Linux TCP/IP Netfilter Devel

Thread Index

[Prev Page][Next Page]

Re: [PATCH ghak25 v5] audit: add subj creds to NETFILTER_CFG record to cover async unregister
- From: Paul Moore <paul@xxxxxxxxxxxxxx>
Re: [PATCH] netfilter/ipvs: immediately expire UDP connections matching unavailable destination if expire_nodest_conn=1
- From: Julian Anastasov <ja@xxxxxx>
Re: [PATCH ghak25 v5] audit: add subj creds to NETFILTER_CFG record to cover async unregister
- From: Richard Guy Briggs <rgb@xxxxxxxxxx>
Re: [PATCH net-next v2] net: flow_offload: simplify hw stats check handling
- From: David Miller <davem@xxxxxxxxxxxxx>
Re: [PATCH ghak25 v5] audit: add subj creds to NETFILTER_CFG record to cover async unregister
- From: Paul Moore <paul@xxxxxxxxxxxxxx>
Re: [PATCH net-next v2] net: flow_offload: simplify hw stats check handling
- From: Edward Cree <ecree@xxxxxxxxxxxxxx>
Re: [PATCH net-next v2] net: flow_offload: simplify hw stats check handling
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH net-next v2] net: flow_offload: simplify hw stats check handling
- From: Edward Cree <ecree@xxxxxxxxxxxxxx>
Re: [PATCH net-next v2] net: flow_offload: simplify hw stats check handling
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH net-next v2] net: flow_offload: simplify hw stats check handling
- From: Edward Cree <ecree@xxxxxxxxxxxxxx>
[PATCH ghak25 v5] audit: add subj creds to NETFILTER_CFG record to cover async unregister
- From: Richard Guy Briggs <rgb@xxxxxxxxxx>
Re: [PATCH] netfilter/ipvs: immediately expire UDP connections matching unavailable destination if expire_nodest_conn=1
- From: Andrew Kim <kim.andrewsy@xxxxxxxxx>
Re: [PATCH] netfilter/ipvs: immediately expire UDP connections matching unavailable destination if expire_nodest_conn=1
- From: Marco Angaroni <marcoangaroni@xxxxxxxxx>
Re: [PATCH 7/8 net] bnxt_tc: update indirect block support
- From: Sriharsha Basavapatna <sriharsha.basavapatna@xxxxxxxxxxxx>
Re: [PATCH] netfilter/ipvs: immediately expire UDP connections matching unavailable destination if expire_nodest_conn=1
- From: Andrew Kim <kim.andrewsy@xxxxxxxxx>
Re: [PATCH] netfilter/ipvs: immediately expire UDP connections matching unavailable destination if expire_nodest_conn=1
- From: Julian Anastasov <ja@xxxxxx>
Re: [iptables PATCH v2 2/2] nfnl_osf: Improve error handling
- From: Phil Sutter <phil@xxxxxx>
kernel BUG at lib/list_debug.c:45!
- From: Reindl Harald <h.reindl@xxxxxxxxxxxxx>
Re: [iptables PATCH 2/2] nft: Drop save_counters callback from family_ops
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [iptables PATCH 1/2] nft: Merge nft_*_rule_find() functions
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [iptables PATCH v2 0/2] Critical: Unbreak nfnl_osf tool
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH ghak25 v4 3/3] audit: add subj creds to NETFILTER_CFG record to cover async unregister
- From: Paul Moore <paul@xxxxxxxxxxxxxx>
Re: [PATCH nft] build: fix tentative generation of nft.8 after disabled doc
- From: Laura García Liébana <nevola@xxxxxxxxx>
Re: [PATCH nft] build: fix tentative generation of nft.8 after disabled doc
- From: Phil Sutter <phil@xxxxxx>
Re: [PATCH nft] build: fix tentative generation of nft.8 after disabled doc
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH 09/14] fs: don't change the address limit for ->write_iter in __kernel_write
- From: Christoph Hellwig <hch@xxxxxx>
Re: [PATCH ghak25 v4 3/3] audit: add subj creds to NETFILTER_CFG record to cover async unregister
- From: Richard Guy Briggs <rgb@xxxxxxxxxx>
Re: [PATCH ghak25 v4 3/3] audit: add subj creds to NETFILTER_CFG record to cover async unregister
- From: Paul Moore <paul@xxxxxxxxxxxxxx>
Re: [PATCH] netfilter/ipvs: expire no destination UDP connections when expire_nodest_conn=1
- From: Andrew Kim <kim.andrewsy@xxxxxxxxx>
[PATCH] netfilter/ipvs: immediately expire UDP connections matching unavailable destination if expire_nodest_conn=1
- From: Andrew Sy Kim <kim.andrewsy@xxxxxxxxx>
Re: [PATCH] netfilter/ipvs: expire no destination UDP connections when expire_nodest_conn=1
- From: Andrew Kim <kim.andrewsy@xxxxxxxxx>
Re: [PATCH ghak25 v4 3/3] audit: add subj creds to NETFILTER_CFG record to cover async unregister
- From: Richard Guy Briggs <rgb@xxxxxxxxxx>
Re: [PATCH nft] build: fix tentative generation of nft.8 after disabled doc
- From: Laura García Liébana <nevola@xxxxxxxxx>
Re: [PATCH nft] build: fix tentative generation of nft.8 after disabled doc
- From: Phil Sutter <phil@xxxxxx>
[PATCH v2 nf] netfilter: make conntrack userspace helpers work again
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH] netfilter/ipvs: expire no destination UDP connections when expire_nodest_conn=1
- From: Julian Anastasov <ja@xxxxxx>
[PATCH nft] build: fix tentative generation of nft.8 after disabled doc
- From: Laura Garcia Liebana <nevola@xxxxxxxxx>
Re: [PATCH 01/14] cachefiles: switch to kernel_write
- From: David Howells <dhowells@xxxxxxxxxx>
Re: userspace conntrack helper and confirming the master conntrack
- From: Michal Kubecek <mkubecek@xxxxxxx>
[PATCH nf] netfilter: make conntrack userspace helpers work again
- From: Florian Westphal <fw@xxxxxxxxx>
Re: userspace conntrack helper and confirming the master conntrack
- From: Florian Westphal <fw@xxxxxxxxx>
[iptables PATCH v2 2/2] nfnl_osf: Improve error handling
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH v2 1/2] nfnl_osf: Fix broken conversion to nfnl_query()
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH v2 0/2] Critical: Unbreak nfnl_osf tool
- From: Phil Sutter <phil@xxxxxx>
KMSAN: uninit-value in nf_ip6_checksum
- From: syzbot <syzbot+266e61dcc3259a67d5ec@xxxxxxxxxxxxxxxxxxxxxxxxx>
[PATCH] netfilter/ipvs: expire no destination UDP connections when expire_nodest_conn=1
- From: Andrew Sy Kim <kim.andrewsy@xxxxxxxxx>
Re: [PATCH 0/8 net] the indirect flow_block offload, revisited
- From: David Miller <davem@xxxxxxxxxxxxx>
Re: [PATCH 0/8 net] the indirect flow_block offload, revisited
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH 0/6] Netfilter fixes for net
- From: David Miller <davem@xxxxxxxxxxxxx>
Re: [PATCH] libiptc.c: pragma disable a gcc compiler warning
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [iptables PATCH 0/3] Fix SECMARK target comparison
- From: Phil Sutter <phil@xxxxxx>
Re: [PATCH] libip6t_srh.t: switch to lowercase, add /128 suffix, require success
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [iptables PATCH 0/3] Fix SECMARK target comparison
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH 3/6] netfilter: flowtable: Remove WQ_MEM_RECLAIM from workqueue
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH 1/6] netfilter: conntrack: avoid gcc-10 zero-length-bounds warning
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH 2/6] netfilter: flowtable: Add pending bit for offload work
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH 5/6] netfilter: flowtable: set NF_FLOW_TEARDOWN flag on entry expiration
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH 6/6] netfilter: nft_set_rbtree: Add missing expired checks
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH 4/6] netfilter: conntrack: fix infinite loop on rmmod
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH 0/6] Netfilter fixes for net
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nf] netfilter: nf_conntrack_pptp: prevent buffer overflows in debug code
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH 0/8 net] the indirect flow_block offload, revisited
- From: Edward Cree <ecree@xxxxxxxxxxxxxx>
[net PATCH] netfilter: ipset: Fix subcounter update skip
- From: Phil Sutter <phil@xxxxxx>
Re: netfilter: does the API break or something else ?
- From: Xiubo Li <xiubli@xxxxxxxxxx>
Re: netfilter: does the API break or something else ?
- From: Phil Sutter <phil@xxxxxx>
Re: [PATCH 02/14] autofs: switch to kernel_write
- From: Ian Kent <raven@xxxxxxxxxx>
Re: [PATCH libnetfilter_queue 2/3] example: nf-queue: use pkt_buff
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
[PATCH libnetfilter_queue 1/1] example: nf-queue: use pkt_buff (updated)
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
Re: userspace conntrack helper and confirming the master conntrack
- From: Jacob Rasmussen <jacobraz@xxxxxxxxxxxx>
Re: stable-rc 4.19: NETDEV WATCHDOG: eth0 (asix): transmit queue 0 timed out - net/sched/sch_generic.c:466 dev_watchdog
- From: Naresh Kamboju <naresh.kamboju@xxxxxxxxxx>
[PATCH 4/8 net] net: use flow_indr_dev_setup_offload()
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH 8/8 net] net: remove indirect block netdev event registration
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH 5/8 net] mlx5: update indirect block support
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH 6/8 net] nfp: update indirect block support
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH 7/8 net] bnxt_tc: update indirect block support
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH 3/8 net] net: cls_api: add tcf_block_offload_init()
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH 1/8 net] netfilter: nf_flowtable: expose nf_flow_table_gc_cleanup()
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH 2/8 net] net: flow_offload: consolidate indirect flow_block infrastructure
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH 0/8 net] the indirect flow_block offload, revisited
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH v4] doc: document danger of applying REJECT to INVALID CTs
- From: Maciej Żenczykowski <zenczykowski@xxxxxxxxx>
KMSAN: uninit-value in hash_ip6_test
- From: syzbot <syzbot+e66172c53a40c795a780@xxxxxxxxxxxxxxxxxxxxxxxxx>
netfilter: does the API break or something else ?
