Linux TCP/IP Netfilter Devel
[Prev Page][Next Page]
- Re: [PATCH 00/14] replace call_rcu by kfree_rcu for simple kmem_cache_free callback
- From: "Paul E. McKenney" <paulmck@xxxxxxxxxx>
- Re: [PATCH 00/14] replace call_rcu by kfree_rcu for simple kmem_cache_free callback
- From: Uladzislau Rezki <urezki@xxxxxxxxx>
- [PATCH -stable,5.4] netfilter: nftables: exthdr: fix 4-byte stack OOB write
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH -stable,5.4] netfilter: nftables: exthdr: fix 4-byte stack OOB write
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH v4 bpf-next 3/3] selftests/bpf: Add selftest for bpf_xdp_flow_lookup kfunc
- From: Daniel Xu <dxu@xxxxxxxxx>
- Re: [PATCH v4 bpf-next 3/3] selftests/bpf: Add selftest for bpf_xdp_flow_lookup kfunc
- From: Daniel Borkmann <daniel@xxxxxxxxxxxxx>
- Re: [PATCH 00/14] replace call_rcu by kfree_rcu for simple kmem_cache_free callback
- From: "Paul E. McKenney" <paulmck@xxxxxxxxxx>
- Re: [PATCH 00/14] replace call_rcu by kfree_rcu for simple kmem_cache_free callback
- From: "Paul E. McKenney" <paulmck@xxxxxxxxxx>
- Re: [PATCH 00/14] replace call_rcu by kfree_rcu for simple kmem_cache_free callback
- From: "Paul E. McKenney" <paulmck@xxxxxxxxxx>
- Re: [nf-next PATCH 2/2] netfilter: xt_recent: Largely lift restrictions on max hitcount value
- From: Florian Westphal <fw@xxxxxxxxx>
- [nf-next PATCH 2/2] netfilter: xt_recent: Largely lift restrictions on max hitcount value
- From: Phil Sutter <phil@xxxxxx>
- [nf-next PATCH 1/2] netfilter: xt_reent: Reduce size of struct recent_entry::nstamps
- From: Phil Sutter <phil@xxxxxx>
- [nf-next PATCH 0/2] netfilter: xt_recent: Allow for much larger hitcount values
- From: Phil Sutter <phil@xxxxxx>
- Re: [PATCH 00/14] replace call_rcu by kfree_rcu for simple kmem_cache_free callback
- From: Jakub Kicinski <kuba@xxxxxxxxxx>
- Re: [PATCH 00/14] replace call_rcu by kfree_rcu for simple kmem_cache_free callback
- From: "Jason A. Donenfeld" <Jason@xxxxxxxxx>
- Re: [PATCH 00/14] replace call_rcu by kfree_rcu for simple kmem_cache_free callback
- From: Uladzislau Rezki <urezki@xxxxxxxxx>
- Re: [PATCH 00/14] replace call_rcu by kfree_rcu for simple kmem_cache_free callback
- From: "Paul E. McKenney" <paulmck@xxxxxxxxxx>
- Re: [PATCH 00/14] replace call_rcu by kfree_rcu for simple kmem_cache_free callback
- From: "Paul E. McKenney" <paulmck@xxxxxxxxxx>
- Re: [PATCH 00/14] replace call_rcu by kfree_rcu for simple kmem_cache_free callback
- From: "Jason A. Donenfeld" <Jason@xxxxxxxxx>
- Re: [PATCH 00/14] replace call_rcu by kfree_rcu for simple kmem_cache_free callback
- From: "Jason A. Donenfeld" <Jason@xxxxxxxxx>
- [PATCH 4.19 179/213] netfilter: nf_tables: unregister flowtable hooks on netns exit
- From: Greg Kroah-Hartman <gregkh@xxxxxxxxxxxxxxxxxxx>
- [PATCH 4.19 188/213] netfilter: nft_dynset: relax superfluous check on set updates
- From: Greg Kroah-Hartman <gregkh@xxxxxxxxxxxxxxxxxxx>
- [PATCH 4.19 187/213] netfilter: nft_dynset: report EOPNOTSUPP on missing set feature
- From: Greg Kroah-Hartman <gregkh@xxxxxxxxxxxxxxxxxxx>
- [PATCH 4.19 186/213] netfilter: nftables: exthdr: fix 4-byte stack OOB write
- From: Greg Kroah-Hartman <gregkh@xxxxxxxxxxxxxxxxxxx>
- [PATCH 4.19 185/213] netfilter: nft_dynset: fix timeouts later than 23 days
- From: Greg Kroah-Hartman <gregkh@xxxxxxxxxxxxxxxxxxx>
- [PATCH 4.19 184/213] netfilter: nf_tables: bogus EBUSY when deleting flowtable after flush (for 4.19)
- From: Greg Kroah-Hartman <gregkh@xxxxxxxxxxxxxxxxxxx>
- [PATCH 4.19 183/213] netfilter: nf_tables: disable toggling dormant table state more than once
- From: Greg Kroah-Hartman <gregkh@xxxxxxxxxxxxxxxxxxx>
- [PATCH 4.19 182/213] netfilter: nf_tables: fix table flag updates
- From: Greg Kroah-Hartman <gregkh@xxxxxxxxxxxxxxxxxxx>
- [PATCH 4.19 181/213] netfilter: nftables: update table flags from the commit phase
- From: Greg Kroah-Hartman <gregkh@xxxxxxxxxxxxxxxxxxx>
- [PATCH 4.19 198/213] netfilter: nf_tables: discard table flag update with pending basechain deletion
- From: Greg Kroah-Hartman <gregkh@xxxxxxxxxxxxxxxxxxx>
- [PATCH 4.19 197/213] netfilter: nf_tables: reject new basechain after table flag update
- From: Greg Kroah-Hartman <gregkh@xxxxxxxxxxxxxxxxxxx>
- [PATCH 4.19 196/213] netfilter: nf_tables: mark set as dead when unbinding anonymous set with timeout
- From: Greg Kroah-Hartman <gregkh@xxxxxxxxxxxxxxxxxxx>
- [PATCH 4.19 195/213] netfilter: nf_tables: do not compare internal table flags on updates
- From: Greg Kroah-Hartman <gregkh@xxxxxxxxxxxxxxxxxxx>
- [PATCH 4.19 194/213] netfilter: nf_tables: allow NFPROTO_INET in nft_(match/target)_validate()
- From: Greg Kroah-Hartman <gregkh@xxxxxxxxxxxxxxxxxxx>
- [PATCH 4.19 193/213] netfilter: nf_tables: set dormant flag on hook register failure
- From: Greg Kroah-Hartman <gregkh@xxxxxxxxxxxxxxxxxxx>
- [PATCH 4.19 192/213] netfilter: nft_set_rbtree: skip end interval element from gc
- From: Greg Kroah-Hartman <gregkh@xxxxxxxxxxxxxxxxxxx>
- [PATCH 4.19 191/213] netfilter: nf_tables: validate NFPROTO_* family
- From: Greg Kroah-Hartman <gregkh@xxxxxxxxxxxxxxxxxxx>
- [PATCH 4.19 190/213] netfilter: nf_tables: skip dead set elements in netlink dump
- From: Greg Kroah-Hartman <gregkh@xxxxxxxxxxxxxxxxxxx>
- [PATCH 4.19 189/213] netfilter: nf_tables: mark newset as dead on transaction abort
- From: Greg Kroah-Hartman <gregkh@xxxxxxxxxxxxxxxxxxx>
- [PATCH 4.19 180/213] netfilter: nf_tables: double hook unregistration in netns path
- From: Greg Kroah-Hartman <gregkh@xxxxxxxxxxxxxxxxxxx>
- [PATCH 4.19 178/213] netfilter: nf_tables: fix memleak when more than 255 elements expired
- From: Greg Kroah-Hartman <gregkh@xxxxxxxxxxxxxxxxxxx>
- [PATCH 4.19 177/213] netfilter: nft_set_hash: try later when GC hits EAGAIN on iteration
- From: Greg Kroah-Hartman <gregkh@xxxxxxxxxxxxxxxxxxx>
- [PATCH 4.19 176/213] netfilter: nft_set_rbtree: use read spinlock to avoid datapath contention
- From: Greg Kroah-Hartman <gregkh@xxxxxxxxxxxxxxxxxxx>
- [PATCH 4.19 175/213] netfilter: nft_set_rbtree: skip sync GC for new elements in this transaction
- From: Greg Kroah-Hartman <gregkh@xxxxxxxxxxxxxxxxxxx>
- [PATCH 4.19 173/213] netfilter: nf_tables: GC transaction race with abort path
- From: Greg Kroah-Hartman <gregkh@xxxxxxxxxxxxxxxxxxx>
- [PATCH 4.19 174/213] netfilter: nf_tables: defer gc run if previous batch is still pending
- From: Greg Kroah-Hartman <gregkh@xxxxxxxxxxxxxxxxxxx>
- [PATCH 4.19 172/213] netfilter: nf_tables: GC transaction race with netns dismantle
- From: Greg Kroah-Hartman <gregkh@xxxxxxxxxxxxxxxxxxx>
- [PATCH 4.19 171/213] netfilter: nf_tables: fix GC transaction races with netns and netlink event exit path
- From: Greg Kroah-Hartman <gregkh@xxxxxxxxxxxxxxxxxxx>
- [PATCH 4.19 170/213] netfilter: nf_tables: remove busy mark and gc batch API
- From: Greg Kroah-Hartman <gregkh@xxxxxxxxxxxxxxxxxxx>
- [PATCH 4.19 169/213] netfilter: nf_tables: adapt set backend to use GC transaction API
- From: Greg Kroah-Hartman <gregkh@xxxxxxxxxxxxxxxxxxx>
- [PATCH 4.19 168/213] netfilter: nf_tables: GC transaction API to avoid race with control plane
- From: Greg Kroah-Hartman <gregkh@xxxxxxxxxxxxxxxxxxx>
- [PATCH 4.19 167/213] netfilter: nf_tables: dont skip expired elements during walk
- From: Greg Kroah-Hartman <gregkh@xxxxxxxxxxxxxxxxxxx>
- [PATCH 4.19 166/213] netfilter: nft_set_rbtree: fix overlap expiration walk
- From: Greg Kroah-Hartman <gregkh@xxxxxxxxxxxxxxxxxxx>
- [PATCH 4.19 165/213] netfilter: nft_set_rbtree: fix null deref on element insertion
- From: Greg Kroah-Hartman <gregkh@xxxxxxxxxxxxxxxxxxx>
- [PATCH 4.19 164/213] netfilter: nft_set_rbtree: Switch to node list walk for overlap detection
- From: Greg Kroah-Hartman <gregkh@xxxxxxxxxxxxxxxxxxx>
- [PATCH 4.19 163/213] netfilter: nft_set_rbtree: Add missing expired checks
- From: Greg Kroah-Hartman <gregkh@xxxxxxxxxxxxxxxxxxx>
- [PATCH 4.19 162/213] netfilter: nft_set_rbtree: allow loose matching of closing element in interval
- From: Greg Kroah-Hartman <gregkh@xxxxxxxxxxxxxxxxxxx>
- [PATCH 4.19 161/213] netfilter: nf_tables: drop map element references from preparation phase
- From: Greg Kroah-Hartman <gregkh@xxxxxxxxxxxxxxxxxxx>
- [PATCH 4.19 160/213] netfilter: nftables: rename set element data activation/deactivation functions
- From: Greg Kroah-Hartman <gregkh@xxxxxxxxxxxxxxxxxxx>
- [PATCH 4.19 159/213] netfilter: nf_tables: pass context to nft_set_destroy()
