Reset the max ACK flag on SYN in ignore state
- From: Ali Abdallah <ali.abdallah@xxxxxxxx>
- Re: [PATCH] conntrack_tcp: Reset the max ACK flag on SYN in ignore state
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: Error when using clone option in iptables
- From: Jan Engelhardt <jengelh@xxxxxxx>
- Re: [PATCH libnetfilter_queue 1/1] build: doc: `make distcheck` passes with doxygen enabled
- From: Jan Engelhardt <jengelh@xxxxxxx>
- Error when using clone option in iptables
- From: Mohan Das <rajarammohandas@xxxxxxxxx>
- [PATCH libnetfilter_queue 1/1] build: doc: `make distcheck` passes with doxygen enabled
- From: Duncan Roe <duncan.roe2@xxxxxxxxx>
- Now have make distcheck passing with doxygen enabled
- From: Duncan Roe <duncan.roe2@xxxxxxxxx>
- Re: [PATCH net-next 01/14] netfilter: flowtable: add vlan match offload support
- From: patchwork-bot+netdevbpf@xxxxxxxxxx
- [PATCH nf-next] netfilter: nat: move nf_xfrm_me_harder to where it is used
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [PATCH v2 0/2] Two fixes related to '--concurrent'
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nft] parser_bison: missing relational operation on flag list
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 14/14] netfilter: nftables: counter hardware offload support
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 13/14] selftests: fib_tests: Add test cases for interaction with mangling
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 11/14] netfilter: nftables_offload: special ethertype handling for VLAN
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 12/14] netfilter: Dissect flow after packet mangling
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 10/14] netfilter: nftables_offload: VLAN id needs host byteorder in flow dissector
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 09/14] netfilter: nft_payload: fix C-VLAN offload support
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 08/14] netfilter: flowtable: Add FLOW_OFFLOAD_XMIT_UNSPEC xmit type
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 06/14] netfilter: conntrack: move ct counter to net_generic data
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 07/14] netfilter: conntrack: convert sysctls to u8
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 05/14] netfilter: conntrack: move expect counter to net_generic data
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 04/14] netfilter: conntrack: move autoassign_helper sysctl to net_generic data
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 03/14] netfilter: conntrack: move autoassign warning member to net_generic data
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 02/14] netfilter: flowtable: add vlan pop action offload support
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 01/14] netfilter: flowtable: add vlan match offload support
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 00/14] Netfilter updates for net-next
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH 3/3,v4] netfilter: nftables_offload: special ethertype handling for VLAN
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH nf-next v2 0/2] netfilter: Dissect flow after packet mangling
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH v2 2/2] ebtables: Spewing an error if --concurrent isn't first argument
- From: Firo Yang <firo.yang@xxxxxxxx>
- [PATCH v2 0/2] Two fixes related to '--concurrent'
- From: Firo Yang <firo.yang@xxxxxxxx>
- [PATCH v2 1/2] libebtc: Fix an issue that '--concurrent' doesn't work with NFS
- From: Firo Yang <firo.yang@xxxxxxxx>
- Re: [PATCH] netfilter: nftables: fix a warning message in nf_tables_commit_audit_collect()
- From: Richard Guy Briggs <rgb@xxxxxxxxxx>
- [PATCH nf-next] netfilter: nftables: counter hardware offload support
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH nf-next] netfilter: Dissect flow after packet mangling
- From: Michal Soltys <msoltyspl@xxxxxxxxx>
- [PATCH nft 10/10] evaluate: remove table_lookup_global()
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nft 09/10] cache: add hashtable cache for table
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nft 08/10] cache: move struct nft_cache declaration to cache.h
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nft 06/10] cache: missing table cache for several policy objects
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nft 07/10] evaluate: add object to the cache
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nft 05/10] evaluate: add flowtable to the cache
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nft 04/10] evaluate: add set to the cache
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nft 03/10] cache: add set_cache_del() and use it
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nft 02/10] cache: add hashtable cache for flowtable
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nft 01/10] cache: add hashtable cache for object
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nft 0/10] cache updates
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH] net/mlx5e: fix ingress_ifindex check in mlx5e_flower_parse_meta
- From: Saeed Mahameed <saeed@xxxxxxxxxx>
- Re: [PATCH nf-next v2 2/2] selftests: fib_tests: Add test cases for interaction with mangling
- From: David Ahern <dsahern@xxxxxxxxx>
- Re: [PATCH] netfilter: nf_conntrack: Add conntrack helper for ESP/IPsec
- From: Florian Westphal <fw@xxxxxxxxx>
- [nft PATCH] mnl: Increase BATCH_PAGE_SIZE to support huge rulesets
- From: Phil Sutter <phil@xxxxxx>
- [PATCH nf-next v2 2/2] selftests: fib_tests: Add test cases for interaction with mangling
- From: Ido Schimmel <idosch@xxxxxxxxxx>
- [PATCH nf-next v2 1/2] netfilter: Dissect flow after packet mangling
- From: Ido Schimmel <idosch@xxxxxxxxxx>
- [PATCH nf-next v2 0/2] netfilter: Dissect flow after packet mangling
- From: Ido Schimmel <idosch@xxxxxxxxxx>
- [PATCH] netfilter: nf_conntrack: Add conntrack helper for ESP/IPsec
- From: Cole Dishington <Cole.Dishington@xxxxxxxxxxxxxxxxxxx>
- Re: [syzbot] WARNING: suspicious RCU usage in find_inlist_lock
- From: Dmitry Vyukov <dvyukov@xxxxxxxxxx>
- Re: [syzbot] KASAN: vmalloc-out-of-bounds Read in bpf_trace_run2
- From: Dmitry Vyukov <dvyukov@xxxxxxxxxx>
- Re: [PATCH] conntrack_tcp: Reset the max ACK flag on SYN in ignore state