- From: Xiubo Li <xiubli@xxxxxxxxxx>
Re: [nft PATCH] JSON: Improve performance of json_events_cb()
- From: Eric Garver <eric@xxxxxxxxxxx>
[nft PATCH] JSON: Improve performance of json_events_cb()
- From: Phil Sutter <phil@xxxxxx>
[PATCH v4] doc: document danger of applying REJECT to INVALID CTs
- From: Jan Engelhardt <jengelh@xxxxxxx>
Re: [PATCH v3] doc: document danger of applying REJECT to INVALID CTs
- From: Maciej Żenczykowski <zenczykowski@xxxxxxxxx>
[PATCH v3] doc: document danger of applying REJECT to INVALID CTs
- From: Jan Engelhardt <jengelh@xxxxxxx>
Re: [PATCH libnetfilter_queue 1/2] pktbuff: add __pktb_setup()
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
[PATCH 01/14] cachefiles: switch to kernel_write
- From: Christoph Hellwig <hch@xxxxxx>
clean up kernel_{read,write} & friends v2
- From: Christoph Hellwig <hch@xxxxxx>
[PATCH 05/14] fs: check FMODE_WRITE in __kernel_write
- From: Christoph Hellwig <hch@xxxxxx>
[PATCH 04/14] fs: unexport __kernel_write
- From: Christoph Hellwig <hch@xxxxxx>
[PATCH 08/14] fs: remove __vfs_write
- From: Christoph Hellwig <hch@xxxxxx>
[PATCH 11/14] integrity/ima: switch to using __kernel_read
- From: Christoph Hellwig <hch@xxxxxx>
[PATCH 13/14] fs: remove __vfs_read
- From: Christoph Hellwig <hch@xxxxxx>
[PATCH 12/14] fs: implement kernel_read using __kernel_read
- From: Christoph Hellwig <hch@xxxxxx>
[PATCH 10/14] fs: add a __kernel_read helper
- From: Christoph Hellwig <hch@xxxxxx>
[PATCH 09/14] fs: don't change the address limit for ->write_iter in __kernel_write
- From: Christoph Hellwig <hch@xxxxxx>
[PATCH 07/14] fs: implement kernel_write using __kernel_write
- From: Christoph Hellwig <hch@xxxxxx>
[PATCH 14/14] fs: don't change the address limit for ->read_iter in __kernel_read
- From: Christoph Hellwig <hch@xxxxxx>
[PATCH 06/14] fs: remove the call_{read,write}_iter functions
- From: Christoph Hellwig <hch@xxxxxx>
[PATCH 03/14] bpfilter: switch to kernel_write
- From: Christoph Hellwig <hch@xxxxxx>
[PATCH 02/14] autofs: switch to kernel_write
- From: Christoph Hellwig <hch@xxxxxx>
[PATCH libnetfilter_queue 1/1] src & doc: Rename pktb_alloc2 to pktb_setup
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
Re: [PATCH libnetfilter_queue 1/1] src: add pktb_alloc2() and pktb_head_size()
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
Re: [PATCH libnetfilter_queue 2/2] pktbuff: add pktb_head_alloc(), pktb_setup() and pktb_head_size()
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
Re: [PATCH v2] doc: document danger of applying REJECT to INVALID CTs
- From: Benjamin Poirier <benjamin.poirier@xxxxxxxxx>
Re: [PATCH v1 1/1] xtables-addons: geoip: update scripts for DBIP names, etc.
- From: Philip Prindeville <philipp_subx@xxxxxxxxxxxxxxxxxxxxx>
Re: [PATCH v2] doc: document danger of applying REJECT to INVALID CTs
- From: Maciej Żenczykowski <zenczykowski@xxxxxxxxx>
[PATCH v2] doc: document danger of applying REJECT to INVALID CTs
- From: Jan Engelhardt <jengelh@xxxxxxx>
Re: [PATCH v1 1/1] xtables-addons: geoip: update scripts for DBIP names, etc.
- From: Jan Engelhardt <jengelh@xxxxxxx>
[iptables PATCH 2/3] libxtables: Introduce 'matchmask' target callback
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH 0/3] Fix SECMARK target comparison
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH 3/3] libxt_SECMARK: Fix for failing target comparison
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH 1/3] xshared: Share make_delete_mask() between ip{,6}tables
- From: Phil Sutter <phil@xxxxxx>
Re: [PATCH v1 1/1] xtables-addons: geoip: update scripts for DBIP names, etc.
- From: Philip Prindeville <philipp_subx@xxxxxxxxxxxxxxxxxxxxx>
Re: [iptables PATCH 2/2] nfnl_osf: Improve error handling
- From: Phil Sutter <phil@xxxxxx>
Re: [iptables PATCH 2/2] nfnl_osf: Improve error handling
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[iptables PATCH] xtables-restore: Fix verbose mode table flushing
- From: Phil Sutter <phil@xxxxxx>
Re: [nf PATCH v2] netfilter: nft_set_rbtree: Add missing expired checks
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH v1 1/1] xtables-addons: geoip: update scripts for DBIP names, etc.
- From: Jan Engelhardt <jengelh@xxxxxxx>
[PATCH v1 1/1] xtables-addons: geoip: update scripts for DBIP names, etc.
- From: "Philip Prindeville" <philipp@xxxxxxxxxxxxxxxxxxxxx>
[PATCH] libiptc.c: pragma disable a gcc compiler warning
- From: Maciej Żenczykowski <zenczykowski@xxxxxxxxx>
[PATCH] libip6t_srh.t: switch to lowercase, add /128 suffix, require success
- From: Maciej Żenczykowski <zenczykowski@xxxxxxxxx>
Correct usage of nf_ct_get
- From: b38911 Zxc <b38911@xxxxxxxxx>
Re: WARNING in cgroup_finalize_control
- From: Marcelo Ricardo Leitner <marcelo.leitner@xxxxxxxxx>
KMSAN: uninit-value in hash_net6_del
- From: syzbot <syzbot+3fba3936436897a34c8a@xxxxxxxxxxxxxxxxxxxxxxxxx>
Re: [PATCH nf] netfilter: conntrack: fix infinite loop on rmmod
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH net] netfilter: nf_flow_table_offload: Remove WQ_MEM_RECLAIM from workqueue
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
WARNING in cgroup_finalize_control
- From: syzbot <syzbot+9c08aaa363ca5784c9e9@xxxxxxxxxxxxxxxxxxxxxxxxx>
Re: [PATCH] iptables: flush stdout after every verbose log.
- From: Maciej Żenczykowski <zenczykowski@xxxxxxxxx>
Re: [PATCH net] netfilter: flowtable: Add pending bit for offload work
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH net] netfilter: flowtable: Add pending bit for offload work
- From: Roi Dayan <roid@xxxxxxxxxxxx>
Re: [PATCH net] netfilter: flowtable: Add pending bit for offload work
- From: Roi Dayan <roid@xxxxxxxxxxxx>
[iptables PATCH 1/2] nft: Merge nft_*_rule_find() functions
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH 2/2] nft: Drop save_counters callback from family_ops
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH] iptables-test: Don't choke on empty lines
- From: Phil Sutter <phil@xxxxxx>
[nf PATCH v2] netfilter: nft_set_rbtree: Add missing expired checks
- From: Phil Sutter <phil@xxxxxx>
Re: [nf PATCH] netfilter: nft_set_rbtree: Add missing expired checks
- From: Phil Sutter <phil@xxxxxx>
Re: [PATCH] iptables: flush stdout after every verbose log.
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH net] netfilter: flowtable: Add pending bit for offload work
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [iptables PATCH 2/2] nfnl_osf: Improve error handling
- From: Phil Sutter <phil@xxxxxx>
Re: [PATCH nf] netfilter: flowtable: set NF_FLOW_TEARDOWN flag on entry expiration
- From: Roi Dayan <roid@xxxxxxxxxxxx>
[PATCH nf] netfilter: flowtable: set NF_FLOW_TEARDOWN flag on entry expiration
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [RFC PATCH net] net: flow_offload: simplify hw stats check handling
- From: Edward Cree <ecree@xxxxxxxxxxxxxx>
Re: [PATCH net] netfilter: flowtable: Fix expired flow not being deleted from software
- From: Paul Blakey <paulb@xxxxxxxxxxxx>
Re: [PATCH net] netfilter: flowtable: Fix expired flow not being deleted from software
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH net] netfilter: flowtable: Add pending bit for offload work
- From: Paul Blakey <paulb@xxxxxxxxxxxx>
Re: [PATCH net] netfilter: flowtable: Fix expired flow not being deleted from software
- From: Paul Blakey <paulb@xxxxxxxxxxxx>
Re: [RFC PATCH net] net: flow_offload: simplify hw stats check handling
- From: Jiri Pirko <jiri@xxxxxxxxxxx>
Re: [PATCH v2] do not typedef socklen_t on Android
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH net] netfilter: flowtable: Fix expired flow not being deleted from software
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH net] netfilter: flowtable: Add pending bit for offload work
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [nf PATCH] netfilter: nft_set_rbtree: Add missing expired checks
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH 06/15] netfilter: conntrack: avoid gcc-10 zero-length-bounds warning
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH net] netfilter: nf_conntrack_pptp: prevent buffer overflows in debug code
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH libnetfilter_queue 1/1] src: add pktb_alloc2() and pktb_head_size()
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
Re: [PATCH libnetfilter_queue 1/1] src: add pktb_alloc2() and pktb_head_size()
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH libnetfilter_queue 1/1] src: add pktb_alloc2() and pktb_head_size()
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
[PATCH libnetfilter_queue 0/1] pktb_alloc2()
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
[PATCH nf] netfilter: conntrack: fix infinite loop on rmmod
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH net] netfilter: nf_flow_table_offload: Remove WQ_MEM_RECLAIM from workqueue
- From: Roi Dayan <roid@xxxxxxxxxxxx>
Re: mlx5: Panic with conntrack offload
- From: Roi Dayan <roid@xxxxxxxxxxxx>
Re: [PATCH] doc: document danger of applying REJECT to INVALID CTs
- From: Maciej Żenczykowski <zenczykowski@xxxxxxxxx>
Re: [PATCH] doc: document danger of applying REJECT to INVALID CTs
- From: Maciej Żenczykowski <zenczykowski@xxxxxxxxx>
[PATCH] doc: document danger of applying REJECT to INVALID CTs
- From: Jan Engelhardt <jengelh@xxxxxxx>
Re: [PATCH] iptables: flush stdout after every verbose log.