- From: Greg Kroah-Hartman <gregkh@xxxxxxxxxxxxxxxxxxx>
- Re: [PATCH -stable,4.19.x 00/40] Netfilter fixes for -stable
- From: Greg KH <gregkh@xxxxxxxxxxxxxxxxxxx>
- Re: [PATCH 00/14] replace call_rcu by kfree_rcu for simple kmem_cache_free callback
- From: "Paul E. McKenney" <paulmck@xxxxxxxxxx>
- Re: [PATCH libnetfilter_queue] Stop a memory leak in nfq_close
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
- [no subject]
- [PATCH -stable,4.19.x 40/40] netfilter: nf_tables: discard table flag update with pending basechain deletion
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH -stable,4.19.x 38/40] netfilter: nf_tables: mark set as dead when unbinding anonymous set with timeout
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH -stable,4.19.x 39/40] netfilter: nf_tables: reject new basechain after table flag update
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH -stable,4.19.x 37/40] netfilter: nf_tables: do not compare internal table flags on updates
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH -stable,4.19.x 36/40] netfilter: nf_tables: allow NFPROTO_INET in nft_(match/target)_validate()
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH -stable,4.19.x 35/40] netfilter: nf_tables: set dormant flag on hook register failure
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH -stable,4.19.x 33/40] netfilter: nf_tables: validate NFPROTO_* family
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH -stable,4.19.x 34/40] netfilter: nft_set_rbtree: skip end interval element from gc
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH -stable,4.19.x 32/40] netfilter: nf_tables: skip dead set elements in netlink dump
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH -stable,4.19.x 31/40] netfilter: nf_tables: mark newset as dead on transaction abort
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH -stable,4.19.x 30/40] netfilter: nft_dynset: relax superfluous check on set updates
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH -stable,4.19.x 29/40] netfilter: nft_dynset: report EOPNOTSUPP on missing set feature
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH -stable,4.19.x 28/40] netfilter: nftables: exthdr: fix 4-byte stack OOB write
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH -stable,4.19.x 27/40] netfilter: nft_dynset: fix timeouts later than 23 days
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH -stable,4.19.x 26/40] netfilter: nf_tables: bogus EBUSY when deleting flowtable after flush (for 4.19)
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH -stable,4.19.x 24/40] netfilter: nf_tables: fix table flag updates
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH -stable,4.19.x 25/40] netfilter: nf_tables: disable toggling dormant table state more than once
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH -stable,4.19.x 23/40] netfilter: nftables: update table flags from the commit phase
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH -stable,4.19.x 22/40] netfilter: nf_tables: double hook unregistration in netns path
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH -stable,4.19.x 21/40] netfilter: nf_tables: unregister flowtable hooks on netns exit
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH -stable,4.19.x 20/40] netfilter: nf_tables: fix memleak when more than 255 elements expired
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH -stable,4.19.x 18/40] netfilter: nft_set_rbtree: use read spinlock to avoid datapath contention
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH -stable,4.19.x 19/40] netfilter: nft_set_hash: try later when GC hits EAGAIN on iteration
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH -stable,4.19.x 10/40] netfilter: nf_tables: GC transaction API to avoid race with control plane
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH -stable,4.19.x 16/40] netfilter: nf_tables: defer gc run if previous batch is still pending
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH -stable,4.19.x 17/40] netfilter: nft_set_rbtree: skip sync GC for new elements in this transaction
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH -stable,4.19.x 14/40] netfilter: nf_tables: GC transaction race with netns dismantle
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH -stable,4.19.x 15/40] netfilter: nf_tables: GC transaction race with abort path
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH -stable,4.19.x 13/40] netfilter: nf_tables: fix GC transaction races with netns and netlink event exit path
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH -stable,4.19.x 12/40] netfilter: nf_tables: remove busy mark and gc batch API
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH -stable,4.19.x 11/40] netfilter: nf_tables: adapt set backend to use GC transaction API
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH -stable,4.19.x 09/40] netfilter: nf_tables: don't skip expired elements during walk
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH -stable,4.19.x 08/40] netfilter: nft_set_rbtree: fix overlap expiration walk
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH -stable,4.19.x 07/40] netfilter: nft_set_rbtree: fix null deref on element insertion
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH -stable,4.19.x 06/40] netfilter: nft_set_rbtree: Switch to node list walk for overlap detection
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH -stable,4.19.x 05/40] netfilter: nft_set_rbtree: Add missing expired checks
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH -stable,4.19.x 03/40] netfilter: nf_tables: drop map element references from preparation phase
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH -stable,4.19.x 04/40] netfilter: nft_set_rbtree: allow loose matching of closing element in interval
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH -stable,4.19.x 02/40] netfilter: nftables: rename set element data activation/deactivation functions
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH -stable,4.19.x 01/40] netfilter: nf_tables: pass context to nft_set_destroy()
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH -stable,4.19.x 00/40] Netfilter fixes for -stable
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH 00/14] replace call_rcu by kfree_rcu for simple kmem_cache_free callback
- From: "Jason A. Donenfeld" <Jason@xxxxxxxxx>
- [PATCH nft 4/4] tests: shell: skip NFTA_RULE_POSITION_ID tests if kernel does not support it
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nft 3/4] tests: shell: skip ipsec tests if kernel does not support it
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nft 2/4] tests: shell: skip ip option tests if kernel does not support it
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nft 1/4] tests: shell: add dependencies to skip unsupported tests in older kernels
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH net 1/3] netfilter: nft_inner: validate mandatory meta and payload
- From: patchwork-bot+netdevbpf@xxxxxxxxxx
- Re: [PATCH 00/14] replace call_rcu by kfree_rcu for simple kmem_cache_free callback
- From: "Jason A. Donenfeld" <Jason@xxxxxxxxx>
- Re: [PATCH 00/14] replace call_rcu by kfree_rcu for simple kmem_cache_free callback
- From: "Paul E. McKenney" <paulmck@xxxxxxxxxx>
- Re: [PATCH 00/14] replace call_rcu by kfree_rcu for simple kmem_cache_free callback
- From: Jens Axboe <axboe@xxxxxxxxx>
- Re: [PATCH 00/14] replace call_rcu by kfree_rcu for simple kmem_cache_free callback
- From: Jakub Kicinski <kuba@xxxxxxxxxx>
- Re: [PATCH 00/14] replace call_rcu by kfree_rcu for simple kmem_cache_free callback
- From: "Paul E. McKenney" <paulmck@xxxxxxxxxx>
- Re: [PATCH 00/14] replace call_rcu by kfree_rcu for simple kmem_cache_free callback
- From: Jakub Kicinski <kuba@xxxxxxxxxx>
- Re: [iptables PATCH] ebtables: Include 'bitmask' value when comparing rules
- From: Phil Sutter <phil@xxxxxx>
- Re: [iptables PATCH] extensions: libxt_sctp: Add an extra assert()
- From: Phil Sutter <phil@xxxxxx>
- Re: [iptables PATCH] man: extensions: recent: Clarify default value of ip_list_hash_size
- From: Phil Sutter <phil@xxxxxx>
- Re: [iptables PATCH] man: recent: Adjust to changes around ip_pkt_list_tot parameter
- From: Phil Sutter <phil@xxxxxx>
- [PATCH v6 net-next 07/15] netfilter: br_netfilter: Use nested-BH locking for brnf_frag_data_storage.