- From: Ali Abdallah <ali.abdallah@xxxxxxxx>
- Re: [PATCH] conntrack_tcp: Reset the max ACK flag on SYN in ignore state
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [PATCH] conntrack_tcp: Reset the max ACK flag on SYN in ignore state
- From: Ali Abdallah <ali.abdallah@xxxxxxxx>
- [PATCH nf-next,v3 2/3] netfilter: nftables_offload: VLAN id needs host byteorder in flow dissector
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nf-next,v3 3/3] netfilter: nftables_offload: special ethertype handling for VLAN
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nf-next,v3 1/3] netfilter: nft_payload: fix C-VLAN offload support
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH nf-next v2 0/5] netfilter: conntrack: shrink size of netns_ct
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH nf-next v2 2/2] netfilter: flowtable: add vlan pop action offload support
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH nf-next v2 1/2] netfilter: flowtable: add vlan match offload support
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH nf-next,v2 2/3] netfilter: nftables_offload: VLAN id needs host byteorder in flow dissector
- From: kernel test robot <lkp@xxxxxxxxx>
- [PATCH nft] parser: allow to load stateful ct connlimit elements in sets
- From: nevola <nevola@xxxxxxxxx>
- Re: [PATCH net 1/7] netfilter: flowtable: fix NAT IPv6 offload mangling
- From: patchwork-bot+netdevbpf@xxxxxxxxxx
- [PATCH net 7/7] netfilter: nftables: clone set element expression template
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net 6/7] netfilter: x_tables: fix compat match/target pad out-of-bound write
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net 5/7] netfilter: arp_tables: add pre_exit hook for table unregister
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net 4/7] netfilter: bridge: add pre_exit hooks for ebtable unregistration
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net 3/7] netfilter: nft_limit: avoid possible divide error in nft_limit_init
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net 2/7] netfilter: conntrack: do not print icmpv6 as unknown via /proc
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net 1/7] netfilter: flowtable: fix NAT IPv6 offload mangling
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net 0/7] Netfilter fixes for net
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH nf] netfilter: x_tables: fix compat match/target pad out-of-bound write
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nf-next v2 5/5] netfilter: conntrack: convert sysctls to u8
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nf-next v2 4/5] netfilter: conntrack: move ct counter to net_generic data
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nf-next v2 3/5] netfilter: conntrack: move expect counter to net_generic data
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nf-next v2 2/5] netfilter: conntrack: move autoassign_helper sysctl to net_generic data
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nf-next v2 1/5] netfilter: conntrack: move autoassign warning member to net_generic data
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nf-next v2 0/5] netfilter: conntrack: shrink size of netns_ct
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [PATCH nf-next] netfilter: Dissect flow after packet mangling
- From: Ido Schimmel <idosch@xxxxxxxxxx>
- [PATCH nf-next,v2 2/3] netfilter: nftables_offload: VLAN id needs host byteorder in flow dissector
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nf-next,v2 3/3] netfilter: nftables_offload: special ethertype handling for VLAN
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nf-next,v2 1/3] netfilter: nft_payload: fix C-VLAN offload support
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH nf-next 3/3] netfilter: nftables_offload: special ethertype handling for VLAN
- From: kernel test robot <lkp@xxxxxxxxx>
- Re: [PATCH nf-next 4/5] netfilter: conntrack: move ct counter to net_generic data
- From: kernel test robot <lkp@xxxxxxxxx>
- Re: [PATCH nf-next] netfilter: Dissect flow after packet mangling
- From: Michal Soltys <msoltyspl@xxxxxxxxx>
- Re: linux-next: build failure after merge of the net-next tree
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nf-next 3/3] netfilter: nftables_offload: special ethertype handling for VLAN
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nf-next 2/3] netfilter: nftables_offload: VLAN id needs host byteorder in flow dissector
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nf-next 1/3] netfilter: nft_payload: fix C-VLAN offload support
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: linux-next: build failure after merge of the net-next tree
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [PATCH nf-next] netfilter: Dissect flow after packet mangling
- From: Ido Schimmel <idosch@xxxxxxxxxx>
- linux-next: build failure after merge of the net-next tree
- From: Stephen Rothwell <sfr@xxxxxxxxxxxxxxxx>
- Re: [PATCH nf-next] netfilter: Dissect flow after packet mangling
- From: David Ahern <dsahern@xxxxxxxxx>
- [PATCH nf-next] netfilter: Dissect flow after packet mangling
- From: Ido Schimmel <idosch@xxxxxxxxxx>
- [PATCH nf,v4] netfilter: nftables: clone set element expression template
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nf,v3] netfilter: nftables: clone set element expression template
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH] net/mlx5e: fix ingress_ifindex check in mlx5e_flower_parse_meta
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH nf 0/2] arp,ebtables: add pre_exit hooks for arp/ebtable hook unregister
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH net] netfilter: nft_limit: avoid possible divide error in nft_limit_init
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [syzbot] WARNING in __nf_unregister_net_hook (4)
- From: syzbot <syzbot+154bd5be532a63aa778b@xxxxxxxxxxxxxxxxxxxxxxxxx>
- [PATCH net] netfilter: nft_limit: avoid possible divide error in nft_limit_init
- From: Eric Dumazet <eric.dumazet@xxxxxxxxx>
- Re: [PATCH nf v2] netfilter: nft_payload: fix the h_vlan_encapsulated_proto flow_dissector vlaue
- From: wenxu <wenxu@xxxxxxxxx>
- [PATCH nf-next 5/5] netfilter: conntrack: convert sysctls to u8