- From: Maciej Żenczykowski <zenczykowski@xxxxxxxxx>
[PATCH v2] do not typedef socklen_t on Android
- From: Maciej Żenczykowski <zenczykowski@xxxxxxxxx>
Re: [PATCH] document danger of '-j REJECT'ing of '-m state INVALID' packets
- From: Maciej Żenczykowski <zenczykowski@xxxxxxxxx>
Re: [PATCH] document danger of '-j REJECT'ing of '-m state INVALID' packets
- From: Maciej Żenczykowski <zenczykowski@xxxxxxxxx>
Re: [iptables PATCH 2/2] nfnl_osf: Improve error handling
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH libnetfilter_queue 2/2] pktbuff: add pktb_head_alloc(), pktb_setup() and pktb_head_size()
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH libnetfilter_queue 2/2] pktbuff: add pktb_head_alloc(), pktb_setup() and pktb_head_size()
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
[iptables PATCH 1/2] nfnl_osf: Fix broken conversion to nfnl_query()
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH 2/2] nfnl_osf: Improve error handling
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH 0/2] Critical: Unbreak nfnl_osf tool
- From: Phil Sutter <phil@xxxxxx>
Re: [PATCH] document danger of '-j REJECT'ing of '-m state INVALID' packets
- From: Jan Engelhardt <jengelh@xxxxxxx>
[PATCH nft,v2] mnl: fix error rule reporting with missing table/chain and anonymous sets
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH libnetfilter_queue 1/2] pktbuff: add __pktb_setup()
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH libnetfilter_queue 2/2] pktbuff: add pktb_head_alloc(), pktb_setup() and pktb_head_size()
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH libnetfilter_queue 0/3] pktbuff API updates
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
[PATCH] document danger of '-j REJECT'ing of '-m state INVALID' packets
- From: Maciej Żenczykowski <zenczykowski@xxxxxxxxx>
Re: [PATCH ghak25 v4 3/3] audit: add subj creds to NETFILTER_CFG record to cover async unregister
- From: Steve Grubb <sgrubb@xxxxxxxxxx>
[PATCH nft 1/3] src: rename CMD_OBJ_SETELEM to CMD_OBJ_ELEMENTS
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft 3/3] src: add CMD_OBJ_SETELEMS
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft 2/3] libnftables: call nft_cmd_expand() only with CMD_ADD
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
ETA of libnetfilter_queue-1.0.4?
- From: Phil Sutter <phil@xxxxxx>
Re: [PATCH ghak25 v4 3/3] audit: add subj creds to NETFILTER_CFG record to cover async unregister
- From: Paul Moore <paul@xxxxxxxxxxxxxx>
Re: [PATCH libnetfilter_queue 0/3] pktbuff API updates
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
Re: [RFC PATCH net] net: flow_offload: simplify hw stats check handling
- From: Jakub Kicinski <kuba@xxxxxxxxxx>
Re: [PATCH nft] mnl: fix error rule reporting with missing table/chain and anonymous sets
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [RFC PATCH net] net: flow_offload: simplify hw stats check handling
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [RFC PATCH net] net: flow_offload: simplify hw stats check handling
- From: Edward Cree <ecree@xxxxxxxxxxxxxx>
Re: [RFC PATCH net] net: flow_offload: simplify hw stats check handling
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [RFC PATCH net] net: flow_offload: simplify hw stats check handling
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[RFC PATCH net] net: flow_offload: simplify hw stats check handling
- From: Edward Cree <ecree@xxxxxxxxxxxxxx>
Re: [PATCH nft] mnl: fix error rule reporting with missing table/chain and anonymous sets
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH net,v4] net: flow_offload: skip hw stats check for FLOW_ACTION_HW_STATS_DONT_CARE
- From: Edward Cree <ecree@xxxxxxxxxxxxxx>
Re: [PATCH net,v4] net: flow_offload: skip hw stats check for FLOW_ACTION_HW_STATS_DONT_CARE
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: nft: crash parsing cmd line
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft] mnl: fix error rule reporting with missing table/chain and anonymous sets
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH net,v4] net: flow_offload: skip hw stats check for FLOW_ACTION_HW_STATS_DONT_CARE
- From: Edward Cree <ecree@xxxxxxxxxxxxxx>
nft: crash parsing cmd line
- From: Jan Engelhardt <jengelh@xxxxxxx>
Re: [PATCH net,v4] net: flow_offload: skip hw stats check for FLOW_ACTION_HW_STATS_DONT_CARE
- From: David Miller <davem@xxxxxxxxxxxxx>
Re: [PATCH ghak25 v4 3/3] audit: add subj creds to NETFILTER_CFG record to cover async unregister
- From: Richard Guy Briggs <rgb@xxxxxxxxxx>
Re: [PATCH] netfilter: fix make target xt_TCPMSS.o error.
- From: Cong Wang <xiyou.wangcong@xxxxxxxxx>
Re: [PATCH ghak25 v4 3/3] audit: add subj creds to NETFILTER_CFG record to cover async unregister
- From: Steve Grubb <sgrubb@xxxxxxxxxx>
[PATCH nft] evaluate: fix memleak in stmt_evaluate_reject_icmp()
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft] src: fix netlink_get_setelem() memleaks
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH net,v4] net: flow_offload: skip hw stats check for FLOW_ACTION_HW_STATS_DONT_CARE
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH net,v3] net: flow_offload: skip hw stats check for FLOW_ACTION_HW_STATS_DONT_CARE
- From: Jiri Pirko <jiri@xxxxxxxxxxx>
[iptables PATCH 06/15] nft: cache: Re-establish cache consistency check
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH 05/15] tests: shell: Implement --valgrind mode
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH 15/15] nft: Don't exit early after printing help texts
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH 07/15] nft: Clear all lists in nft_fini()
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH 14/15] nft: Fix leak when replacing a rule
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH 09/15] nft: Fix leak when deleting rules
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH 13/15] arptables: Fix leak in nft_arp_print_rule()
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH 03/15] nft: Avoid use-after-free when rebuilding cache
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH 01/15] nft: Free rule pointer in nft_cmd_free()
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH 10/15] ebtables: Free statically loaded extensions again
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH 08/15] nft: Fix leaks in ebt_add_policy_rule()
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH 02/15] nft: Add missing clear_cs() calls
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH 04/15] nft: Call nft_release_cache() in nft_fini()
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH 11/15] libxtables: Introduce xtables_fini()
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH 12/15] nft: Use clear_cs() instead of open coding
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH 00/15] cache evaluation phase bonus material
- From: Phil Sutter <phil@xxxxxx>
Re: iptables 1.8.5 ETA ?
- From: Etienne Champetier <champetier.etienne@xxxxxxxxx>
Re: iptables 1.8.5 ETA ?
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: iptables 1.8.5 ETA ?
- From: Phil Sutter <phil@xxxxxx>
Re: iptables 1.8.5 ETA ?
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH net,v3] net: flow_offload: skip hw stats check for FLOW_ACTION_HW_STATS_DONT_CARE
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
iptables 1.8.5 ETA ?
- From: Etienne Champetier <champetier.etienne@xxxxxxxxx>
Re: [PATCH net,v2] net: flow_offload: skip hw stats check for FLOW_ACTION_HW_STATS_DONT_CARE
- From: Jiri Pirko <jiri@xxxxxxxxxxx>
Re: [PATCH net,v2] net: flow_offload: skip hw stats check for FLOW_ACTION_HW_STATS_DONT_CARE
- From: Edward Cree <ecree@xxxxxxxxxxxxxx>
[PATCH net] netfilter: flowtable: Fix expired flow not being deleted from software
- From: Paul Blakey <paulb@xxxxxxxxxxxx>
[PATCH net] netfilter: flowtable: Add pending bit for offload work
- From: Paul Blakey <paulb@xxxxxxxxxxxx>
[nf PATCH] netfilter: nft_set_rbtree: Add missing expired checks
- From: Phil Sutter <phil@xxxxxx>
Re: [PATCH] rule: fix out of memory write if num_stmts is too low
- From: michael-dev <michael-dev@xxxxxxxxxxxxx>
[PATCH net] netfilter: nf_conntrack_pptp: prevent buffer overflows in debug code
- From: Dan Carpenter <dan.carpenter@xxxxxxxxxx>
[PATCH 2/3] nftables: enable reject with 802.1q
- From: Michael Braun <michael-dev@xxxxxxxxxxxxx>
[PATCH 3/3] netfilter: enable reject with bridge vlan
- From: Michael Braun <michael-dev@xxxxxxxxxxxxx>
[PATCH 1/3] nftables: add frag-needed (ipv4) to reject options
- From: Michael Braun <michael-dev@xxxxxxxxxxxxx>
[PATCH 0/3] Avoid gretap fragmentation with nftables on bridge
- From: Michael Braun <michael-dev@xxxxxxxxxxxxx>
Re: [PATCH] netfilter: fix make target xt_TCPMSS.o error.