- From: Sebastian Andrzej Siewior <bigeasy@xxxxxxxxxxxxx>
- Re: [iptables PATCH] man: recent: Adjust to changes around ip_pkt_list_tot parameter
- From: Fabio Pedretti <pedretti.fabio@xxxxxxxxx>
- [iptables PATCH] man: recent: Adjust to changes around ip_pkt_list_tot parameter
- From: Phil Sutter <phil@xxxxxx>
- Re: [PATCH 1/2 v5.10] netfilter: nf_tables: restrict tunnel object to NFPROTO_NETDEV
- From: Greg KH <gregkh@xxxxxxxxxxxxxxxxxxx>
- Re: [PATCH v6.1] netfilter: nf_tables: use timestamp to check for set element timeout
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [iptables PATCH] man: extensions: recent: Clarify default value of ip_list_hash_size
- From: Phil Sutter <phil@xxxxxx>
- [iptables PATCH] ebtables: Include 'bitmask' value when comparing rules
- From: Phil Sutter <phil@xxxxxx>
- [iptables PATCH] extensions: libxt_sctp: Add an extra assert()
- From: Phil Sutter <phil@xxxxxx>
- Re: let nftables indicate incomplete dissections
- From: Phil Sutter <phil@xxxxxx>
- let nftables indicate incomplete dissections
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [PATCH libnetfilter_queue] Stop a memory leak in nfq_close
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net 3/3] netfilter: Use flowlabel flow key when re-routing mangled packets
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net 2/3] netfilter: ipset: Fix race between namespace cleanup and gc in the list:set type
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net 0/3] Netfilter fixes for net
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net 1/3] netfilter: nft_inner: validate mandatory meta and payload
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nft,v2] monitor: too large shift exponent displaying payload expression
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nft,v2] cmd: skip variable set elements when collapsing commands
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH 1/1] netfilter: ipset: Fix race between namespace cleanup and gc in the list:set type
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH nf] netfilter: Use flowlabel flow key when re-routing mangled packets
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nft] cmd: skip variable set elements when collapsing commands
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [RFC PATCH v2 00/12] Socket type control for Landlock
- From: Mikhail Ivanov <ivanov.mikhail1@xxxxxxxxxxxxxxxxxxx>
- Re: Testing stable backports for netfilter
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: Testing stable backports for netfilter
- From: Vegard Nossum <vegard.nossum@xxxxxxxxxx>
- Re: [PATCH v3 0/2] netfilter: nfqueue: incorrect sctp checksum
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: Testing stable backports for netfilter
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nf-next,v4 2/2] selftests: net: netfilter: nft_queue.sh: sctp coverage
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nf-next,v4 1/2] netfilter: nfnetlink_queue: unbreak SCTP traffic
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH net v2 2/3] selftests: add selftest for the SRv6 End.DX4 behavior with netfilter
- From: Jianguo Wu <wujianguo106@xxxxxxx>
- Re: Testing stable backports for netfilter
- From: Harshit Mogalapalli <harshit.m.mogalapalli@xxxxxxxxxx>
- Re: [PATCH libnetfilter_queue] Stop a memory leak in nfq_close
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
- Re: Testing stable backports for netfilter
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Testing stable backports for netfilter
- From: Harshit Mogalapalli <harshit.m.mogalapalli@xxxxxxxxxx>
- [PATCH nft] cmd: provide better hint if chain is already declared with different type/hook/priority
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nft] monitor: too large shift exponent displaying payload expression
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [RFC PATCH v2 00/12] Socket type control for Landlock
- From: "Günther Noack" <gnoack@xxxxxxxxxx>
- [PATCH 14/14] netfilter: replace call_rcu by kfree_rcu for simple kmem_cache_free callback
- From: Julia Lawall <Julia.Lawall@xxxxxxxx>
- [PATCH 00/14] replace call_rcu by kfree_rcu for simple kmem_cache_free callback
- From: Julia Lawall <Julia.Lawall@xxxxxxxx>
- Re: [PATCH net-next 1/2] net: add and use skb_get_hash_net
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH v6.1] netfilter: nf_tables: use timestamp to check for set element timeout
- From: Kuntal Nayak <kuntal.nayak@xxxxxxxxxxxx>
- [PATCH 2/2 v5.10] netfilter: nf_tables: Fix potential data-race in __nft_obj_type_get()
- From: Kuntal Nayak <kuntal.nayak@xxxxxxxxxxxx>
- [PATCH 1/2 v5.10] netfilter: nf_tables: restrict tunnel object to NFPROTO_NETDEV
- From: Kuntal Nayak <kuntal.nayak@xxxxxxxxxxxx>
- Re: [RFC PATCH v2 02/12] landlock: Add hook on socket creation
- From: Mikhail Ivanov <ivanov.mikhail1@xxxxxxxxxxxxxxxxxxx>
- Re: [PATCH net-next 2/2] net: add and use __skb_get_hash_symmetric_net
- From: Willem de Bruijn <willemdebruijn.kernel@xxxxxxxxx>
- Re: [PATCH net-next 1/2] net: add and use skb_get_hash_net
- From: Willem de Bruijn <willemdebruijn.kernel@xxxxxxxxx>
- Re: [RFC PATCH v2 00/12] Socket type control for Landlock
- From: Mikhail Ivanov <ivanov.mikhail1@xxxxxxxxxxxxxxxxxxx>
- Re: [RFC PATCH v2 01/12] landlock: Support socket access-control
- From: Mikhail Ivanov <ivanov.mikhail1@xxxxxxxxxxxxxxxxxxx>
- Re: [PATCH net-next 1/2] net: add and use skb_get_hash_net
- From: kernel test robot <lkp@xxxxxxxxx>
- Re: [PATCH net-next 2/2] net: add and use __skb_get_hash_symmetric_net
- From: Eric Dumazet <edumazet@xxxxxxxxxx>
- Re: [PATCH net-next 1/2] net: add and use skb_get_hash_net
- From: Eric Dumazet <edumazet@xxxxxxxxxx>
- [PATCH net-next 2/2] net: add and use __skb_get_hash_symmetric_net
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH net-next 1/2] net: add and use skb_get_hash_net
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH net-next 0/2] net: flow dissector: allow explicit passing of netns
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH v5 net-next 07/15] netfilter: br_netfilter: Use nested-BH locking for brnf_frag_data_storage.
- From: Sebastian Andrzej Siewior <bigeasy@xxxxxxxxxxxxx>
- Re: [RFC PATCH v2 00/12] Socket type control for Landlock
- From: "Günther Noack" <gnoack@xxxxxxxxxx>
- Re: [PATCH nf] netfilter: nf_reject: init skb->dev for reset packet
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [PATCH nf] netfilter: nf_reject: init skb->dev for reset packet
- From: Willem de Bruijn <willemdebruijn.kernel@xxxxxxxxx>
- Re: [PATCH nf] netfilter: nf_reject: init skb->dev for reset packet
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [PATCH nf] netfilter: nf_reject: init skb->dev for reset packet
- From: Willem de Bruijn <willemdebruijn.kernel@xxxxxxxxx>
- Re: [PATCH nf] netfilter: nf_reject: init skb->dev for reset packet
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [PATCH nf] netfilter: nf_reject: init skb->dev for reset packet
- From: Willem de Bruijn <willemdebruijn.kernel@xxxxxxxxx>
- Re: [RFC PATCH v2 00/12] Socket type control for Landlock
- From: "Günther Noack" <gnoack@xxxxxxxxxx>
- Re: [PATCH nf] netfilter: restore default behavior for nf_conntrack_events
- From: Nicolas Dichtel <nicolas.dichtel@xxxxxxxxx>
- Re: [PATCH nf] netfilter: nf_reject: init skb->dev for reset packet
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [RFC PATCH v2 00/12] Socket type control for Landlock
- From: Mikhail Ivanov <ivanov.mikhail1@xxxxxxxxxxxxxxxxxxx>
- [PATCH nf] netfilter: Use flowlabel flow key when re-routing mangled packets
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [PATCH nf] netfilter: nf_reject: init skb->dev for reset packet
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [PATCH nf] netfilter: restore default behavior for nf_conntrack_events
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [PATCH nf] netfilter: restore default behavior for nf_conntrack_events
- From: Nicolas Dichtel <nicolas.dichtel@xxxxxxxxx>
- Re: [PATCH nf] netfilter: nf_reject: init skb->dev for reset packet
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [PATCH 1/1] netfilter: ipset: Fix race between namespace cleanup and gc in the list:set type
- From: Jozsef Kadlecsik <kadlec@xxxxxxxxxxxxx>
- Re: [PATCH V5] ext4: check hash version and filesystem casefolded consistent
- From: Eric Biggers <ebiggers@xxxxxxxxxx>
- Re: [PATCH nf] netfilter: nf_reject: init skb->dev for reset packet
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH net v2 2/3] selftests: add selftest for the SRv6 End.DX4 behavior with netfilter
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH net v2 2/3] selftests: add selftest for the SRv6 End.DX4 behavior with netfilter
- From: Jakub Kicinski <kuba@xxxxxxxxxx>
- Re: [PATCH net v2 2/3] selftests: add selftest for the SRv6 End.DX4 behavior with netfilter