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nf-next 4/5] netfilter: conntrack: move ct counter to net_generic data
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nf-next 3/5] netfilter: conntrack: move expect counter to net_generic data
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nf-next 2/5] netfilter: conntrack: move autoassign_helper sysctl to net_generic data
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nf-next 1/5] netfilter: conntrack: move autoassign warning member to net_generic data
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nf-next 0/5] netfilter: conntrack: shrink size of netns_ct
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [PATCH nf v2] netfilter: nft_payload: fix the h_vlan_encapsulated_proto flow_dissector vlaue
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH nf v2] netfilter: nft_payload: fix the h_vlan_encapsulated_proto flow_dissector vlaue
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH] net/mlx5e: fix ingress_ifindex check in mlx5e_flower_parse_meta
- [PATCH nf v2] netfilter: nft_payload: fix the h_vlan_encapsulated_proto flow_dissector vlaue
- Re: [PATCH nf] netfilter: nft_payload: fix vlan_tpid get from h_vlan_proto
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nf] netfilter: nftables: clone set element expression template
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH] conntrack_tcp: Reset the max ACK flag on SYN in ignore state
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH] conntrack_tcp: Reset the max ACK flag on SYN in ignore state
- From: Ali Abdallah <ali.abdallah@xxxxxxxx>
- [PATCH nf 2/2] netfilter: arp_tables: netfilter: bridge: add pre_exit hook for table unregister
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nf 1/2] netfilter: bridge: add pre_exit hooks for ebtable unregistration
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nf 0/2] arp,ebtables: add pre_exit hooks for arp/ebtable hook unregister
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nf] netfilter: x_tables: fix compat match/target pad out-of-bound write
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nft] evaluate: check if nat statement map specifies a transport header expr
- From: Florian Westphal <fw@xxxxxxxxx>
- LPC 2021 Networking and BPF Track CFP
- From: Daniel Borkmann <daniel@xxxxxxxxxxxxx>
- [PATCH net-next 28/28] net: remove obsolete members from struct net
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 27/28] netfilter: conntrack: move ecache dwork to net_generic infra
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 26/28] netfilter: conntrack: move sysctl pointer to net_generic infra
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 25/28] netfilter: x_tables: move known table lists to net_generic infra
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 21/28] netfilter: nf_defrag_ipv6: use net_generic infra
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 24/28] netfilter: nf_tables: use net_generic infra for transaction data
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 19/28] netfilter: nfnetlink: use net_generic infra
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 23/28] netfilter: ebtables: use net_generic infra
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 11/28] netfilter: flowtable: dst_check() from garbage collector path
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 14/28] netfilter: add helper function to set up the nfnetlink header and use it
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 15/28] netfilter: ipvs: do not printk on netns creation
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 17/28] netfilter: nftables: remove documentation on static functions
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 18/28] netfilter: nfnetlink: add and use nfnetlink_broadcast
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 22/28] netfilter: nf_defrag_ipv4: use net_generic infra
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 20/28] netfilter: cttimeout: use net_generic infra
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 16/28] netfilter: nftables: fix a warning message in nf_tables_commit_audit_collect()
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 13/28] netfilter: nftables: add helper function to set the base sequence number
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 09/28] audit: log nftables configuration change events once per table
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 10/28] netfilter: ipset: Remove duplicate declaration
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 08/28] netfilter: nft_log: perform module load from nf_tables
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 12/28] netfilter: nftables: remove unnecessary spin_lock_init()
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 06/28] netfilter: nf_log_common: merge with nf_log_syslog
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 07/28] netfilter: nf_log: add module softdeps
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 05/28] netfilter: nf_log_bridge: merge with nf_log_syslog
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 04/28] netfilter: nf_log_netdev: merge with nf_log_syslog
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 03/28] netfilter: nf_log_ipv6: merge with nf_log_syslog
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 02/28] netfilter: nf_log_arp: merge with nf_log_syslog
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 01/28] netfilter: nf_log_ipv4: rename to nf_log_syslog
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 00/28] Netfilter updates for net-next
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH 1/2] ebtables: processing '--concurrent' beofore other arguments
- From: Firo Yang <firo.yang@xxxxxxxx>
- Re: Unused macro
- From: "Alejandro Colomar (man-pages)" <alx.manpages@xxxxxxxxx>
- Re: [PATCH 1/2] ebtables: processing '--concurrent' beofore other arguments
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH 1/2] ebtables: processing '--concurrent' beofore other arguments
- From: Simon Lees <sflees@xxxxxxx>
- [PATCH v4 5/5] tests: conntrack -L/-D ip family filtering
- From: Mikhail Sennikovsky <mikhail.sennikovskii@xxxxxxxxx>
- [PATCH v4 4/5] tests: saving and loading ct entries, save format
- From: Mikhail Sennikovsky <mikhail.sennikovskii@xxxxxxxxx>