- From: Jan Engelhardt <jengelh@xxxxxxx>
[PATCH] netfilter: fix make target xt_TCPMSS.o error.
- From: Huang Qijun <dknightjun@xxxxxxxxx>
Re: [PATCH net,v2] net: flow_offload: skip hw stats check for FLOW_ACTION_HW_STATS_DONT_CARE
- From: Jiri Pirko <jiri@xxxxxxxxxxx>
Re: [PATCH libnetfilter_queue 0/3] pktbuff API updates
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
Re: [PATCH libnetfilter_queue 0/3] pktbuff API updates
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
Re: [PATCH net,v2] net: flow_offload: skip hw stats check for FLOW_ACTION_HW_STATS_DONT_CARE
- From: Jakub Kicinski <kuba@xxxxxxxxxx>
Re: [PATCH net,v2] net: flow_offload: skip hw stats check for FLOW_ACTION_HW_STATS_DONT_CARE
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH net,v2] net: flow_offload: skip hw stats check for FLOW_ACTION_HW_STATS_DONT_CARE
- From: Jakub Kicinski <kuba@xxxxxxxxxx>
Re: [PATCH net,v2] net: flow_offload: skip hw stats check for FLOW_ACTION_HW_STATS_DONT_CARE
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH net,v2] net: flow_offload: skip hw stats check for FLOW_ACTION_HW_STATS_DONT_CARE
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH] rule: fix out of memory write if num_stmts is too low
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nf-next v5 1/1] netfilter: ctnetlink: add kernel side filtering for dump
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH libnftnl] expr: dynset: release stateful expression from .free path
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft 3/3] src: ct_timeout: release policy string and state list
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft 2/3] parser_bison: release helper type string after parsing
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft 1/3] parser_bison: release extended priority string after parsing
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH libnftnl] expr: objref: add nftnl_expr_objref_free() to release object name
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH net,v2] net: flow_offload: skip hw stats check for FLOW_ACTION_HW_STATS_DONT_CARE
- From: Jakub Kicinski <kuba@xxxxxxxxxx>
[PATCH nft 2/2] src: add rule_stmt_append() and use it
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft 1/2] src: add rule_stmt_insert_at() and use it
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH net,v2] net: flow_offload: skip hw stats check for FLOW_ACTION_HW_STATS_DONT_CARE
- From: Jakub Kicinski <kuba@xxxxxxxxxx>
Re: [PATCH net,v2] net: flow_offload: skip hw stats check for FLOW_ACTION_HW_STATS_DONT_CARE
- From: Jiri Pirko <jiri@xxxxxxxxxxx>
[PATCH net,v2] net: flow_offload: skip hw stats check for FLOW_ACTION_HW_STATS_DONT_CARE
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH] rule: fix out of memory write if num_stmts is too low
- From: michael-dev <michael-dev@xxxxxxxxxxxxx>
Re: [PATCH libnetfilter_queue 0/3] pktbuff API updates
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH] rule: fix out of memory write if num_stmts is too low
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH net] net: flow_offload: skip hw stats check for FLOW_ACTION_HW_STATS_DONT_CARE
- From: Jiri Pirko <jiri@xxxxxxxxxxx>
stable-rc 4.19: NETDEV WATCHDOG: eth0 (asix): transmit queue 0 timed out - net/sched/sch_generic.c:466 dev_watchdog
- From: Naresh Kamboju <naresh.kamboju@xxxxxxxxxx>
Re: [PATCH net] net: flow_offload: skip hw stats check for FLOW_ACTION_HW_STATS_DONT_CARE
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [RFC] concat with dynamically sized fields like vlan id
- From: michael-dev <michael-dev@xxxxxxxxxxxxx>
Re: [PATCH net] net: flow_offload: skip hw stats check for FLOW_ACTION_HW_STATS_DONT_CARE
- From: Jiri Pirko <jiri@xxxxxxxxxxx>
[RFC] netlink: do not alter set element width
- From: Michael Braun <michael-dev@xxxxxxxxxxxxx>
[PATCH net] net: flow_offload: skip hw stats check for FLOW_ACTION_HW_STATS_DONT_CARE
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH] rule: fix out of memory write if num_stmts is too low
- From: Michael Braun <michael-dev@xxxxxxxxxxxxx>
Re: [PATCH nf-next v5 1/1] netfilter: ctnetlink: add kernel side filtering for dump
- From: Florent Fourcot <florent.fourcot@xxxxxxxxxx>
[PATCH nf-next v6] netfilter: ctnetlink: add kernel side filtering for dump
- From: Romain Bellan <romain.bellan@xxxxxxxxxx>
Re: [nft PATCH 3/4] segtree: Merge get_set_interval_find() and get_set_interval_end()
- From: Phil Sutter <phil@xxxxxx>
Re: [RFC] concat with dynamically sized fields like vlan id
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH] main: fix get_optstring truncating output
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH libnetfilter_queue 0/3] pktbuff API updates
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
[PATCH] main: fix get_optstring truncating output
- From: Michael Braun <michael-dev@xxxxxxxxxxxxx>
Re: [PATCH] tests: dump generated use new nft tool
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH] tests: dump generated use new nft tool
- From: Michael Braun <michael-dev@xxxxxxxxxxxxx>
Re: [PATCH v1 1/1] xtables-addons: geoip: install and document xt_geoip_fetch
- From: Jan Engelhardt <jengelh@xxxxxxx>
[RFC] concat with dynamically sized fields like vlan id
- From: Michael Braun <michael-dev@xxxxxxxxxxxxx>
Re: [PATCH 3/3] datatype: fix double-free resulting in use-after-free in datatype_free
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH 3/3] datatype: fix double-free resulting in use-after-free in datatype_free
- From: michael-dev <michael-dev@xxxxxxxxxxxxx>
Re: [PATCH 3/3] datatype: fix double-free resulting in use-after-free in datatype_free
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH 2/3] utils: fix UBSAN warning in fls
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH 1/3] main: fix ASAN -fsanizize=address error
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nft] ct: Add support for the 'id' key
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft] ct: Add support for the 'id' key
- From: Brett Mastbergen <brett.mastbergen@xxxxxxxxx>
Re: strage iptables counts of wireguard traffic
- From: Sven-Haegar Koch <haegar@xxxxxxxxx>
Re: strage iptables counts of wireguard traffic
- From: Reindl Harald <h.reindl@xxxxxxxxxxxxx>
Re: [PATCH ghak25 v4 3/3] audit: add subj creds to NETFILTER_CFG record to cover async unregister
- From: Paul Moore <paul@xxxxxxxxxxxxxx>
[PATCH 1/3] main: fix ASAN -fsanizize=address error
- From: Michael Braun <michael-dev@xxxxxxxxxxxxx>
[PATCH 3/3] datatype: fix double-free resulting in use-after-free in datatype_free
- From: Michael Braun <michael-dev@xxxxxxxxxxxxx>
[PATCH 2/3] utils: fix UBSAN warning in fls
- From: Michael Braun <michael-dev@xxxxxxxxxxxxx>
Re: strage iptables counts of wireguard traffic
- From: Reindl Harald <h.reindl@xxxxxxxxxxxxx>
Re: strage iptables counts of wireguard traffic
- From: Jan Engelhardt <jengelh@xxxxxxx>
strage iptables counts of wireguard traffic
- From: Reindl Harald <h.reindl@xxxxxxxxxxxxx>
Re: [nft PATCH 3/4] segtree: Merge get_set_interval_find() and get_set_interval_end()
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH 0/2] Netfilter fixes for net
- From: David Miller <davem@xxxxxxxxxxxxx>
[PATCH v1 1/1] xtables-addons: geoip: install and document xt_geoip_fetch
- From: "Philip Prindeville" <philipp@xxxxxxxxxxxxxxxxxxxxx>
[PATCH 00/15] gcc-10 warning fixes
- From: Arnd Bergmann <arnd@xxxxxxxx>
[PATCH 06/15] netfilter: conntrack: avoid gcc-10 zero-length-bounds warning
- From: Arnd Bergmann <arnd@xxxxxxxx>
Re: [PATCH 00/37] net: manually convert files to ReST format - part 2
- From: David Miller <davem@xxxxxxxxxxxxx>
[PATCH 00/37] net: manually convert files to ReST format - part 2
- From: Mauro Carvalho Chehab <mchehab+huawei@xxxxxxxxxx>
[PATCH 37/37] docs: networking: convert tproxy.txt to ReST
- From: Mauro Carvalho Chehab <mchehab+huawei@xxxxxxxxxx>
Re: [nft PATCH 3/4] segtree: Merge get_set_interval_find() and get_set_interval_end()
- From: Phil Sutter <phil@xxxxxx>
Re: [nft PATCH 3/4] segtree: Merge get_set_interval_find() and get_set_interval_end()
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [iptables PATCH v2 00/18] iptables: introduce cache evaluation phase
- From: Phil Sutter <phil@xxxxxx>
Re: [nft PATCH 3/4] segtree: Merge get_set_interval_find() and get_set_interval_end()
- From: Phil Sutter <phil@xxxxxx>
Re: [iptables PATCH v2 00/18] iptables: introduce cache evaluation phase
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nft] rule: memleak in __do_add_setelems()
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [iptables PATCH v2 00/18] iptables: introduce cache evaluation phase
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [nft PATCH 3/4] segtree: Merge get_set_interval_find() and get_set_interval_end()
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nft] rule: memleak in __do_add_setelems()
- From: Phil Sutter <phil@xxxxxx>
Re: [nft PATCH 3/4] segtree: Merge get_set_interval_find() and get_set_interval_end()
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [iptables PATCH v2 00/18] iptables: introduce cache evaluation phase
- From: Phil Sutter <phil@xxxxxx>
[nft PATCH 4/4] segtree: Fix get element command with prefixes
- From: Phil Sutter <phil@xxxxxx>
[nft PATCH 2/4] segtree: Use expr_clone in get_set_interval_*()
- From: Phil Sutter <phil@xxxxxx>
[nft PATCH 3/4] segtree: Merge get_set_interval_find() and get_set_interval_end()
- From: Phil Sutter <phil@xxxxxx>
[nft PATCH 0/4] Two bugfixes around prefixes in sets
- From: Phil Sutter <phil@xxxxxx>
[nft PATCH 1/4] segtree: Fix missing expires value in prefixes
- From: Phil Sutter <phil@xxxxxx>
Re: [iptables PATCH v2 00/18] iptables: introduce cache evaluation phase
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nft] rule: memleak in __do_add_setelems()
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft] rule: fix element cache update in __do_add_setelems()