- From: Hangbin Liu <liuhangbin@xxxxxxxxx>
- Re: [PATCH nf] netfilter: nf_reject: init skb->dev for reset packet
- From: Willem de Bruijn <willemb@xxxxxxxxxx>
- Re: [PATCH net v2 2/3] selftests: add selftest for the SRv6 End.DX4 behavior with netfilter
- From: Jakub Kicinski <kuba@xxxxxxxxxx>
- Re: [PATCH 1/1] netfilter: ipset: Fix race between namespace cleanup and gc in the list:set type
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH nf] netfilter: nf_reject: init skb->dev for reset packet
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH nf] netfilter: nf_reject: init skb->dev for reset packet
- From: Willem de Bruijn <willemb@xxxxxxxxxx>
- Re: [PATCH nf] netfilter: nf_reject: init skb->dev for reset packet
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nf-next] netfilter: nf_tables: missing objects with no memcg accounting
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH nf] netfilter: nf_reject: init skb->dev for reset packet
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [PATCH nf] netfilter: restore default behavior for nf_conntrack_events
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH nf] netfilter: nf_reject: init skb->dev for reset packet
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH nf] netfilter: nf_reject: init skb->dev for reset packet
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [RFC PATCH v2 02/12] landlock: Add hook on socket creation
- From: "Günther Noack" <gnoack@xxxxxxxxxx>
- Re: [RFC PATCH v2 01/12] landlock: Support socket access-control
- From: "Günther Noack" <gnoack@xxxxxxxxxx>
- Re: [PATCH libnetfilter_queue] Stop a memory leak in nfq_close
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nft] nf_tables: nft_inner: validate mandatory meta and payload netlink attributes
- From: Davide Ornaghi <d.ornaghi97@xxxxxxxxx>
- Re: [PATCH nf] netfilter: restore default behavior for nf_conntrack_events
- From: Nicolas Dichtel <nicolas.dichtel@xxxxxxxxx>
- Re: [PATCH nf] netfilter: restore default behavior for nf_conntrack_events
- From: Florian Westphal <fw@xxxxxxxxx>
- [ANNOUNCE] ipset 7.22 released
- From: Jozsef Kadlecsik <kadlec@xxxxxxxxxxxxx>
- Re: [PATCH] fix json output format for IPSET_OPT_IP
- From: Jozsef Kadlecsik <kadlec@xxxxxxxxxxxxx>
- Re: [PATCH nft] Check for NULL netlink attributes
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH V6] fs/ext4: Filesystem without casefold feature cannot be mounted with spihash
- From: Lizhi Xu <lizhi.xu@xxxxxxxxxxxxx>
- Re: [PATCH V5] ext4: check hash version and filesystem casefolded consistent
- From: Lizhi Xu <lizhi.xu@xxxxxxxxxxxxx>
- [PATCH nft] Check for NULL netlink attributes
- From: Davide Ornaghi <d.ornaghi97@xxxxxxxxx>
- Re: [RFC PATCH v2 00/12] Socket type control for Landlock
- From: Günther Noack <gnoack3000@xxxxxxxxx>
- Re: [PATCH V5] ext4: check hash version and filesystem casefolded consistent
- From: Gabriel Krisman Bertazi <krisman@xxxxxxx>
- [PATCH nft] scanner: inet_pton() allows for broader IPv4-Mapped IPv6 addresses
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH net-next v1] netfilter: cttimeout: remove 'l3num' attr check
- From: Simon Horman <horms@xxxxxxxxxx>
- [PATCH v4 net-next 06/14] netfilter: br_netfilter: Use nested-BH locking for brnf_frag_data_storage.
- From: Sebastian Andrzej Siewior <bigeasy@xxxxxxxxxxxxx>
- [PATCH 1/1] netfilter: ipset: Fix race between namespace cleanup and gc in the list:set type
- From: Jozsef Kadlecsik <kadlec@xxxxxxxxxxxxx>
- [PATCH 0/1] ipset patch for nf tree
- From: Jozsef Kadlecsik <kadlec@xxxxxxxxxxxxx>
- [PATCH nf] netfilter: restore default behavior for nf_conntrack_events
- From: Nicolas Dichtel <nicolas.dichtel@xxxxxxxxx>
- [PATCH nf] netfilter: nf_reject: init skb->dev for reset packet
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nftables] tests: shell: add test case for reset tcp warning
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [PATCH V3] ext4: check hash version and filesystem casefolded consistent
- From: Lizhi Xu <lizhi.xu@xxxxxxxxxxxxx>
- Re: [PATCH V3] ext4: check hash version and filesystem casefolded consistent
- From: Dan Carpenter <dan.carpenter@xxxxxxxxxx>
- Re: [PATCH V5] ext4: check hash version and filesystem casefolded consistent
- From: Lizhi Xu <lizhi.xu@xxxxxxxxxxxxx>
- [PATCH nf-next] netfilter: nf_tables: rise cap on SELinux secmark context
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH V5] ext4: check hash version and filesystem casefolded consistent
- From: Gabriel Krisman Bertazi <krisman@xxxxxxx>
- Re: [PATCH net-next v1] netfilter: nfnetlink: convert kfree_skb to consume_skb
- From: Simon Horman <horms@xxxxxxxxxx>
- Re: [PATCH net-next v1] netfilter: nfnetlink: convert kfree_skb to consume_skb
- From: Donald Hunter <donald.hunter@xxxxxxxxx>
- Re: [syzbot] [netfilter?] [mm?] [usb?] INFO: rcu detected stall in addrconf_rs_timer (6)
- From: syzbot <syzbot+fecf8bd19c1f78edb255@xxxxxxxxxxxxxxxxxxxxxxxxx>
- libnetfilter_queue patch ping
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
- Re: [PATCH v3 0/2] netfilter: nfqueue: incorrect sctp checksum
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH V5] ext4: check hash version and filesystem casefolded consistent
- From: Lizhi Xu <lizhi.xu@xxxxxxxxxxxxx>
- Re: [PATCH] ipvs: Avoid unnecessary calls to skb_is_gso_sctp
- From: Simon Horman <horms@xxxxxxxxxx>
- Re: [PATCH V4] ext4: check hash version and filesystem casefolded consistent
- From: Eric Biggers <ebiggers@xxxxxxxxxx>
- Re: [PATCH net-next v1] netfilter: nfnetlink: convert kfree_skb to consume_skb
- From: Simon Horman <horms@xxxxxxxxxx>
- [PATCH V4] ext4: check hash version and filesystem casefolded consistent
- From: Lizhi Xu <lizhi.xu@xxxxxxxxxxxxx>
- Re: [PATCH V2] ext4: add casefolded feature check before setup encrypted info
- From: kernel test robot <lkp@xxxxxxxxx>
- [PATCH V3] ext4: check hash version and filesystem casefolded consistent
- From: Lizhi Xu <lizhi.xu@xxxxxxxxxxxxx>
- [PATCH nf-next v2] netfilter: nf_conncount: fix wrong variable type
- From: Yunjian Wang <wangyunjian@xxxxxxxxxx>
- Re: [PATCH V2] ext4: add casefolded feature check before setup encrypted info
- From: Eric Biggers <ebiggers@xxxxxxxxxx>
- Re: [PATCH V2] ext4: add casefolded feature check before setup encrypted info
- From: Lizhi Xu <lizhi.xu@xxxxxxxxxxxxx>
- Re: [PATCH V2] ext4: add casefolded feature check before setup encrypted info
- From: Eric Biggers <ebiggers@xxxxxxxxxx>
- [PATCH V2] ext4: add casefolded feature check before setup encrypted info
- From: Lizhi Xu <lizhi.xu@xxxxxxxxxxxxx>
- Re: [PATCH] ext4: add casefolded file check
- From: Eric Biggers <ebiggers@xxxxxxxxxx>
- Re: [PATCH] ext4: add casefolded file check
- From: Lizhi Xu <lizhi.xu@xxxxxxxxxxxxx>
- [PATCH net-next v1] netfilter: cttimeout: remove 'l3num' attr check
- From: Lin Ma <linma@xxxxxxxxxx>
- Re: [PATCH] ext4: add casefolded file check
- From: Eric Biggers <ebiggers@xxxxxxxxxx>
- Re: [RFC PATCH v2 07/12] selftests/landlock: Add protocol.inval to socket tests
- From: Mikhail Ivanov <ivanov.mikhail1@xxxxxxxxxxxxxxxxxxx>
- Re: [RFC PATCH v2 08/12] selftests/landlock: Add tcp_layers.ruleset_overlap to socket tests
- From: Mikhail Ivanov <ivanov.mikhail1@xxxxxxxxxxxxxxxxxxx>
- Re: [RFC PATCH v2 04/12] selftests/landlock: Add protocol.socket_access_rights to socket tests
- From: Mikhail Ivanov <ivanov.mikhail1@xxxxxxxxxxxxxxxxxxx>
- Re: [PATCH net] netfilter: nf_conncount: fix wrong variable type
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [RFC PATCH v2 03/12] selftests/landlock: Add protocol.create to socket tests
- From: Mikhail Ivanov <ivanov.mikhail1@xxxxxxxxxxxxxxxxxxx>
- Re: [RFC PATCH v2 02/12] landlock: Add hook on socket creation
- From: Mikhail Ivanov <ivanov.mikhail1@xxxxxxxxxxxxxxxxxxx>
- Re: [RFC PATCH v2 01/12] landlock: Support socket access-control
- From: Mikhail Ivanov <ivanov.mikhail1@xxxxxxxxxxxxxxxxxxx>
- RE: [PATCH net] netfilter: nf_conncount: fix wrong variable type
- From: wangyunjian <wangyunjian@xxxxxxxxxx>
- Re: [PATCH net 1/6] netfilter: nfnetlink_queue: acquire rcu_read_lock() in instance_destroy_rcu()
- From: patchwork-bot+netdevbpf@xxxxxxxxxx
- Re: [PATCH net] netfilter: nf_conncount: fix wrong variable type
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH] ext4: add casefolded file check
- From: Lizhi Xu <lizhi.xu@xxxxxxxxxxxxx>
- RE: [PATCH net] netfilter: nf_conncount: fix wrong variable type
- From: wangyunjian <wangyunjian@xxxxxxxxxx>
- Re: [PATCH v4 bpf-next 2/3] netfilter: add bpf_xdp_flow_lookup kfunc
- From: Alexei Starovoitov <alexei.starovoitov@xxxxxxxxx>
- [syzbot] [fscrypt?] WARNING in fscrypt_fname_siphash
- From: syzbot <syzbot+340581ba9dceb7e06fb3@xxxxxxxxxxxxxxxxxxxxxxxxx>
- [PATCH v3 net-next 07/15] netfilter: br_netfilter: Use nested-BH locking for brnf_frag_data_storage.