- [PATCH v4 3/5] conntrack.8: man update for --load-file support
- From: Mikhail Sennikovsky <mikhail.sennikovskii@xxxxxxxxx>
- [PATCH v4 2/5] conntrack: accept commands from file
- From: Mikhail Sennikovsky <mikhail.sennikovskii@xxxxxxxxx>
- [PATCH v4 1/5] conntrack: introduce ct_cmd_list
- From: Mikhail Sennikovsky <mikhail.sennikovskii@xxxxxxxxx>
- [PATCH v4 0/5] conntrack: save output format
- From: Mikhail Sennikovsky <mikhail.sennikovskii@xxxxxxxxx>
- Re: [PATCH 1/2] ebtables: processing '--concurrent' beofore other arguments
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH 1/2] ebtables: processing '--concurrent' beofore other arguments
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [iptables PATCH v2] nft: Increase BATCH_PAGE_SIZE to support huge rulesets
- From: Phil Sutter <phil@xxxxxx>
- Re: [PATCH 1/2] ebtables: processing '--concurrent' beofore other arguments
- From: Simon Lees <sflees@xxxxxxx>
- Re: [PATCH 1/2] ebtables: processing '--concurrent' beofore other arguments
- From: Firo Yang <firo.yang@xxxxxxxx>
- Re: [PATCH nf-next v2 00/11] netfilter: reduce struct net size
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: Unused macro
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: Unused macro
- From: "Alejandro Colomar (man-pages)" <alx.manpages@xxxxxxxxx>
- Re: Unused macro
- From: Florian Westphal <fw@xxxxxxxxx>
- Unused macro
- From: "Alejandro Colomar (man-pages)" <alx.manpages@xxxxxxxxx>
- Re: [PATCH 1/2] ebtables: processing '--concurrent' beofore other arguments
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH] netfilter: nftables: fix a warning message in nf_tables_commit_audit_collect()
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH nf-next] netfilter: ipvs: do not printk on netns creation
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH 1/2] ebtables: processing '--concurrent' beofore other arguments
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH] files: move example files away from /etc
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH nf] netfilter: nft_payload: fix vlan_tpid get from h_vlan_proto
- From: wenxu <wenxu@xxxxxxxxx>
- [PATCH nf-next v2 1/2] netfilter: flowtable: add vlan match offload support
- [PATCH nf-next v2 2/2] netfilter: flowtable: add vlan pop action offload support
- Re: [PATCH nf] netfilter: nft_payload: fix vlan_tpid get from h_vlan_proto
- From: wenxu <wenxu@xxxxxxxxx>
- Re: [iptables PATCH] nft: Increase BATCH_PAGE_SIZE to support huge rulesets
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [iptables PATCH] nft: Increase BATCH_PAGE_SIZE to support huge rulesets
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [iptables PATCH] nft: Increase BATCH_PAGE_SIZE to support huge rulesets
- From: Phil Sutter <phil@xxxxxx>
- [syzbot] WARNING: suspicious RCU usage in find_inlist_lock
- From: syzbot <syzbot+b221933e5f9ad5b0e2fd@xxxxxxxxxxxxxxxxxxxxxxxxx>
- Re: [PATCH netfilter] netfilter: xt_IDLETIMER: fix idletimer_tg_helper non-kosher casts
- From: Maciej Żenczykowski <zenczykowski@xxxxxxxxx>
- Re: [PATCH netfilter] netfilter: xt_IDLETIMER: fix idletimer_tg_helper non-kosher casts
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH iptables] fix build for missing ETH_ALEN definition
- From: Maciej Żenczykowski <zenczykowski@xxxxxxxxx>
- [PATCH netfilter] netfilter: xt_IDLETIMER: fix idletimer_tg_helper non-kosher casts
- From: Maciej Żenczykowski <zenczykowski@xxxxxxxxx>
- Re: [PATCH nf] netfilter: nft_payload: fix vlan_tpid get from h_vlan_proto
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nft 2/2] cache: bail out if chain list cannot be fetched from kernel
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nft 1/2] cache: add hashtable cache for sets
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH nf] netfilter: nft_payload: fix vlan_tpid get from h_vlan_proto
- From: kernel test robot <lkp@xxxxxxxxx>
- Re: [iptables PATCH v5 2/2] extensions: libxt_conntrack: print xlate status as set
- From: Alexander Mikhalitsyn <alexander.mikhalitsyn@xxxxxxxxxxxxx>
- Re: [PATCH] netfilter: nftables: fix a warning message in nf_tables_commit_audit_collect()
- From: Paul Moore <paul@xxxxxxxxxxxxxx>
- Re: [iptables PATCH v5 2/2] extensions: libxt_conntrack: print xlate status as set
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [iptables PATCH v5 1/2] extensions: libxt_conntrack: print xlate state as set
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH] netfilter: nftables: fix a warning message in nf_tables_commit_audit_collect()
- From: Dan Carpenter <dan.carpenter@xxxxxxxxxx>
- [PATCH nft 5/4] proto: replace vlan ether type with 8021q
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [PATCH nf-next] netfilter: ipvs: do not printk on netns creation
- From: Simon Horman <horms@xxxxxxxxxxxx>
- Re: [iptables PATCH v5 PATCH 2/2] extensions: libxt_conntrack: print xlate status as set
- From: Alexander Mikhalitsyn <alexander.mikhalitsyn@xxxxxxxxxxxxx>
- [PATCH nf] netfilter: nft_payload: fix vlan_tpid get from h_vlan_proto
- Re: [iptables PATCH] nft: Increase BATCH_PAGE_SIZE to support huge rulesets
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [iptables PATCH] nft: Increase BATCH_PAGE_SIZE to support huge rulesets
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [PATCH nf-next] netfilter: ipvs: do not printk on netns creation
- From: Julian Anastasov <ja@xxxxxx>
- Re: [PATCH nf-next 1/2] netfilter: flowtable: add vlan match offload support
- From: wenxu <wenxu@xxxxxxxxx>
- [PATCH nft] cache: check for NULL chain in cache_init()
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nft 4/4] cache: statify chain_cache_dump()
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nft 3/4] evaluate: use chain hashtable for lookups
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nft 2/4,v2] src: split chain list in table
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nft 1/4] cache: rename chain_htable to cache_chain_ht
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nft] evaluate: use chain hashtable for lookups
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH nf-next 1/2] netfilter: flowtable: add vlan match offload support
- From: kernel test robot <lkp@xxxxxxxxx>
- [iptables PATCH v5 PATCH 2/2] extensions: libxt_conntrack: print xlate status as set