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH AUTOSEL 5.6 43/79] netfilter: nat: fix error handling upon registering inet hook
- From: Sasha Levin <sashal@xxxxxxxxxx>
Re: [PATCH nft] rule: memleak in __do_add_setelems()
- From: Phil Sutter <phil@xxxxxx>
[PATCH AUTOSEL 5.4 29/57] netfilter: nat: fix error handling upon registering inet hook
- From: Sasha Levin <sashal@xxxxxxxxxx>
Re: [iptables PATCH v2 00/18] iptables: introduce cache evaluation phase
- From: Phil Sutter <phil@xxxxxx>
Re: [PATCH nft] rule: memleak in __do_add_setelems()
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft] rule: memleak in __do_add_setelems()
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH libnetfilter_queue 0/3] pktbuff API updates
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
Re: [PATCH libnetfilter_queue 1/3] pktbuff: add pktb_alloc_head() and pktb_build_data()
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
[PATCH 2/2] netfilter: nf_osf: avoid passing pointer to local var
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH 1/2] netfilter: nat: never update the UDP checksum when it's 0
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH 0/2] Netfilter fixes for net
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [iptables PATCH v2 00/18] iptables: introduce cache evaluation phase
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH ghak25 v4 3/3] audit: add subj creds to NETFILTER_CFG record to cover async unregister
- From: Richard Guy Briggs <rgb@xxxxxxxxxx>
Re: [PATCH 0/6] Netfilter updates for net-next
- From: David Miller <davem@xxxxxxxxxxxxx>
Re: [PATCH libnetfilter_queue 0/3] pktbuff API updates
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH libnetfilter_queue 0/3] pktbuff API updates
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH libnetfilter_queue 0/3] pktbuff API updates
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
Re: [PATCH libnetfilter_queue 0/3] pktbuff API updates
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
[PATCH 5/6] netfilter: nft_nat: add helper function to set up NAT address and protocol
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH 6/6] netfilter: nft_nat: add netmap support
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH 0/6] Netfilter updates for net-next
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH 3/6] netfilter: nft_nat: return EOPNOTSUPP if type or flags are not supported
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH 4/6] netfilter: nft_nat: set flags from initialization path
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH 2/6] netfilter: nf_tables: allow up to 64 bytes in the set element data area
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH 1/6] netfilter: nf_conntrack: add IPS_HW_OFFLOAD status bit
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH] netfilter: nf_osf: avoid passing pointer to local var
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH libnetfilter_queue 0/3] pktbuff API updates
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH] netfilter: nf_osf: avoid passing pointer to local var
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH libnetfilter_queue 0/3] pktbuff API updates
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
[PATCH] netfilter: nf_osf: avoid passing pointer to local var
- From: Arnd Bergmann <arnd@xxxxxxxx>
Re: [PATCH libnetfilter_queue 0/3] pktbuff API updates
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH ghak25 v4 3/3] audit: add subj creds to NETFILTER_CFG record to cover async unregister
- From: Steve Grubb <sgrubb@xxxxxxxxxx>
Re: Issues with nft typeof
- From: michael-dev <michael-dev@xxxxxxxxxxxxx>
Re: [PATCH ghak25 v4 3/3] audit: add subj creds to NETFILTER_CFG record to cover async unregister
- From: Richard Guy Briggs <rgb@xxxxxxxxxx>
Re: [PATCH libnetfilter_queue 0/3] pktbuff API updates
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
[PATCH nft] nat: transform range to prefix expression when possible
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: Issues with nft typeof
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft] evaluate: incorrect byteorder with typeof and integer_datatype
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH libnetfilter_queue 0/3] pktbuff API updates
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH] iptables: flush stdout after every verbose log.
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH ghak25 v4 3/3] audit: add subj creds to NETFILTER_CFG record to cover async unregister
- From: Paul Moore <paul@xxxxxxxxxxxxxx>
Re: [PATCH] do not typedef socklen_t on Android
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH ghak25 v4 2/3] netfilter: add audit table unregister actions
- From: Paul Moore <paul@xxxxxxxxxxxxxx>
Re: [PATCH ghak25 v4 1/3] audit: tidy and extend netfilter_cfg x_tables and ebtables logging
- From: Paul Moore <paul@xxxxxxxxxxxxxx>
Re: Issues with nft typeof
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH libnetfilter_queue 0/3] pktbuff API updates
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
Re: [PATCH nf-next 3/3] netfilter: Introduce egress hook
- From: Daniel Borkmann <daniel@xxxxxxxxxxxxx>
[PATCH nft,v3 1/9] src: NAT support for intervals in maps
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft,v3 7/9] mnl: restore --debug=netlink output with sets
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft,v3 8/9] tests: py: remove range test with service names
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft,v3 9/9] tests: shell: add NAT mappings tests
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft,v3 6/9] tests: py: concatenation, netmap and nat mappings
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft,v3 4/9] src: add STMT_NAT_F_CONCAT flag and use it
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft,v3 3/9] src: add netmap support
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft,v3 5/9] evaluate: fix crash when handling concatenation without map
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft,v3 2/9] include: resync nf_nat.h kernel header
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft,v3 0/9] netmap support for nft
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[iptables PATCH] tests: shell: Add test for nfbz#1391
- From: Phil Sutter <phil@xxxxxx>
Re: [nft PATCH 2/2] expr: add jool expressions
- From: Alberto Leiva <ydahhrk@xxxxxxxxx>
Issues with nft typeof
- From: michael-dev <michael-dev@xxxxxxxxxxxxx>
Re: [iptables PATCH v2 04/18] nft: cache: Fetch sets per table
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [iptables PATCH v2 03/18] nft: cache: Init per table set list along with chain list
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [iptables PATCH v2 02/18] nft: cache: Eliminate init_chain_cache()
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [iptables PATCH v2 01/18] ebtables-restore: Drop custom table flush routine
- From: Florian Westphal <fw@xxxxxxxxx>
[iptables PATCH v2 10/18] nft: missing nft_fini() call in bridge family
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH v2 04/18] nft: cache: Fetch sets per table
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH v2 01/18] ebtables-restore: Drop custom table flush routine
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH v2 13/18] nft: cache: Introduce struct nft_cache_req
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH v2 14/18] nft-cache: Fetch cache per table
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH v2 02/18] nft: cache: Eliminate init_chain_cache()
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH v2 07/18] nft: calculate cache requirements from list of commands
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH v2 09/18] nft: remove cache build calls
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH v2 16/18] nft: cache: Fetch cache for specific chains
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH v2 18/18] nft: Fix for '-F' in iptables dumps
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH v2 00/18] iptables: introduce cache evaluation phase
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH v2 06/18] nft: split parsing from netlink commands
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH v2 12/18] nft: cache: Improve fake cache integration
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH v2 03/18] nft: cache: Init per table set list along with chain list
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH v2 08/18] nft: restore among support
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH v2 17/18] nft: cache: Optimize caching for flush command
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH v2 11/18] nft: cache: Simplify rule and set fetchers
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH v2 05/18] ebtables-restore: Table line to trigger implicit commit
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH v2 15/18] nft-cache: Introduce __fetch_chain_cache()
- From: Phil Sutter <phil@xxxxxx>
Re: [PATCH libnetfilter_queue 0/3] pktbuff API updates
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [nft PATCH 2/2] expr: add jool expressions
- From: Laura Garcia <nevola@xxxxxxxxx>
WARNING in __nf_unregister_net_hook
- From: syzbot <syzbot+01d3835be1106c3083ba@xxxxxxxxxxxxxxxxxxxxxxxxx>
Re: [PATCH libnetfilter_queue 0/3] pktbuff API updates
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
Re: [nft PATCH 2/2] expr: add jool expressions
- From: Alberto Leiva <ydahhrk@xxxxxxxxx>
Re: [PATCH] do not typedef socklen_t on Android
- From: Maciej Żenczykowski <zenczykowski@xxxxxxxxx>
Re: [PATCH] iptables: flush stdout after every verbose log.
- From: Maciej Żenczykowski <zenczykowski@xxxxxxxxx>
Re: [PATCH] libxt_IDLETIMER.c - fix target v1 help alignment and doc
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH] do not typedef socklen_t on Android
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH] iptables: flush stdout after every verbose log.