- From: Sebastian Andrzej Siewior <bigeasy@xxxxxxxxxxxxx>
- [PATCH v4 bpf-next 3/3] selftests/bpf: Add selftest for bpf_xdp_flow_lookup kfunc
- From: Lorenzo Bianconi <lorenzo@xxxxxxxxxx>
- [PATCH v4 bpf-next 2/3] netfilter: add bpf_xdp_flow_lookup kfunc
- From: Lorenzo Bianconi <lorenzo@xxxxxxxxxx>
- [PATCH v4 bpf-next 1/3] netfilter: nf_tables: add flowtable map for xdp offload
- From: Lorenzo Bianconi <lorenzo@xxxxxxxxxx>
- [PATCH v4 bpf-next 0/3] netfilter: Add the capability to offload flowtable in XDP layer
- From: Lorenzo Bianconi <lorenzo@xxxxxxxxxx>
- Re: [PATCH net] netfilter: nf_conncount: fix wrong variable type
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [PATCH net-next 0/5] net: constify ctl_table arguments of utility functions
- From: patchwork-bot+netdevbpf@xxxxxxxxxx
- [PATCH net] netfilter: nf_conncount: fix wrong variable type
- From: Yunjian Wang <wangyunjian@xxxxxxxxxx>
- [PATCH net 5/6] netfilter: tproxy: bail out if IP has been disabled on the device
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net 6/6] netfilter: nft_fib: allow from forward/input without iif selector
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net 4/6] netfilter: nft_payload: skbuff vlan metadata mangle support
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net 3/6] netfilter: nft_payload: restore vlan q-in-q match support
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net 1/6] netfilter: nfnetlink_queue: acquire rcu_read_lock() in instance_destroy_rcu()
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net 2/6] netfilter: ipset: Add list flush to cancel_gc
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net 0/6,v3] Netfilter fixes for net
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nft 1/2,v2] cache: check for NFT_CACHE_REFRESH in current requested cache too
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nft 2/2,v2] cache: recycle existing cache with incremental updates
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [nft PATCH] doc: drop duplicate ARP HEADER EXPRESSION
- From: Florian Westphal <fw@xxxxxxxxx>
- [nft PATCH] doc: drop duplicate ARP HEADER EXPRESSION
- From: 谢致邦 (XIE Zhibang) <Yeking@xxxxxxxxx>
- [PATCH net-next v1] netfilter: nfnetlink: convert kfree_skb to consume_skb
- From: Donald Hunter <donald.hunter@xxxxxxxxx>
- [PATCHv4 net-next 09/14] ipvs: switch to per-net connection table
- From: Julian Anastasov <ja@xxxxxx>
- [PATCHv4 net-next 02/14] ipvs: make ip_vs_svc_table and ip_vs_svc_fwm_table per netns
- From: Julian Anastasov <ja@xxxxxx>
- [PATCHv4 net-next 07/14] ipvs: add resizable hash tables
- From: Julian Anastasov <ja@xxxxxx>
- [PATCHv4 net-next 04/14] ipvs: use single svc table
- From: Julian Anastasov <ja@xxxxxx>
- [PATCHv4 net-next 06/14] ipvs: use more counters to avoid service lookups
- From: Julian Anastasov <ja@xxxxxx>
- [PATCHv4 net-next 11/14] ipvs: no_cport and dropentry counters can be per-net
- From: Julian Anastasov <ja@xxxxxx>
- [PATCHv4 net-next 03/14] ipvs: some service readers can use RCU
- From: Julian Anastasov <ja@xxxxxx>
- [PATCHv4 net-next 13/14] ipvs: add ip_vs_status info
- From: Julian Anastasov <ja@xxxxxx>
- [PATCHv4 net-next 05/14] ipvs: do not keep dest_dst after dest is removed
- From: Julian Anastasov <ja@xxxxxx>
- [PATCHv4 net-next 01/14] rculist_bl: add hlist_bl_for_each_entry_continue_rcu
- From: Julian Anastasov <ja@xxxxxx>
- [PATCHv4 net-next 14/14] ipvs: add conn_lfactor and svc_lfactor sysctl vars
- From: Julian Anastasov <ja@xxxxxx>
- [PATCHv4 net-next 12/14] ipvs: use more keys for connection hashing
- From: Julian Anastasov <ja@xxxxxx>
- [PATCHv4 net-next 10/14] ipvs: show the current conn_tab size to users
- From: Julian Anastasov <ja@xxxxxx>
- [PATCHv4 net-next 08/14] ipvs: use resizable hash table for services
- From: Julian Anastasov <ja@xxxxxx>
- [PATCHv4 net-next 00/14] ipvs: per-net tables and optimizations
- From: Julian Anastasov <ja@xxxxxx>
- Re: nftables with thousands of chains is unreasonably slow
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nft 2/2] cache: recycle existing cache with incremental updates
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nft 1/2] cache: check for NFT_CACHE_REFRESH in current requested cache
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [RFC PATCH v2 07/12] selftests/landlock: Add protocol.inval to socket tests
- From: "Günther Noack" <gnoack@xxxxxxxxxx>
- Re: [RFC PATCH v2 06/12] selftests/landlock: Add protocol.rule_with_unhandled_access to socket tests
- From: "Günther Noack" <gnoack@xxxxxxxxxx>
- Re: [RFC PATCH v2 05/12] selftests/landlock: Add protocol.rule_with_unknown_access to socket tests
- From: "Günther Noack" <gnoack@xxxxxxxxxx>
- Re: [RFC PATCH v2 08/12] selftests/landlock: Add tcp_layers.ruleset_overlap to socket tests
- From: "Günther Noack" <gnoack@xxxxxxxxxx>
- Re: [RFC PATCH v2 04/12] selftests/landlock: Add protocol.socket_access_rights to socket tests
- From: "Günther Noack" <gnoack@xxxxxxxxxx>
- Re: [PATCH] ipvs: Avoid unnecessary calls to skb_is_gso_sctp
- From: Julian Anastasov <ja@xxxxxx>
- [PATCH net-next 5/5] ipvs: constify ctl_table arguments of utility functions
- From: Thomas Weißschuh <linux@xxxxxxxxxxxxxx>
- [PATCH net-next 0/5] net: constify ctl_table arguments of utility functions
- From: Thomas Weißschuh <linux@xxxxxxxxxxxxxx>
- [PATCH net-next 4/5] net/ipv6/ndisc: constify ctl_table arguments of utility function
- From: Thomas Weißschuh <linux@xxxxxxxxxxxxxx>
- [PATCH net-next 1/5] net/neighbour: constify ctl_table arguments of utility function
- From: Thomas Weißschuh <linux@xxxxxxxxxxxxxx>
- [PATCH net-next 3/5] net/ipv6/addrconf: constify ctl_table arguments of utility functions
- From: Thomas Weißschuh <linux@xxxxxxxxxxxxxx>
- [PATCH net-next 2/5] net/ipv4/sysctl: constify ctl_table arguments of utility functions
- From: Thomas Weißschuh <linux@xxxxxxxxxxxxxx>
- Re: [RFC PATCH v2 03/12] selftests/landlock: Add protocol.create to socket tests
- From: "Günther Noack" <gnoack@xxxxxxxxxx>
- Re: [PATCH net 0/6,v2] Netfilter fixes for net
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH net 0/6,v2] Netfilter fixes for net
- From: Paolo Abeni <pabeni@xxxxxxxxxx>
- Re: [PATCH net 0/6,v2] Netfilter fixes for net
- From: Paolo Abeni <pabeni@xxxxxxxxxx>
- Re: [RFC PATCH v2 01/12] landlock: Support socket access-control
- From: "Günther Noack" <gnoack@xxxxxxxxxx>
- Re: [RFC PATCH v2 02/12] landlock: Add hook on socket creation
- From: "Günther Noack" <gnoack@xxxxxxxxxx>
- Re: [PATCH] iptables: cleanup FIXME
- From: Phil Sutter <phil@xxxxxx>
- Re: [PATCH net 0/6,v2] Netfilter fixes for net
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH] iptables: cleanup FIXME
- From: Michael Estner <michaelestner@xxxxxx>
- [PATCH] iptables: cleanup FIXME
- From: Michael Estner <michaelestner@xxxxxx>
- [PATCH nft,v2] tests: shell: add vlan double tagging match simple test case
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [RFC PATCH v2 12/12] samples/landlock: Support socket protocol restrictions
- From: Mikhail Ivanov <ivanov.mikhail1@xxxxxxxxxxxxxxxxxxx>
- [RFC PATCH v2 11/12] selftests/landlock: Add mini.socket_invalid_type to socket tests
- From: Mikhail Ivanov <ivanov.mikhail1@xxxxxxxxxxxxxxxxxxx>
- [RFC PATCH v2 10/12] selftests/landlock: Add mini.socket_overflow to socket tests
- From: Mikhail Ivanov <ivanov.mikhail1@xxxxxxxxxxxxxxxxxxx>
- [RFC PATCH v2 09/12] selftests/landlock: Add mini.ruleset_with_unknown_access to socket tests
- From: Mikhail Ivanov <ivanov.mikhail1@xxxxxxxxxxxxxxxxxxx>
- [RFC PATCH v2 08/12] selftests/landlock: Add tcp_layers.ruleset_overlap to socket tests
- From: Mikhail Ivanov <ivanov.mikhail1@xxxxxxxxxxxxxxxxxxx>
- [RFC PATCH v2 07/12] selftests/landlock: Add protocol.inval to socket tests
- From: Mikhail Ivanov <ivanov.mikhail1@xxxxxxxxxxxxxxxxxxx>
- [RFC PATCH v2 06/12] selftests/landlock: Add protocol.rule_with_unhandled_access to socket tests
- From: Mikhail Ivanov <ivanov.mikhail1@xxxxxxxxxxxxxxxxxxx>
- [RFC PATCH v2 05/12] selftests/landlock: Add protocol.rule_with_unknown_access to socket tests
- From: Mikhail Ivanov <ivanov.mikhail1@xxxxxxxxxxxxxxxxxxx>
- [RFC PATCH v2 04/12] selftests/landlock: Add protocol.socket_access_rights to socket tests
- From: Mikhail Ivanov <ivanov.mikhail1@xxxxxxxxxxxxxxxxxxx>
- [RFC PATCH v2 03/12] selftests/landlock: Add protocol.create to socket tests
- From: Mikhail Ivanov <ivanov.mikhail1@xxxxxxxxxxxxxxxxxxx>
- [RFC PATCH v2 02/12] landlock: Add hook on socket creation