- From: Alexander Mikhalitsyn <alexander.mikhalitsyn@xxxxxxxxxxxxx>
- [PATCH nf-next v2 07/11] netfilter: nf_tables: use net_generic infra for transaction data
- From: Florian Westphal <fw@xxxxxxxxx>
- [iptables PATCH v5 1/2] extensions: libxt_conntrack: print xlate state as set
- From: Alexander Mikhalitsyn <alexander.mikhalitsyn@xxxxxxxxxxxxx>
- [iptables PATCH v5 2/2] extensions: libxt_conntrack: print xlate status as set
- From: Alexander Mikhalitsyn <alexander.mikhalitsyn@xxxxxxxxxxxxx>
- [iptables PATCH v5 PATCH 1/2] extensions: libxt_conntrack: print xlate state as set
- From: Alexander Mikhalitsyn <alexander.mikhalitsyn@xxxxxxxxxxxxx>
- [iptables PATCH] nft: Increase BATCH_PAGE_SIZE to support huge rulesets
- From: Phil Sutter <phil@xxxxxx>
- [PATCH nft 3/4] payload: be careful on vlan dependency removal
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nft 4/4] tests: add 8021.AD vlan test cases
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nft 0/4] Add support for 8021.AD frame matching
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nf-next v2 11/11] net: remove obsolete members from struct net
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nf-next v2 05/11] netfilter: nf_defrag_ipv4: use net_generic infra
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: iptables-nft fails to restore huge rulesets
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nf-next v2 09/11] netfilter: conntrack: move sysctl pointer to net_generic infra
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nft] evaluate: use chain hashtable for lookups
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nft 1/4] src: vlan: allow matching vlan id insider 802.1ad frame
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [PATCH v5] audit: log nftables configuration change events once per table
- From: Phil Sutter <phil@xxxxxx>
- [PATCH nf-next v2 06/11] netfilter: ebtables: use net_generic infra
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nf-next v2 01/11] netfilter: nfnetlink: add and use nfnetlink_broadcast
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nf-next v2 02/11] netfilter: nfnetlink: use net_generic infra
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nft 2/4] proto: add 8021ad as mnemonic for IEEE 802.1AD (0x88a8) ether type
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nf-next v2 10/11] netfilter: conntrack: move ecache dwork to net_generic infra
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nf-next v2 03/11] netfilter: cttimeout: use net_generic infra
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nf-next v2 08/11] netfilter: x_tables: move known table lists to net_generic infra
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nf-next v2 00/11] netfilter: reduce struct net size
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nf-next v2 04/11] netfilter: nf_defrag_ipv6: use net_generic infra
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [PATCH v5] audit: log nftables configuration change events once per table
- From: Richard Guy Briggs <rgb@xxxxxxxxxx>
- Re: iptables-nft fails to restore huge rulesets
- From: Phil Sutter <phil@xxxxxx>
- Re: [PATCH nf-next 1/2] netfilter: flowtable: add vlan match offload support
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nf-next 1/2] netfilter: flowtable: add vlan match offload support
- [PATCH nf-next 2/2] netfilter: flowtable: add vlan pop action offload support
- [PATCH 2/2] libebtc: Fix an issue that '--concurrent' doesn't work with NFS
- From: Firo Yang <firo.yang@xxxxxxxx>
- [PATCH 0/2] Two fixes related to '--concurrent'.
- From: Firo Yang <firo.yang@xxxxxxxx>
- [PATCH 1/2] ebtables: processing '--concurrent' beofore other arguments
- From: Firo Yang <firo.yang@xxxxxxxx>
- Re: [syzbot] KASAN: vmalloc-out-of-bounds Read in bpf_trace_run2
- From: syzbot <syzbot+845923d2172947529b58@xxxxxxxxxxxxxxxxxxxxxxxxx>
- Re: [PATCH nf-next 07/11] netfilter: nf_tables: use net_generic infra for transaction data
- From: kernel test robot <lkp@xxxxxxxxx>
- [PATCH nf-next] netfilter: nftables: remove documentation on static functions
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- nf-next rebase...
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH v5] audit: log nftables configuration change events once per table
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH v5] audit: log nftables configuration change events once per table
- From: Richard Guy Briggs <rgb@xxxxxxxxxx>
- Re: [PATCH v5] audit: log nftables configuration change events once per table
- From: Richard Guy Briggs <rgb@xxxxxxxxxx>
- Re: iptables-nft fails to restore huge rulesets
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH v5] audit: log nftables configuration change events once per table
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH v5] audit: log nftables configuration change events once per table
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nf-next 11/11] net: remove obsolete members from struct net
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nf-next 10/11] netfilter: conntrack: move ecache dwork to net_generic infra
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nf-next 09/11] netfilter: conntrack: move sysctl pointer to net_generic infra
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nf-next 07/11] netfilter: nf_tables: use net_generic infra for transaction data
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nf-next 08/11] netfilter: x_tables: move known table lists to net_generic infra
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nf-next 04/11] netfilter: nf_defrag_ipv6: use net_generic infra
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nf-next 05/11] netfilter: nf_defrag_ipv4: use net_generic infra
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nf-next 02/11] netfilter: nfnetlink: use net_generic infra
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nf-next 06/11] netfilter: ebtables: use net_generic infra
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nf-next 01/11] netfilter: nfnetlink: add and use nfnetlink_broadcast
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nf-next 03/11] netfilter: cttimeout: use net_generic infra
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nf-next 00/11] netfilter: reduce struct net size