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH] xshared.h - include sys/time.h to fix lack of struct timeval declaration
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH] libxt_addrtype.c - include strings.h for the definition of ffs()
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH] libipt_ULOG.c - include strings.h for the definition of ffs()
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nf-next 3/3] netfilter: Introduce egress hook
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH conntrack-tools] conntrack: add support for the IPS_HW_OFFLOAD flag
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH libnetfilter_conntrack] src: add IPS_HW_OFFLOAD flag
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft,v2 1/9] src: NAT support for intervals in maps
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft,v2 9/9] tests: shell: add NAT mappings tests
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft,v2 7/9] mnl: restore --debug=netlink output with sets
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft,v2 6/9] tests: py: concatenation, netmap and nat mappings
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft,v2 8/9] tests: py: remove range test with service names
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft,v2 4/9] src: add STMT_NAT_F_CONCAT flag and use it
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft,v2 3/9] src: add netmap support
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft,v2 5/9] evaluate: fix crash when handling concatenation without map
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft,v2 2/9] include: resync nf_nat.h kernel header
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft,v2 0/9] netmap support for nftables
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH libnftnl] udata: add NFTNL_UDATA_SET_DATA_INTERVAL
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [nf-next V2] netfilter: nf_conntrack, add IPS_HW_OFFLOAD status bit
- From: Bodong Wang <bodong@xxxxxxxxxxxx>
Re: [PATCH net] net: flow_offload: skip hw stats check for FLOW_ACTION_HW_STATS_DISABLED
- From: Jakub Kicinski <kuba@xxxxxxxxxx>
Re: [PATCH libnetfilter_queue 0/3] pktbuff API updates
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH net] net: flow_offload: skip hw stats check for FLOW_ACTION_HW_STATS_DISABLED
- From: Edward Cree <ecree@xxxxxxxxxxxxxx>
Re: [PATCH libnetfilter_queue 0/3] pktbuff API updates
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
Re: [PATCH net] netfilter: nat: never update the UDP checksum when it's 0
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [nf-next V2] netfilter: nf_conntrack, add IPS_HW_OFFLOAD status bit
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nf-next v5 1/1] netfilter: ctnetlink: add kernel side filtering for dump
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH libnetfilter_queue 0/3] pktbuff API updates
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH libnetfilter_queue 3/3] pktbuff: add pktb_reset_network_header() and pktb_set_network_header()
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH libnetfilter_queue 1/3] pktbuff: add pktb_alloc_head() and pktb_build_data()
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH libnetfilter_queue 2/3] example: nf-queue: use pkt_buff
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
FW: pktb_alloc2
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
[nft 1/3] src: NAT support for intervals in maps
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[nft 3/3] src: add netmap support
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[nft 2/3] include: resync nf_nat.h kernel header
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nf-next 5/5] netfilter: nft_nat: add netmap support
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nf-next 2/5] netfilter: nft_nat: return EOPNOTSUPP if type or flags are not supported
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nf-next 3/5] netfilter: nft_nat: set flags from initialization path
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nf-next 4/5] netfilter: nft_nat: add helper function to set up NAT address and protocol
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nf-next 1/5] netfilter: nf_tables: allow up to 64 bytes in the set element data area
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nf-next 0/5] netmap support for nftables
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
mlx5: Panic with conntrack offload
- From: Marcelo Ricardo Leitner <mleitner@xxxxxxxxxx>
[PATCH nft] src: NAT support for intervals in maps
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH net] netfilter: nat: never update the UDP checksum when it's 0
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH nf-next 3/3] netfilter: Introduce egress hook
- From: Lukas Wunner <lukas@xxxxxxxxx>
Re: [PATCH nf-next 3/3] netfilter: Introduce egress hook
- From: Laura Garcia <nevola@xxxxxxxxx>
Re: Problem with flushing nftalbes sets
- From: Laura Garcia <nevola@xxxxxxxxx>
Re: Problem with flushing nftalbes sets
- From: Florian Westphal <fw@xxxxxxxxx>
Problem with flushing nftalbes sets
- From: Milan JEANTON <m.jeanton@xxxxxxxxxxx>
[PATCH ghak25 v4 1/3] audit: tidy and extend netfilter_cfg x_tables and ebtables logging
- From: Richard Guy Briggs <rgb@xxxxxxxxxx>
[PATCH ghak25 v4 2/3] netfilter: add audit table unregister actions
- From: Richard Guy Briggs <rgb@xxxxxxxxxx>
[PATCH ghak25 v4 3/3] audit: add subj creds to NETFILTER_CFG record to cover async unregister
- From: Richard Guy Briggs <rgb@xxxxxxxxxx>
[PATCH ghak25 v4 0/3] Address NETFILTER_CFG issues
- From: Richard Guy Briggs <rgb@xxxxxxxxxx>
Re: [PATCH net-next] net/sched: act_ct: update nf_conn_acct for act_ct SW offload in flowtable
- From: David Miller <davem@xxxxxxxxxxxxx>
Re: [PATCH net] net: flow_offload: skip hw stats check for FLOW_ACTION_HW_STATS_DISABLED
- From: Jiri Pirko <jiri@xxxxxxxxxxx>
Re: [PATCH 4.19 00/40] 4.19.117-rc1 review
- From: Ben Hutchings <ben.hutchings@xxxxxxxxxxxxxxx>
Re: [PATCH ghak90 V8 07/16] audit: add contid support for signalling the audit daemon
- From: Paul Moore <paul@xxxxxxxxxxxxxx>
Re: nfnetlink: This library is not meant as a public API for application developers.
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
Re: [PATCH ghak25 v3 3/3] audit: add subj creds to NETFILTER_CFG record to cover async unregister
- From: Richard Guy Briggs <rgb@xxxxxxxxxx>
Re: [PATCH ghak25 v3 3/3] audit: add subj creds to NETFILTER_CFG record to cover async unregister
- From: Richard Guy Briggs <rgb@xxxxxxxxxx>
Re: [PATCH 0/2] Netfilter fixes for net
- From: David Miller <davem@xxxxxxxxxxxxx>
Re: [PATCH ghak25 v3 3/3] audit: add subj creds to NETFILTER_CFG record to cover async unregister
- From: Steve Grubb <sgrubb@xxxxxxxxxx>
[nf-next V2] netfilter: nf_conntrack, add IPS_HW_OFFLOAD status bit
- From: Bodong Wang <bodong@xxxxxxxxxxxx>
Re: [PATCH] libipt_ULOG.c - include strings.h for the definition of ffs()
- From: Maciej Żenczykowski <zenczykowski@xxxxxxxxx>
Re: [PATCH] libipt_ULOG.c - include strings.h for the definition of ffs()
- From: Maciej Żenczykowski <zenczykowski@xxxxxxxxx>
Re: [PATCH AUTOSEL 5.5 27/35] netfilter: nf_tables: Allow set back-ends to report partial overlaps on insertion
- From: Greg KH <greg@xxxxxxxxx>
[iptables PATCH] xshared: Drop pointless assignment in add_param_to_argv()
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH 2/3] tests: shell: Extend ipt-restore/0004-restore-race_0
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH 3/3] tests: shell: Test -F in dump files
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH 1/3] tests: shell: Improve ipt-restore/0001load-specific-table_0 a bit
- From: Phil Sutter <phil@xxxxxx>
Re: libmnl & rtnetlink questions
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH AUTOSEL 5.5 27/35] netfilter: nf_tables: Allow set back-ends to report partial overlaps on insertion
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: libmnl & rtnetlink questions
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH] libipt_ULOG.c - include strings.h for the definition of ffs()
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH 0/2] Netfilter fixes for net
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH 2/2] netfilter: nat: fix error handling upon registering inet hook
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH 1/2] netfilter: flowtable: Free block_cb when being deleted
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH v1 1/1] Update download script for DBIP database
- From: Jan Engelhardt <jengelh@xxxxxxx>
Re: [PATCH 4.19 00/40] 4.19.117-rc1 review
- From: Greg Kroah-Hartman <gregkh@xxxxxxxxxxxxxxxxxxx>
[PATCH] libxt_IDLETIMER.c - fix target v1 help alignment and doc
- From: Maciej Żenczykowski <zenczykowski@xxxxxxxxx>
Re: [PATCH net-next] net/sched: act_ct: update nf_conn_acct for act_ct SW offload in flowtable
- From: Roi Dayan <roid@xxxxxxxxxxxx>
[PATCH] do not typedef socklen_t on Android
- From: Maciej Żenczykowski <zenczykowski@xxxxxxxxx>
[PATCH] iptables: flush stdout after every verbose log.