- From: Mikhail Ivanov <ivanov.mikhail1@xxxxxxxxxxxxxxxxxxx>
- [RFC PATCH v2 01/12] landlock: Support socket access-control
- From: Mikhail Ivanov <ivanov.mikhail1@xxxxxxxxxxxxxxxxxxx>
- [RFC PATCH v2 00/12] Socket type control for Landlock
- From: Mikhail Ivanov <ivanov.mikhail1@xxxxxxxxxxxxxxxxxxx>
- [PATCH libnetfilter_queue v2 15/15] build: Remove libnfnetlink from the build
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
- [PATCH libnetfilter_queue v2 13/15] src: Convert all nlif_* functions to use libmnl
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
- [PATCH libnetfilter_queue v2 14/15] include: Use libmnl.h instead of libnfnetlink.h
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
- [PATCH libnetfilter_queue v2 12/15] doc: Add iftable.c to the doxygen system
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
- [PATCH libnetfilter_queue v2 11/15] src: Copy nlif-related files from libnfnetlink
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
- [PATCH libnetfilter_queue v2 10/15] src: Convert remaining nfq_* functions to use libmnl
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
- [PATCH libnetfilter_queue v2 09/15] src: Convert nfq_fd() to use libmnl
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
- [PATCH libnetfilter_queue v2 07/15] src: Convert nfq_set_verdict() and nfq_set_verdict2() to use libmnl if there is no data
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
- [PATCH libnetfilter_queue v2 06/15] src: Convert nfq_handle_packet(), nfq_get_secctx(), nfq_get_payload() and all the nfq_get_ functions to use libmnl
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
- [PATCH libnetfilter_queue v2 08/15] src: Incorporate nfnl_rcvbufsiz() in libnetfilter_queue
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
- [PATCH libnetfilter_queue v2 04/15] src: Convert nfq_create_queue(), nfq_bind_pf() & nfq_unbind_pf() to use libmnl
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
- [PATCH libnetfilter_queue v2 05/15] src: Convert nfq_set_queue_flags(), nfq_set_queue_maxlen() & nfq_set_mode() to use libmnl
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
- [PATCH libnetfilter_queue v2 03/15] src: Convert nfq_close() to use libmnl
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
- [PATCH libnetfilter_queue v2 02/15] src: Convert nfq_open_nfnl() to use libmnl
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
- [PATCH libnetfilter_queue v2 01/15] src: Convert nfq_open() to use libmnl
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
- [PATCH libnetfilter_queue v2 00/15] Convert libnetfilter_queue to not need libnfnetlink
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
- Re: [PATCH v3 bpf-next 1/3] netfilter: nf_tables: add flowtable map for xdp offload
- From: Lorenzo Bianconi <lorenzo@xxxxxxxxxx>
- [PATCH] ipvs: Avoid unnecessary calls to skb_is_gso_sctp
- From: Ismael Luceno <iluceno@xxxxxxx>
- Re: [PATCH] iptables: cleanup FIXME
- From: Phil Sutter <phil@xxxxxx>
- Re: [PATCH nft v3 0/2] Support for variables in map expressions
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net 6/6] netfilter: nft_fib: allow from forward/input without iif selector
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net 5/6] netfilter: tproxy: bail out if IP has been disabled on the device
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net 1/6] netfilter: nfnetlink_queue: acquire rcu_read_lock() in instance_destroy_rcu()
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net 4/6] netfilter: nft_payload: skbuff vlan metadata mangle support
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net 0/6,v2] Netfilter fixes for net
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net 3/6] netfilter: nft_payload: restore vlan q-in-q match support
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net 2/6] netfilter: ipset: Add list flush to cancel_gc
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH v3 bpf-next 1/3] netfilter: nf_tables: add flowtable map for xdp offload
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH net 4/6] netfilter: nft_payload: skbuff vlan metadata mangle support
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH] iptables: cleanup FIXME
- From: Michael Estner <michaelestner@xxxxxx>
- [PATCH v3 bpf-next 3/3] selftests/bpf: Add selftest for bpf_xdp_flow_lookup kfunc
- From: Lorenzo Bianconi <lorenzo@xxxxxxxxxx>
- [PATCH v3 bpf-next 2/3] netfilter: add bpf_xdp_flow_lookup kfunc
- From: Lorenzo Bianconi <lorenzo@xxxxxxxxxx>
- [PATCH v3 bpf-next 1/3] netfilter: nf_tables: add flowtable map for xdp offload
- From: Lorenzo Bianconi <lorenzo@xxxxxxxxxx>
- [PATCH v3 bpf-next 0/3] netfilter: Add the capability to offload flowtable in XDP layer
- From: Lorenzo Bianconi <lorenzo@xxxxxxxxxx>
- Re: [PATCH net 4/6] netfilter: nft_payload: skbuff vlan metadata mangle support
- From: Paolo Abeni <pabeni@xxxxxxxxxx>
- Re: [PATCH] fix json output format for IPSET_OPT_IP
- From: Zhixu Liu <zhixu.liu@xxxxxxxxx>
- Re: [PATCH] fix json output format for IPSET_OPT_IP
- From: Jozsef Kadlecsik <kadlec@xxxxxxxxxxxxx>
- [PATCH net 4/6] netfilter: nft_payload: skbuff vlan metadata mangle support
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net 5/6] netfilter: tproxy: bail out if IP has been disabled on the device
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net 6/6] netfilter: nft_fib: allow from forward/input without iif selector
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net 1/6] netfilter: nfnetlink_queue: acquire rcu_read_lock() in instance_destroy_rcu()
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net 3/6] netfilter: nft_payload: restore vlan q-in-q match support
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net 2/6] netfilter: ipset: Add list flush to cancel_gc
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net 0/6] Netfilter fixes for net
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH bpf-next v4 1/2] net: netfilter: Make ct zone opts configurable for bpf ct helpers
- From: patchwork-bot+netdevbpf@xxxxxxxxxx
- [PATCH bpf-next v4 2/2] selftests/bpf: Update tests for new ct zone opts for nf_conntrack kfuncs
- From: Brad Cowie <brad@xxxxxxxxx>
- [PATCH bpf-next v4 1/2] net: netfilter: Make ct zone opts configurable for bpf ct helpers
- From: Brad Cowie <brad@xxxxxxxxx>
- [PATCH v5 36/68] selftests/net: Drop define _GNU_SOURCE
- From: Edward Liaw <edliaw@xxxxxxxxxx>
- [PATCH nf v2] netfilter: nft_fib: allow from forward/input without iif selector
- From: Eric Garver <eric@xxxxxxxxxxx>
- Re: [PATCH bpf-next v2 2/4] netfilter: add bpf_xdp_flow_offload_lookup kfunc
- From: Lorenzo Bianconi <lorenzo@xxxxxxxxxx>
- Re: [PATCH bpf-next v2 3/4] samples/bpf: Add bpf sample to offload flowtable traffic to xdp
- From: Lorenzo Bianconi <lorenzo@xxxxxxxxxx>
- Re: [PATCH v3 0/2] netfilter: nfqueue: incorrect sctp checksum
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH v3 0/2] netfilter: nfqueue: incorrect sctp checksum
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [PATCH v3 0/2] netfilter: nfqueue: incorrect sctp checksum
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH v3 0/2] netfilter: nfqueue: incorrect sctp checksum
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [PATCH v3 0/2] netfilter: nfqueue: incorrect sctp checksum
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH bpf-next v2 3/4] samples/bpf: Add bpf sample to offload flowtable traffic to xdp
- From: Toke Høiland-Jørgensen <toke@xxxxxxxxxx>
- Re: [PATCH bpf-next v2 3/4] samples/bpf: Add bpf sample to offload flowtable traffic to xdp
- From: Alexei Starovoitov <alexei.starovoitov@xxxxxxxxx>
- Re: [PATCH bpf-next v2 4/4] selftests/bpf: Add selftest for bpf_xdp_flow_offload_lookup kfunc
- From: Alexei Starovoitov <alexei.starovoitov@xxxxxxxxx>
- Re: [PATCH bpf-next v2 2/4] netfilter: add bpf_xdp_flow_offload_lookup kfunc
- From: Alexei Starovoitov <alexei.starovoitov@xxxxxxxxx>
- Re: [PATCH bpf-next v3 2/2] selftests/bpf: Update tests for new ct zone opts for nf_conntrack kfuncs
- From: Martin KaFai Lau <martin.lau@xxxxxxxxx>
- Re: [PATCH v3 0/2] netfilter: nfqueue: incorrect sctp checksum
- From: Antonio Ojea <aojea@xxxxxxxxxx>
- Re: [PATCH v3 0/2] netfilter: nfqueue: incorrect sctp checksum
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH v3 0/2] netfilter: nfqueue: incorrect sctp checksum
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH v3 0/2] netfilter: nfqueue: incorrect sctp checksum
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH] fix json output format for IPSET_OPT_IP