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [PATCH][next] netfilter: nf_log_bridge: Fix missing assignment of ret on a call to nf_log_register
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH][next] netfilter: nf_log_bridge: Fix missing assignment of ret on a call to nf_log_register
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: iptables-nft fails to restore huge rulesets
- From: Phil Sutter <phil@xxxxxx>
- [PATCH][next] netfilter: nf_log_bridge: Fix missing assignment of ret on a call to nf_log_register
- From: Colin King <colin.king@xxxxxxxxxxxxx>
- [PATCH nft 2/2] parser_bison: simplify flowtable offload flag parser
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nft 1/2] mnl: do not set flowtable flags twice
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: iptables-nft fails to restore huge rulesets
- From: Florian Westphal <fw@xxxxxxxxx>
- [iptables PATCH v5 PATCH 1/2] extensions: libxt_conntrack: print xlate state as set
- From: Alexander Mikhalitsyn <alexander.mikhalitsyn@xxxxxxxxxxxxx>
- Re: [iptables PATCH v3 2/2] extensions: libxt_conntrack: print xlate status as set
- From: Alexander Mikhalitsyn <alexander.mikhalitsyn@xxxxxxxxxxxxx>
- [iptables PATCH v4 PATCH 2/2] extensions: libxt_conntrack: print xlate status as set
- From: Alexander Mikhalitsyn <alexander.mikhalitsyn@xxxxxxxxxxxxx>
- [iptables PATCH v4 PATCH 1/2] extensions: libxt_conntrack: print xlate state as set
- From: Alexander Mikhalitsyn <alexander.mikhalitsyn@xxxxxxxxxxxxx>
- Re: [iptables PATCH v3 1/2] extensions: libxt_conntrack: print xlate state as set
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [iptables PATCH v3 2/2] extensions: libxt_conntrack: print xlate status as set
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [iptables PATCH v2 2/2] extensions: libxt_conntrack: print xlate status as set
- From: Alexander Mikhalitsyn <alexander.mikhalitsyn@xxxxxxxxxxxxx>
- [iptables PATCH v3 1/2] extensions: libxt_conntrack: print xlate state as set
- From: Alexander Mikhalitsyn <alexander.mikhalitsyn@xxxxxxxxxxxxx>
- [iptables PATCH v3 2/2] extensions: libxt_conntrack: print xlate status as set
- From: Alexander Mikhalitsyn <alexander.mikhalitsyn@xxxxxxxxxxxxx>
- iptables-nft fails to restore huge rulesets
- From: Phil Sutter <phil@xxxxxx>
- [PATCH nf-next] netfilter: flowtable: fix set software outdev on top of the net_device_path_stack
- [PATCH] tcp: Reset tcp connections in SYN-SENT state
- From: Manoj Basapathi <manojbm@xxxxxxxxxxxxxx>
- Re: [PATCH v5] audit: log nftables configuration change events once per table
- From: Paul Moore <paul@xxxxxxxxxxxxxx>
- [PATCH nf] netfilter: conntrack: do not print icmpv6 as unknown via /proc
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH] netfilter: ipset: Remove duplicate declaration
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH -next] netfilter: nftables: remove unnecessary spin_lock_init()
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH v5] audit: log nftables configuration change events once per table
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH 0/8] netfilter: merge nf_log_proto modules
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nf-next 2/2] netfilter: add helper function to set up the nfnetlink header and use it
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nf-next 1/2] netfilter: nftables: add helper function to set the base sequence number
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [iptables PATCH v2 2/2] extensions: libxt_conntrack: print xlate status as set
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [iptables PATCH v2 2/2] extensions: libxt_conntrack: print xlate status as set
- From: Alexander Mikhalitsyn <alexander.mikhalitsyn@xxxxxxxxxxxxx>
- Re: [iptables PATCH v2 2/2] extensions: libxt_conntrack: print xlate status as set
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH] files: move example files away from /etc
- From: Jan Engelhardt <jengelh@xxxxxxx>
- [PATCH] netfilter: flowtable: fix NAT IPv6 offload mangling
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [iptables PATCH v2 2/2] extensions: libxt_conntrack: print xlate status as set
- From: Alexander Mikhalitsyn <alexander.mikhalitsyn@xxxxxxxxxxxxx>
- [iptables PATCH v2 1/2] extensions: libxt_conntrack: print xlate state as set
- From: Alexander Mikhalitsyn <alexander.mikhalitsyn@xxxxxxxxxxxxx>
- [iptables PATCH 1/2] extensions: libxt_conntrack: print xlate state as set
- From: Alexander Mikhalitsyn <alexander.mikhalitsyn@xxxxxxxxxxxxx>
- [iptables PATCH 2/2] extensions: libxt_conntrack: print xlate status as set
- From: Alexander Mikhalitsyn <alexander.mikhalitsyn@xxxxxxxxxxxxx>
- [PATCH nf-next] netfilter: ipvs: do not printk on netns creation
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH AUTOSEL 5.4 12/19] netfilter: conntrack: Fix gre tunneling over ipv6
- From: Sasha Levin <sashal@xxxxxxxxxx>
- [PATCH AUTOSEL 5.10 17/33] netfilter: nftables: skip hook overlap logic if flowtable is stale
- From: Sasha Levin <sashal@xxxxxxxxxx>
- [PATCH AUTOSEL 5.10 16/33] netfilter: conntrack: Fix gre tunneling over ipv6
- From: Sasha Levin <sashal@xxxxxxxxxx>
- [PATCH AUTOSEL 5.11 20/38] netfilter: nftables: skip hook overlap logic if flowtable is stale
- From: Sasha Levin <sashal@xxxxxxxxxx>
- [PATCH AUTOSEL 5.11 19/38] netfilter: conntrack: Fix gre tunneling over ipv6
- From: Sasha Levin <sashal@xxxxxxxxxx>
- [PATCH -next] netfilter: nftables: remove unnecessary spin_lock_init()
- From: Yang Yingliang <yangyingliang@xxxxxxxxxx>
- Re: [PATCH v5] audit: log nftables configuration change events once per table
- From: Paul Moore <paul@xxxxxxxxxxxxxx>
- [PATCH nf-next] netfilter: flowtable: dst_check() from garbage collector path
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH] netfilter: ipset: Remove duplicate declaration
- From: Jozsef Kadlecsik <kadlec@xxxxxxxxxxxxx>
- Re: [PATCH 08/19] netfilter: ipvs: A spello fix
- From: Simon Horman <horms@xxxxxxxxxxxx>
- Re: [PATCH] netfilter: ipvs: A spello fix
- From: Simon Horman <horms@xxxxxxxxxxxx>
- [PATCH] netfilter: ipset: Remove duplicate declaration
- From: Wan Jiabing <wanjiabing@xxxxxxxx>
- Re: [PATCH net-next] docs: nf_flowtable: fix compilation and warnings
- From: patchwork-bot+netdevbpf@xxxxxxxxxx