- From: Maciej Żenczykowski <zenczykowski@xxxxxxxxx>
[PATCH] xshared.h - include sys/time.h to fix lack of struct timeval declaration
- From: Maciej Żenczykowski <zenczykowski@xxxxxxxxx>
[PATCH] libxt_addrtype.c - include strings.h for the definition of ffs()
- From: Maciej Żenczykowski <zenczykowski@xxxxxxxxx>
[PATCH] libipt_ULOG.c - include strings.h for the definition of ffs()
- From: Maciej Żenczykowski <zenczykowski@xxxxxxxxx>
[PATCH net] netfilter: nat: never update the UDP checksum when it's 0
- From: Guillaume Nault <gnault@xxxxxxxxxx>
[PATCH net-next] net/sched: act_ct: update nf_conn_acct for act_ct SW offload in flowtable
- From: wenxu@xxxxxxxxx
Re: [PATCH 4.19 00/40] 4.19.117-rc1 review
- From: Naresh Kamboju <naresh.kamboju@xxxxxxxxxx>
Re: [nf-next] netfilter: nf_conntrack, add IPS_HW_OFFLOAD status bit
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH net] net: flow_offload: skip hw stats check for FLOW_ACTION_HW_STATS_DISABLED
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [nf-next] netfilter: nf_conntrack, add IPS_HW_OFFLOAD status bit
- From: Bodong Wang <bodong@xxxxxxxxxxxx>
Re: [nf-next] netfilter: nf_conntrack, add IPS_HW_OFFLOAD status bit
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [nf-next] netfilter: nf_conntrack, add IPS_HW_OFFLOAD status bit
- From: Bodong Wang <bodong@xxxxxxxxxxxx>
Re: [nf-next] netfilter: nf_conntrack, add IPS_HW_OFFLOAD status bit
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [nf-next] netfilter: nf_conntrack, add IPS_HW_OFFLOAD status bit
- From: Bodong Wang <bodong@xxxxxxxxxxxx>
Re: [nf-next] netfilter: nf_conntrack, add IPS_HW_OFFLOAD status bit
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[nf-next] netfilter: nf_conntrack, add IPS_HW_OFFLOAD status bit
- From: Bodong Wang <bodong@xxxxxxxxxxxx>
Re: [PATCH net] net: flow_offload: skip hw stats check for FLOW_ACTION_HW_STATS_DISABLED
- From: Jiri Pirko <jiri@xxxxxxxxxxx>
Re: [PATCH net] net: flow_offload: skip hw stats check for FLOW_ACTION_HW_STATS_DISABLED
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH net] net: flow_offload: skip hw stats check for FLOW_ACTION_HW_STATS_DISABLED
- From: Jiri Pirko <jiri@xxxxxxxxxxx>
Re: [PATCH net] net: flow_offload: skip hw stats check for FLOW_ACTION_HW_STATS_DISABLED
- From: Jiri Pirko <jiri@xxxxxxxxxxx>
Re: [PATCH net] net: flow_offload: skip hw stats check for FLOW_ACTION_HW_STATS_DISABLED
- From: Jiri Pirko <jiri@xxxxxxxxxxx>
Re: [PATCH net] net: flow_offload: skip hw stats check for FLOW_ACTION_HW_STATS_DISABLED
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH net] net: flow_offload: skip hw stats check for FLOW_ACTION_HW_STATS_DISABLED
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH net] net: flow_offload: skip hw stats check for FLOW_ACTION_HW_STATS_DISABLED
- From: Jiri Pirko <jiri@xxxxxxxxxxx>
Re: [PATCH net] net: flow_offload: skip hw stats check for FLOW_ACTION_HW_STATS_DISABLED
- From: Edward Cree <ecree@xxxxxxxxxxxxxx>
Re: [PATCH net] net: flow_offload: skip hw stats check for FLOW_ACTION_HW_STATS_DISABLED
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH net] net: flow_offload: skip hw stats check for FLOW_ACTION_HW_STATS_DISABLED
- From: Jiri Pirko <jiri@xxxxxxxxxxx>
Re: [PATCH net] net: flow_offload: skip hw stats check for FLOW_ACTION_HW_STATS_DISABLED
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH net] net: flow_offload: skip hw stats check for FLOW_ACTION_HW_STATS_DISABLED
- From: Jiri Pirko <jiri@xxxxxxxxxxx>
Re: [PATCH net] net: flow_offload: skip hw stats check for FLOW_ACTION_HW_STATS_DISABLED
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH net] net: flow_offload: skip hw stats check for FLOW_ACTION_HW_STATS_DISABLED
- From: Jiri Pirko <jiri@xxxxxxxxxxx>
[PATCH v1 1/1] Update download script for DBIP database
- From: "Philip Prindeville" <philipp@xxxxxxxxxxxxxxxxxxxxx>
[PATCH v1 1/1] xtables-addons: geoip: Update download script for DBIP database
- From: "Philip Prindeville" <philipp@xxxxxxxxxxxxxxxxxxxxx>
Re: [PATCH nftables] build: Allow building from tarballs without yacc/lex
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nftables] doc: Include generated man pages in dist tarball
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: WARNING in nf_nat_unregister_fn
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH net] net: flow_offload: skip hw stats check for FLOW_ACTION_HW_STATS_DISABLED
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [nft PATCH 2/2] expr: add jool expressions
- From: Laura Garcia <nevola@xxxxxxxxx>
Re: WARNING in nf_nat_unregister_fn
- From: Stefano Brivio <sbrivio@xxxxxxxxxx>
Re: [PATCH ghak90 V8 07/16] audit: add contid support for signalling the audit daemon
- From: ebiederm@xxxxxxxxxxxx (Eric W. Biederman)
Re: [PATCH ghak25 v3 3/3] audit: add subj creds to NETFILTER_CFG record to cover async unregister
- From: Paul Moore <paul@xxxxxxxxxxxxxx>
Re: WARNING in nf_nat_unregister_fn
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH nftables] build: Allow building from tarballs without yacc/lex
- From: Matt Turner <mattst88@xxxxxxxxx>
Re: [PATCH nftables] doc: Include generated man pages in dist tarball
- From: Matt Turner <mattst88@xxxxxxxxx>
WARNING in nf_nat_unregister_fn
- From: syzbot <syzbot+33e06702fd6cffc24c40@xxxxxxxxxxxxxxxxxxxxxxxxx>
Re: [PATCH ghak90 V8 07/16] audit: add contid support for signalling the audit daemon
- From: Paul Moore <paul@xxxxxxxxxxxxxx>
Re: [PATCH ghak90 V8 07/16] audit: add contid support for signalling the audit daemon
- From: ebiederm@xxxxxxxxxxxx (Eric W. Biederman)
Re: [PATCH] [nf,v3] idletimer extension : Add alarm timer option
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH] [nf,v3] idletimer extension : Add alarm timer option
- From: Manoj Basapathi <manojbm@xxxxxxxxxxxxxx>
Re: [nft PATCH 2/2] expr: add jool expressions
- From: Alberto Leiva <ydahhrk@xxxxxxxxx>
[PATCH parser_bison] parser_bison: proper ct timeout list initialization
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [nft PATCH 2/2] expr: add jool expressions
- From: Alberto Leiva <ydahhrk@xxxxxxxxx>
[PATCH iptables] nft-shared: skip check for jumpto if cs->target is unset
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH] [nf,v2] idletimer extension : Add alarm timer option
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH iptables] extensions: libxt_CT: add translation for NOTRACK
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH] [nf,v2] idletimer extension : Add alarm timer option
- From: Manoj Basapathi <manojbm@xxxxxxxxxxxxxx>
Re: [PATCH] idletimer extension : Add alarm timer option
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH] idletimer extension : Add alarm timer option
- From: manojbm@xxxxxxxxxxxxxx
Re: [PATCH] idletimer extension : Add alarm timer option
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH] idletimer extension : Add alarm timer option
- From: Manoj Basapathi <manojbm@xxxxxxxxxxxxxx>
Re: [PATCH net] netfilter: flowtable: Free block_cb when being deleted
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [iptables PATCH 0/3] nft: cache: Minor review
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH] libnetfilter_conntrack.pc.in: add LIBMNL_LIBS to Libs.Private
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nft 0/2] Prevent kernel from adding concatenated ranges if they're not supported
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH AUTOSEL 5.5 27/35] netfilter: nf_tables: Allow set back-ends to report partial overlaps on insertion
- From: Sasha Levin <sashal@xxxxxxxxxx>
Re: [PATCH AUTOSEL 5.5 27/35] netfilter: nf_tables: Allow set back-ends to report partial overlaps on insertion
- From: Stefano Brivio <sbrivio@xxxxxxxxxx>
[PATCH nft 2/2] src: Set NFT_SET_CONCAT flag for sets with concatenated ranges
- From: Stefano Brivio <sbrivio@xxxxxxxxxx>
[PATCH nft 1/2] include: Resync nf_tables.h cache copy
- From: Stefano Brivio <sbrivio@xxxxxxxxxx>
[PATCH nft 0/2] Prevent kernel from adding concatenated ranges if they're not supported
- From: Stefano Brivio <sbrivio@xxxxxxxxxx>
libmnl & rtnetlink questions
- From: Ian Pilcher <arequipeno@xxxxxxxxx>
Re: [PATCH AUTOSEL 5.5 27/35] netfilter: nf_tables: Allow set back-ends to report partial overlaps on insertion
- From: Sasha Levin <sashal@xxxxxxxxxx>
[PATCH net] netfilter: flowtable: Free block_cb when being deleted
- From: Roi Dayan <roid@xxxxxxxxxxxx>
[PATCH AUTOSEL 5.6 003/149] netfilter: ctnetlink: be more strict when NF_CONNTRACK_MARK is not set
- From: Sasha Levin <sashal@xxxxxxxxxx>
[PATCH AUTOSEL 5.6 117/149] netfilter: nf_tables: silence a RCU-list warning in nft_table_lookup()
- From: Sasha Levin <sashal@xxxxxxxxxx>
[PATCH AUTOSEL 5.5 002/121] netfilter: ctnetlink: be more strict when NF_CONNTRACK_MARK is not set
- From: Sasha Levin <sashal@xxxxxxxxxx>
[PATCH AUTOSEL 5.5 095/121] netfilter: nf_tables: silence a RCU-list warning in nft_table_lookup()
- From: Sasha Levin <sashal@xxxxxxxxxx>
[PATCH AUTOSEL 5.4 002/108] netfilter: ctnetlink: be more strict when NF_CONNTRACK_MARK is not set
- From: Sasha Levin <sashal@xxxxxxxxxx>
[PATCH AUTOSEL 5.4 083/108] netfilter: nf_tables: silence a RCU-list warning in nft_table_lookup()
- From: Sasha Levin <sashal@xxxxxxxxxx>
[PATCH nft] segtree: broken error reporting with mappings