- From: Zhixu Liu <zhixu.liu@xxxxxxxxx>
- Re: [PATCH net-next] netfilter: nft_fib: allow from forward/input without iif selector
- From: Eric Garver <eric@xxxxxxxxxxx>
- Re: [PATCH v3 0/2] netfilter: nfqueue: incorrect sctp checksum
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH] netfilter: ipset: Add list flush to cancel_gc
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH net-next] netfilter: nft_fib: allow from forward/input without iif selector
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH net-next] netfilter: nft_fib: allow from forward/input without iif selector
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH bpf-next v2 2/4] netfilter: add bpf_xdp_flow_offload_lookup kfunc
- From: Kumar Kartikeya Dwivedi <memxor@xxxxxxxxx>
- [PATCH bpf-next v2 4/4] selftests/bpf: Add selftest for bpf_xdp_flow_offload_lookup kfunc
- From: Lorenzo Bianconi <lorenzo@xxxxxxxxxx>
- [PATCH bpf-next v2 3/4] samples/bpf: Add bpf sample to offload flowtable traffic to xdp
- From: Lorenzo Bianconi <lorenzo@xxxxxxxxxx>
- [PATCH bpf-next v2 2/4] netfilter: add bpf_xdp_flow_offload_lookup kfunc
- From: Lorenzo Bianconi <lorenzo@xxxxxxxxxx>
- [PATCH bpf-next v2 1/4] netfilter: nf_tables: add flowtable map for xdp offload
- From: Lorenzo Bianconi <lorenzo@xxxxxxxxxx>
- [PATCH bpf-next v2 0/4] netfilter: Add the capability to offload flowtable in XDP layer
- From: Lorenzo Bianconi <lorenzo@xxxxxxxxxx>
- Re: [PATCH bpf-next 2/4] netfilter: add bpf_xdp_flow_offload_lookup kfunc
- From: Lorenzo Bianconi <lorenzo.bianconi@xxxxxxxxxx>
- Re: [PATCH net-next] netfilter: nft_fib: allow from forward/input without iif selector
- From: Eric Garver <eric@xxxxxxxxxxx>
- [PATCH net-next] netfilter: nft_fib: allow from forward/input without iif selector
- From: Eric Garver <eric@xxxxxxxxxxx>
- Re: [RFC PATCH v1 03/10] selftests/landlock: Create 'create' test
- From: Mickaël Salaün <mic@xxxxxxxxxxx>
- Re: [PATCH 1/2] landlock: Add hook on socket_listen()
- From: Mickaël Salaün <mic@xxxxxxxxxxx>
- [iptables PATCH] extensions: libxt_sctp: Add an extra assert()
- From: Phil Sutter <phil@xxxxxx>
- [PATCH v2 0/7] Dynamic hook interface binding
- From: Phil Sutter <phil@xxxxxx>
- [PATCH v2 5/7] netfilter: nf_tables: Correctly handle NETDEV_RENAME events
- From: Phil Sutter <phil@xxxxxx>
- [PATCH v2 7/7] selftests: netfilter: Torture nftables netdev hooks
- From: Phil Sutter <phil@xxxxxx>
- [PATCH v2 2/7] netfilter: nf_tables: Relax hook interface binding
- From: Phil Sutter <phil@xxxxxx>
- [PATCH v2 3/7] netfilter: nf_tables: Report active interfaces to user space
- From: Phil Sutter <phil@xxxxxx>
- [PATCH v2 4/7] netfilter: nf_tables: Dynamic hook interface binding
- From: Phil Sutter <phil@xxxxxx>
- [PATCH v2 1/7] netfilter: nf_tables: Store user-defined hook ifname
- From: Phil Sutter <phil@xxxxxx>
- [PATCH v2 6/7] netfilter: nf_tables: Add notications for hook changes
- From: Phil Sutter <phil@xxxxxx>
- tcpwrite question
- From: Byron Mugabi <byronmugabi@xxxxxxxxxx>
- tcpwrite question
- From: Byron Mugabi <byronmugabi@xxxxxxxxxx>
- Re: [RFC PATCH v1 01/10] landlock: Support socket access-control
- From: Ivanov Mikhail <ivanov.mikhail1@xxxxxxxxxxxxxxxxxxx>
- Re: [RFC PATCH v1 03/10] selftests/landlock: Create 'create' test
- From: Ivanov Mikhail <ivanov.mikhail1@xxxxxxxxxxxxxxxxxxx>
- [PATCH nft 1/3] evaluate: bogus protocol conflicts in vlan with implicit dependencies
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nft 0/3] vlan support updates
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nft 3/3] tests: shell: add vlan mangling test case
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nft 2/3] tests: shell: add vlan double tagging match simple test case
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH bpf-next 2/4] netfilter: add bpf_xdp_flow_offload_lookup kfunc
- From: Kumar Kartikeya Dwivedi <memxor@xxxxxxxxx>
- [PATCH bpf-next 4/4] selftests/bpf: Add selftest for bpf_xdp_flow_offload_lookup kfunc
- From: Lorenzo Bianconi <lorenzo@xxxxxxxxxx>
- [PATCH bpf-next 3/4] samples/bpf: Add bpf sample to offload flowtable traffic to xdp
- From: Lorenzo Bianconi <lorenzo@xxxxxxxxxx>
- [PATCH bpf-next 2/4] netfilter: add bpf_xdp_flow_offload_lookup kfunc
- From: Lorenzo Bianconi <lorenzo@xxxxxxxxxx>
- [PATCH bpf-next 1/4] netfilter: nf_tables: add flowtable map for xdp offload
- From: Lorenzo Bianconi <lorenzo@xxxxxxxxxx>
- [PATCH bpf-next 0/4] netfilter: Add the capability to offload flowtable in XDP layer
- From: Lorenzo Bianconi <lorenzo@xxxxxxxxxx>
- Re: [nf-next PATCH 0/5] Dynamic hook interface binding
- From: Phil Sutter <phil@xxxxxx>
- Re: [PATCH net] netfilter: nfnetlink_queue: acquire rcu_read_lock() in instance_destroy_rcu()
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [PATCH net] netfilter: nfnetlink_queue: acquire rcu_read_lock() in instance_destroy_rcu()
- From: Eric Dumazet <edumazet@xxxxxxxxxx>
- Re: [PATCH net] netfilter: nfnetlink_queue: acquire rcu_read_lock() in instance_destroy_rcu()
- From: Eric Dumazet <edumazet@xxxxxxxxxx>
- Re: [PATCH net] netfilter: nfnetlink_queue: acquire rcu_read_lock() in instance_destroy_rcu()
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [nf-next PATCH 0/5] Dynamic hook interface binding
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH net] netfilter: nfnetlink_queue: acquire rcu_read_lock() in instance_destroy_rcu()
- From: Eric Dumazet <edumazet@xxxxxxxxxx>
- Re: [nf-next PATCH 0/5] Dynamic hook interface binding
- From: Phil Sutter <phil@xxxxxx>
- Re: [PATCH net-next] selftests: netfilter: fix packetdrill conntrack testcase
- From: patchwork-bot+netdevbpf@xxxxxxxxxx
- [PATCH net-next] selftests: netfilter: fix packetdrill conntrack testcase
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [PATCH net-next 16/17] selftests: netfilter: add packetdrill based conntrack tests
- From: Jakub Kicinski <kuba@xxxxxxxxxx>
- Re: [PATCH nf] netfilter: nfnetlink_queue: fix rcu splat on program exit
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [PATCH nf] netfilter: nfnetlink_queue: fix rcu splat on program exit
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nf] netfilter: nfnetlink_queue: fix rcu splat on program exit
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [PATCH net-next 16/17] selftests: netfilter: add packetdrill based conntrack tests
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [PATCH v3 2/2] selftests: net: netfilter: nft_queue.sh: sctp checksum
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [PATCH v3 1/2] netfilter: nft_queue: compute SCTP checksum
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH v3 2/2] selftests: net: netfilter: nft_queue.sh: sctp checksum
- From: Antonio Ojea <aojea@xxxxxxxxxx>
- [PATCH v3 1/2] netfilter: nft_queue: compute SCTP checksum
- From: Antonio Ojea <aojea@xxxxxxxxxx>
- [PATCH v3 0/2] netfilter: nfqueue: incorrect sctp checksum
- From: Antonio Ojea <aojea@xxxxxxxxxx>
- Re: [PATCH net-next] selftests: netfilter: nft_flowtable.sh: bump socat timeout to 1m
- From: patchwork-bot+netdevbpf@xxxxxxxxxx
- Re: [PATCH net-next 16/17] selftests: netfilter: add packetdrill based conntrack tests
- From: Jakub Kicinski <kuba@xxxxxxxxxx>
- Re: [PATCH v2 2/2] selftests: net: netfilter: nft_queue.sh: sctp checksum
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [PATCH v2 1/2] netfilter: nft_queue: compute SCTP checksum
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [PATCH net-next 01/17] netfilter: nf_tables: skip transaction if update object is not implemented
- From: patchwork-bot+netdevbpf@xxxxxxxxxx
- Re: [PATCH net-next 16/17] selftests: netfilter: add packetdrill based conntrack tests
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [PATCH net-next 16/17] selftests: netfilter: add packetdrill based conntrack tests
- From: Jakub Kicinski <kuba@xxxxxxxxxx>
- [PATCH nf-next 11/11] netfilter: nf_tables: do not store nft_ctx in transaction objects
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nf-next 10/11] netfilter: nf_tables: pass nft_table to destroy function
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nf-next 09/11] netfilter: nf_tables: reduce trans->ctx.chain references
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nf-next 08/11] netfilter: nf_tables: store chain pointer in rule transaction
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nf-next 07/11] netfilter: nf_tables: avoid usage of embedded nft_ctx
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nf-next 05/11] netfilter: nf_tables: pass nft_chain to destroy function, not nft_ctx