- [PATCH v5] audit: log nftables configuration change events once per table
- From: Richard Guy Briggs <rgb@xxxxxxxxxx>
- [iptables PATCH] nft: cache: Sort chains on demand only
- From: Phil Sutter <phil@xxxxxx>
- Re: [PATCH 0/8] netfilter: merge nf_log_proto modules
- From: Phil Sutter <phil@xxxxxx>
- Re: [PATCH nf-next] netfilter: flowtable: separate replace, destroy and stats to different workqueues
- From: Marcelo Ricardo Leitner <marcelo.leitner@xxxxxxxxx>
- Re: [PATCH net-next] docs: nf_flowtable: fix compilation and warnings
- From: Stephen Rothwell <sfr@xxxxxxxxxxxxxxxx>
- [PATCH net-next] docs: nf_flowtable: fix compilation and warnings
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH 8/8] netfilter: nft_log: perform module load from nf_tables
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH 7/8] netfilter: nf_log: add module softdeps
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH 5/8] netfilter: nf_log_bridge: merge with nf_log_syslog
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH 6/8] netfilter: nf_log_common: merge with nf_log_syslog
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH 4/8] netfilter: nf_log_netdev: merge with nf_log_syslog
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH 1/8] netfilter: nf_log_ipv4: rename to nf_log_syslog
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH 2/8] netfilter: nf_log_arp: merge with nf_log_syslog
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH 3/8] netfilter: nf_log_ipv6: merge with nf_log_syslog
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH 0/8] netfilter: merge nf_log_proto modules
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [PATCH] nftables: add flags offload to flowtable
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nft] parser: fix scope closure of COUNTER token
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [PATCH nf-next] netfilter: flowtable: separate replace, destroy and stats to different workqueues
- From: Oz Shlomo <ozsh@xxxxxxxxxx>
- Re: [PATCH v4] audit: log nftables configuration change events once per table
- From: kernel test robot <lkp@xxxxxxxxx>
- [PATCH v4] audit: log nftables configuration change events once per table
- From: Richard Guy Briggs <rgb@xxxxxxxxxx>
- Re: [PATCH v3] audit: log nftables configuration change events once per table
- From: Richard Guy Briggs <rgb@xxxxxxxxxx>
- Re: [PATCH nf-next] netfilter: flowtable: separate replace, destroy and stats to different workqueues
- From: Marcelo Ricardo Leitner <marcelo.leitner@xxxxxxxxx>
- Re: [PATCH net-next,v2 00/24] netfilter: flowtable enhancements
- From: patchwork-bot+netdevbpf@xxxxxxxxxx
- Re: [PATCH net-next,v2 01/24] net: resolve forwarding path from virtual netdevice and HW destination address
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH v3] audit: log nftables configuration change events once per table
- From: Paul Moore <paul@xxxxxxxxxxxxxx>
- [PATCH] src: add datatype->describe()
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH net-next,v2 01/24] net: resolve forwarding path from virtual netdevice and HW destination address
- From: DENG Qingfang <dqfext@xxxxxxxxx>
- Re: [PATCH v3 3/8] conntrack: per-command entries counters
- From: Mikhail Sennikovsky <mikhail.sennikovskii@xxxxxxxxx>
- Re: [PATCH] doc: use symbolic names for chain priorities
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH v3 4/8] conntrack: introduce ct_cmd_list
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH nf-next] netfilter: flowtable: separate replace, destroy and stats to different workqueues
- From: Oz Shlomo <ozsh@xxxxxxxxxx>
- Re: [PATCH v3 3/8] conntrack: per-command entries counters
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH v3 1/8] conntrack: reset optind in do_parse
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH nft 6/6] src: allow arbitary chain name in implicit rule add case
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [PATCH net-next,v2 01/24] net: resolve forwarding path from virtual netdevice and HW destination address
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH net-next,v2 01/24] net: resolve forwarding path from virtual netdevice and HW destination address
- From: DENG Qingfang <dqfext@xxxxxxxxx>
- Re: [PATCH nf-next] netfilter: flowtable: separate replace, destroy and stats to different workqueues
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next,v2 23/24] net: ethernet: mtk_eth_soc: add flow offloading support
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next,v2 24/24] docs: nf_flowtable: update documentation with enhancements
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next,v2 20/24] dsa: slave: add support for TC_SETUP_FT
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next,v2 21/24] net: ethernet: mtk_eth_soc: fix parsing packets in GDM
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next,v2 22/24] net: ethernet: mtk_eth_soc: add support for initializing the PPE
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next,v2 15/24] netfilter: flowtable: add offload support for xmit path types
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next,v2 13/24] netfilter: flowtable: add dsa support
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next,v2 12/24] netfilter: flowtable: add pppoe support
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next,v2 17/24] netfilter: flowtable: bridge vlan hardware offload and switchdev
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next,v2 16/24] netfilter: nft_flow_offload: use direct xmit if hardware offload is enabled
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next,v2 14/24] selftests: netfilter: flowtable bridge and vlan support
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next,v2 19/24] netfilter: flowtable: support for FLOW_ACTION_PPPOE_PUSH
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next,v2 18/24] net: flow_offload: add FLOW_ACTION_PPPOE_PUSH
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next,v2 08/24] netfilter: flowtable: use dev_fill_forward_path() to obtain ingress device
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next,v2 10/24] netfilter: flowtable: add vlan support
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next,v2 07/24] netfilter: flowtable: add xmit path types