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: BUG: Anonymous maps with adjacent intervals broken since Linux 5.6
- From: Thorsten Knabe <linux@xxxxxxxxxxxxxxxxx>
Re: BUG: Anonymous maps with adjacent intervals broken since Linux 5.6
- From: Stefano Brivio <sbrivio@xxxxxxxxxx>
[PATCH libnetfilter_queue 1/1] New faster pktb_alloc2 replaces pktb_alloc & pktb_free
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
[PATCH libnetfilter_queue 0/1] src & doc: pktb_alloc2
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
BUG: Anonymous maps with adjacent intervals broken since Linux 5.6
- From: Thorsten Knabe <linux@xxxxxxxxxxxxxxxxx>
Re: ipv6 rpfilter and.. fw mark? problems with wireguard
- From: Andreas Jaggi <andreas.jaggi@xxxxxxxxxxxx>
Re: ipv6 rpfilter and.. fw mark? problems with wireguard
- From: Dominique Martinet <asmadeus@xxxxxxxxxxxxx>
ipv6 rpfilter and.. fw mark? problems with wireguard
- From: Dominique Martinet <asmadeus@xxxxxxxxxxxxx>
Re: [PATCH] ipset: Update byte and packet counters regardless of whether they match
- From: Phil Sutter <phil@xxxxxx>
Re: [PATCH] ipset: Update byte and packet counters regardless of whether they match
- From: Jozsef Kadlecsik <kadlec@xxxxxxxxxxxxx>
Re: [PATCH] ipset: Update byte and packet counters regardless of whether they match
- From: Stefano Brivio <sbrivio@xxxxxxxxxx>
Re: [PATCH] ipset: Update byte and packet counters regardless of whether they match
- From: Jozsef Kadlecsik <kadlec@xxxxxxxxxxxxx>
Re: [nft PATCH 2/2] expr: add jool expressions
- From: Laura Garcia <nevola@xxxxxxxxx>
Re: [PATCH] ipset: Update byte and packet counters regardless of whether they match
- From: Phil Sutter <phil@xxxxxx>
Re: [PATCH 0/7] Netfilter fixes for net
- From: David Miller <davem@xxxxxxxxxxxxx>
[PATCH 1/7] netfilter: nft_set_rbtree: Drop spurious condition for overlap detection on insertion
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH 4/7] netfilter: nf_tables: do not leave dangling pointer in nf_tables_set_alloc_name
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH 7/7] netfilter: nf_tables: reintroduce the NFT_SET_CONCAT flag
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH 5/7] netfilter: ipset: Pass lockdep expression to RCU lists
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH 6/7] netfilter: nf_tables: report EOPNOTSUPP on unsupported flags/object type
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH 3/7] netfilter: xt_IDLETIMER: target v1 - match Android layout
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH 2/7] netfilter: nf_tables: do not update stateful expressions if lookup is inverted
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH 0/7] Netfilter fixes for net
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nftables] build: Allow building from tarballs without yacc/lex
- From: Matt Turner <mattst88@xxxxxxxxx>
[iptables PATCH] ebtables-restore: Table line to trigger implicit commit
- From: Phil Sutter <phil@xxxxxx>
[PATCH nftables] doc: Include generated man pages in dist tarball
- From: Matt Turner <mattst88@xxxxxxxxx>
[nft PATCH 2/2] expr: add jool expressions
- From: Alberto Leiva Popper <ydahhrk@xxxxxxxxx>
[libnftnl PATCH 1/2] expr: add jool support
- From: Alberto Leiva Popper <ydahhrk@xxxxxxxxx>
Re: [PATCH nf 2/2] netfilter: nf_tables: reintroduce the NFT_SET_CONCAT flag
- From: Stefano Brivio <sbrivio@xxxxxxxxxx>
[PATCH nf 2/2] netfilter: nf_tables: reintroduce the NFT_SET_CONCAT flag
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nf 1/2] netfilter: nf_tables: report EOPNOTSUPP on unsupported flags/object type
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[iptables PATCH 1/3] nft: cache: Eliminate init_chain_cache()
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH 2/3] nft: cache: Init per table set list along with chain list
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH 3/3] nft: cache: Fetch sets per table
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH 0/3] nft: cache: Minor review
- From: Phil Sutter <phil@xxxxxx>
Re: [PATCH AUTOSEL 5.5 27/35] netfilter: nf_tables: Allow set back-ends to report partial overlaps on insertion
- From: Stefano Brivio <sbrivio@xxxxxxxxxx>
[PATCH AUTOSEL 5.5 28/35] netfilter: nft_set_rbtree: Introduce and use nft_rbtree_interval_start()
- From: Sasha Levin <sashal@xxxxxxxxxx>
[PATCH AUTOSEL 5.5 29/35] netfilter: nft_set_rbtree: Detect partial overlaps on insertion
- From: Sasha Levin <sashal@xxxxxxxxxx>
[PATCH AUTOSEL 5.4 24/32] netfilter: nf_tables: Allow set back-ends to report partial overlaps on insertion
- From: Sasha Levin <sashal@xxxxxxxxxx>
[PATCH AUTOSEL 5.4 26/32] netfilter: nft_set_rbtree: Detect partial overlaps on insertion
- From: Sasha Levin <sashal@xxxxxxxxxx>
[PATCH AUTOSEL 5.4 25/32] netfilter: nft_set_rbtree: Introduce and use nft_rbtree_interval_start()
- From: Sasha Levin <sashal@xxxxxxxxxx>
[PATCH AUTOSEL 4.19 08/13] netfilter: nf_tables: Allow set back-ends to report partial overlaps on insertion
- From: Sasha Levin <sashal@xxxxxxxxxx>
[PATCH AUTOSEL 4.19 09/13] netfilter: nft_set_rbtree: Introduce and use nft_rbtree_interval_start()
- From: Sasha Levin <sashal@xxxxxxxxxx>
[PATCH AUTOSEL 4.19 10/13] netfilter: nft_set_rbtree: Detect partial overlaps on insertion
- From: Sasha Levin <sashal@xxxxxxxxxx>
[PATCH AUTOSEL 4.14 6/9] netfilter: nf_tables: Allow set back-ends to report partial overlaps on insertion
- From: Sasha Levin <sashal@xxxxxxxxxx>
[PATCH AUTOSEL 4.9 3/5] netfilter: nf_tables: Allow set back-ends to report partial overlaps on insertion
- From: Sasha Levin <sashal@xxxxxxxxxx>
[PATCH AUTOSEL 5.5 27/35] netfilter: nf_tables: Allow set back-ends to report partial overlaps on insertion
- From: Sasha Levin <sashal@xxxxxxxxxx>
Re: [PATCH] nft_set_pipapo: remove unused pointer lt
- From: Colin Ian King <colin.king@xxxxxxxxxxxxx>
Re: [PATCH] nft_set_pipapo: remove unused pointer lt
- From: Stefano Brivio <sbrivio@xxxxxxxxxx>
[PATCH] nft_set_pipapo: remove unused pointer lt
- From: Colin King <colin.king@xxxxxxxxxxxxx>
Re: [PATCH] netfilter: ipset: Pass lockdep expression to RCU lists
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH] netfilter: ipset: Pass lockdep expression to RCU lists
- From: Amol Grover <frextrite@xxxxxxxxx>
Re: [PATCH libnetfilter_queue v2] src: Add faster alternatives to pktb_alloc()
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
Re: [PATCH] netfilter: IDLETIMER target v1 - match Android layout
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH] netfilter: IDLETIMER target v1 - match Android layout
- From: Maciej Żenczykowski <zenczykowski@xxxxxxxxx>
Re: [PATCH] netfilter: IDLETIMER target v1 - match Android layout
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nf v2] nft_set_rbtree: Drop spurious condition for overlap detection on insertion
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nf 1/1] netfilter: nf_tables: do not leave dangling pointer in nf_tables_set_alloc_name
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
flowtable crash in nf_flow_table_indr_block_cb
- From: wenxu <wenxu@xxxxxxxxx>
segfault while trying to load module br_netfilter
- From: Benjamin Doppler <benjamin.doppler@xxxxxxxxx>
Re: [PATCH] segtree: bail out on concatenations
- From: Stefano Brivio <sbrivio@xxxxxxxxxx>
Re: [PATCH] segtree: bail out on concatenations
- From: Stefano Brivio <sbrivio@xxxxxxxxxx>
Re: [PATCH] segtree: bail out on concatenations
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH] segtree: bail out on concatenations
- From: Stefano Brivio <sbrivio@xxxxxxxxxx>
Re: [PATCH] segtree: bail out on concatenations
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH] segtree: bail out on concatenations
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH] segtree: bail out on concatenations
- From: Stefano Brivio <sbrivio@xxxxxxxxxx>
Re: [PATCH] segtree: bail out on concatenations
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH] segtree: bail out on concatenations
- From: Stefano Brivio <sbrivio@xxxxxxxxxx>
[PATCH] segtree: bail out on concatenations
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [ANNOUNCE] nftables 0.9.4 release
- From: Brett Mastbergen <bmastbergen@xxxxxxxxxxxx>
Re: [ANNOUNCE] nftables 0.9.4 release
- From: sbezverk <sbezverk@xxxxxxxxx>
Re: [ANNOUNCE] nftables 0.9.4 release
- From: Phil Sutter <phil@xxxxxx>
Re: [ANNOUNCE] nftables 0.9.4 release
- From: sbezverk <sbezverk@xxxxxxxxx>
[ANNOUNCE] conntrack-tools 1.4.6
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[ANNOUNCE] libnetfilter_conntrack 1.0.8 release
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nf 1/1] netfilter: nf_tables: do not leave dangling pointer in nf_tables_set_alloc_name
- From: Eric Dumazet <edumazet@xxxxxxxxxx>
[PATCH libnetfilter_conntrack] expect: parse_mnl: fix gcc compile warning
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nft] tests: shell: add typeof with concatenations
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH nft] doc: add hashing expressions description
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nft] concat: provide proper dtype when parsing typeof udata
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft] tests: shell: add typeof with concatenations
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>

[Index of Archives] [LARTC] [Berkeley Packet Filter] [Bugtraq] [Yosemite News] [Samba]