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next,v2 09/24] netfilter: flowtable: use dev_fill_forward_path() to obtain egress device
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next,v2 06/24] net: dsa: resolve forwarding path for dsa slave ports
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next,v2 11/24] netfilter: flowtable: add bridge vlan filtering support
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next,v2 04/24] net: bridge: resolve forwarding path for VLAN tag actions in bridge devices
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next,v2 03/24] net: bridge: resolve forwarding path for bridge devices
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next,v2 05/24] net: ppp: resolve forwarding path for bridge pppoe devices
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next,v2 01/24] net: resolve forwarding path from virtual netdevice and HW destination address
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next,v2 00/24] netfilter: flowtable enhancements
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next,v2 02/24] net: 8021q: resolve forwarding path for vlan devices
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH v3] audit: log nftables configuration change events once per table
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH v3] audit: log nftables configuration change events once per table
- From: Richard Guy Briggs <rgb@xxxxxxxxxx>
- Re: [PATCH v2] audit: log nftables configuration change events once per table
- From: Richard Guy Briggs <rgb@xxxxxxxxxx>
- Re: [PATCH net-next 01/10] netfilter: flowtable: separate replace, destroy and stats to different workqueues
- From: patchwork-bot+netdevbpf@xxxxxxxxxx
- [PATCH net-next 10/10] netfilter: nftables: update table flags from the commit phase
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 04/10] netfilter: flowtable: consolidate skb_try_make_writable() call
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 07/10] netfilter: flowtable: fast NAT functions never fail
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 09/10] netfilter: flowtable: refresh timeout after dst and writable checks
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 08/10] netfilter: flowtable: call dst_check() to fall back to classic forwarding
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 05/10] netfilter: flowtable: move skb_try_make_writable() before NAT in IPv4
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 06/10] netfilter: flowtable: move FLOW_OFFLOAD_DIR_MAX away from enumeration
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 03/10] netfilter: conntrack: Remove unused variable declaration
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 02/10] netfilter: Fix fall-through warnings for Clang
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 01/10] netfilter: flowtable: separate replace, destroy and stats to different workqueues
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 00/10] Netfilter updates for net-next
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH v2] audit: log nftables configuration change events once per table
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH v2] audit: log nftables configuration change events once per table
- From: Richard Guy Briggs <rgb@xxxxxxxxxx>
- Associate extra information to conntrack entries
- From: Major Dávid <major.david@xxxxxxxxxx>
- Re: [PATCH nf-next] netfilter: flowtable: separate replace, destroy and stats to different workqueues
- From: Marcelo Ricardo Leitner <marcelo.leitner@xxxxxxxxx>
- [PATCH] nftables: add flags offload to flowtable
- From: Frank Wunderlich <linux@xxxxxxxxx>
- Re: [PATCH libnetfilter_conntrack] conntrack: Don't use ICMP attrs in decision to build repl tuple
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH] audit: log nftables configuration change events once per table
- From: Richard Guy Briggs <rgb@xxxxxxxxxx>
- Re: [PATCH] audit: log nftables configuration change events once per table
- From: Phil Sutter <phil@xxxxxx>
- [PATCH net 8/9] netfilter: flowtable: Make sure GC works periodically in idle system
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net 9/9] netfilter: nftables: skip hook overlap logic if flowtable is stale
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net 1/9] Revert "netfilter: x_tables: Update remaining dereference to RCU"
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net 6/9] netfilter: nftables: report EOPNOTSUPP on unsupported flowtable flags
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net 7/9] netfilter: nftables: allow to update flowtable flags
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net 3/9] netfilter: x_tables: Use correct memory barriers.
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net 5/9] netfilter: conntrack: Fix gre tunneling over ipv6
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net 2/9] Revert "netfilter: x_tables: Switch synchronization to RCU"
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net 4/9] netfilter: ctnetlink: fix dump of the expect mask attribute
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net 0/9] Netfilter fixes for net
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH libnetfilter_conntrack] conntrack: Don't use ICMP attrs in decision to build repl tuple
- From: Luuk Paulussen <luuk.paulussen@xxxxxxxxxxxxxxxxxxx>
- Re: [PATCH] audit: log nftables configuration change events once per table
- From: kernel test robot <lkp@xxxxxxxxx>
- Re: [PATCH] audit: log nftables configuration change events once per table
- From: Richard Guy Briggs <rgb@xxxxxxxxxx>
- Re: [PATCH] audit: log nftables configuration change events once per table
- From: Phil Sutter <phil@xxxxxx>
- Re: [PATCH] audit: log nftables configuration change events once per table
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH] audit: log nftables configuration change events once per table
- From: Richard Guy Briggs <rgb@xxxxxxxxxx>
- Re: [PATCH nft 6/6] src: allow arbitary chain name in implicit rule add case
- From: Phil Sutter <phil@xxxxxx>
- Re: [PATCH nft 6/6] src: allow arbitary chain name in implicit rule add case
- From: Florian Westphal <fw@xxxxxxxxx>
[Index of Archives]
[LARTC]
[Berkeley Packet Filter]
[Bugtraq]
[Yosemite News]
[Samba]