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nf-next 06/11] netfilter: nf_tables: pass more specific nft_trans_chain where possible
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nf-next 03/11] netfilter: nf_tables: compact chain+ft transaction objects
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nf-next 04/11] netfilter: nf_tables: reduce trans->ctx.table references
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nf-next 02/11] netfilter: nf_tables: move bind list_head into relevant subtypes
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nf-next 01/11] netfilter: nf_tables: make struct nft_trans first member of derived subtypes
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nf-next 00/11] netfilter: nf_tables: reduce transaction log memory usage
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [PATCH 2/2] selftests/landlock: Create 'listen_zero', 'deny_listen_zero' tests
- From: Ivanov Mikhail <ivanov.mikhail1@xxxxxxxxxxxxxxxxxxx>
- Re: [PATCH 1/2] landlock: Add hook on socket_listen()
- From: Ivanov Mikhail <ivanov.mikhail1@xxxxxxxxxxxxxxxxxxx>
- [PATCH nf] netfilter: tproxy: bail out if IP has been disabled on the device
- From: Florian Westphal <fw@xxxxxxxxx>
- [syzbot] [netfilter?] general protection fault in nf_tproxy_laddr4
- From: syzbot <syzbot+b94a6818504ea90d7661@xxxxxxxxxxxxxxxxxxxxxxxxx>
- Re: [PATCH v3 00/11] sysctl: treewide: constify ctl_table argument of sysctl handlers
- From: Kees Cook <keescook@xxxxxxxxxxxx>
- [PATCH v2 2/2] selftests: net: netfilter: nft_queue.sh: sctp checksum
- From: Antonio Ojea <aojea@xxxxxxxxxx>
- [PATCH v2 0/2] netfilter: nfqueue: incorrect sctp checksum
- From: Antonio Ojea <aojea@xxxxxxxxxx>
- [PATCH v2 1/2] netfilter: nft_queue: compute SCTP checksum
- From: Antonio Ojea <aojea@xxxxxxxxxx>
- Re: [PATCH v3 00/11] sysctl: treewide: constify ctl_table argument of sysctl handlers
- From: Joel Granados <j.granados@xxxxxxxxxxx>
- Re: [PATCH v3 00/11] sysctl: treewide: constify ctl_table argument of sysctl handlers
- From: Joel Granados <j.granados@xxxxxxxxxxx>
- [PATCH net-next 16/17] selftests: netfilter: add packetdrill based conntrack tests
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 14/17] netfilter: nft_set_pipapo: move cloning of match info to insert/removal path
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 15/17] netfilter: nft_set_pipapo: remove dirty flag
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 17/17] netfilter: nf_tables: allow clone callbacks to sleep
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 13/17] netfilter: nft_set_pipapo: prepare pipapo_get helper for on-demand clone
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 05/17] netfilter: use NF_DROP instead of -NF_DROP
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 11/17] netfilter: nft_set_pipapo: prepare walk function for on-demand clone
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 12/17] netfilter: nft_set_pipapo: merge deactivate helper into caller
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 10/17] netfilter: nft_set_pipapo: prepare destroy function for on-demand clone
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 09/17] netfilter: nft_set_pipapo: make pipapo_clone helper return NULL
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 07/17] netfilter: conntrack: remove flowtable early-drop test
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 08/17] netfilter: nft_set_pipapo: move prove_locking helper around
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 06/17] netfilter: conntrack: documentation: remove reference to non-existent sysctl
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 04/17] netfilter: conntrack: dccp: try not to drop skb in conntrack
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 00/17] Netfilter updates for net-next
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 03/17] netfilter: conntrack: fix ct-state for ICMPv6 Multicast Router Discovery
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 02/17] netfilter: nf_tables: remove NETDEV_CHANGENAME from netdev chain event handler
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH net-next 01/17] netfilter: nf_tables: skip transaction if update object is not implemented
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH v3 00/11] sysctl: treewide: constify ctl_table argument of sysctl handlers
- From: Thomas Weißschuh <linux@xxxxxxxxxxxxxx>
- [PATCH net-next] selftests: netfilter: nft_flowtable.sh: bump socat timeout to 1m
- From: Florian Westphal <fw@xxxxxxxxx>
- [RFC bpf-next v1 4/4] selftests/bpf: Add selftest for bpf_xdp_flow_offload_lookup kfunc
- From: Lorenzo Bianconi <lorenzo@xxxxxxxxxx>
- [RFC bpf-next v1 3/4] samples/bpf: Add bpf sample to offload flowtable traffic to xdp
- From: Lorenzo Bianconi <lorenzo@xxxxxxxxxx>
- [RFC bpf-next v1 2/4] netfilter: add bpf_xdp_flow_offload_lookup kfunc
- From: Lorenzo Bianconi <lorenzo@xxxxxxxxxx>
- [RFC bpf-next v1 1/4] netfilter: nf_tables: add flowtable map for xdp offload
- From: Lorenzo Bianconi <lorenzo@xxxxxxxxxx>
- [RFC bpf-next v1 0/4] netfilter: Add the capability to offload flowtable in XDP layer
- From: Lorenzo Bianconi <lorenzo@xxxxxxxxxx>
- Re: [PATCH nf-next 2/2] netfilter: nft_payload: skbuff vlan metadata mangle support
- From: kernel test robot <lkp@xxxxxxxxx>
- Re: Could not process rule: Cannot allocate memory
- From: Sven Auhagen <sven.auhagen@xxxxxxxxxxxx>
- Re: Could not process rule: Cannot allocate memory
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: Could not process rule: Cannot allocate memory
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: Could not process rule: Cannot allocate memory
- From: Sven Auhagen <sven.auhagen@xxxxxxxxxxxx>
- Re: Could not process rule: Cannot allocate memory
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [PATCH nf-next v2 7/8] netfilter: nft_set_pipapo: move cloning of match info to insert/removal path
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: nftables with thousands of chains is unreasonably slow
- From: Neels Hofmeyr <nhofmeyr@xxxxxxxxxxx>
- Re: [PATCH nf-next v2 7/8] netfilter: nft_set_pipapo: move cloning of match info to insert/removal path
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [nf-next PATCH 0/5] Dynamic hook interface binding
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH v4 35/66] selftests/net: Drop define _GNU_SOURCE
- From: Edward Liaw <edliaw@xxxxxxxxxx>
- [PATCH nf-next 2/2] netfilter: nft_payload: skbuff vlan metadata mangle support
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nf-next 1/2] netfilter: nft_payload: restore vlan q-in-q match support
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nf-next 0/2] nf_tables: vlan matching & mangling
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH v3 37/68] selftests/net: Drop define _GNU_SOURCE
- From: Edward Liaw <edliaw@xxxxxxxxxx>
- Re: [PATCH v3 00/11] sysctl: treewide: constify ctl_table argument of sysctl handlers
- From: Jakub Kicinski <kuba@xxxxxxxxxx>
- Re: [PATCH v3 00/11] sysctl: treewide: constify ctl_table argument of sysctl handlers
- From: Kees Cook <keescook@xxxxxxxxxxxx>
- Re: nftables with thousands of chains is unreasonably slow
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: Could not process rule: Cannot allocate memory
- From: Sven Auhagen <sven.auhagen@xxxxxxxxxxxx>
- Re: Could not process rule: Cannot allocate memory
- From: Jan Engelhardt <jengelh@xxxxxxx>
- Re: Could not process rule: Cannot allocate memory
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: Could not process rule: Cannot allocate memory
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: Could not process rule: Cannot allocate memory
- From: Sven Auhagen <sven.auhagen@xxxxxxxxxxxx>
- Re: nftables with thousands of chains is unreasonably slow
- From: Neels Hofmeyr <nhofmeyr@xxxxxxxxxxx>
- Re: Could not process rule: Cannot allocate memory
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nf-next] netfilter: nf_tables: allow clone callbacks to sleep
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [PATCH v3 00/11] sysctl: treewide: constify ctl_table argument of sysctl handlers
- From: Joel Granados <j.granados@xxxxxxxxxxx>
- Re: [PATCH v3 00/11] sysctl: treewide: constify ctl_table argument of sysctl handlers
- From: Joel Granados <j.granados@xxxxxxxxxxx>
- Re: [PATCH v4 1/2] ipvs: add READ_ONCE barrier for ipvs->sysctl_amemthresh
- From: patchwork-bot+netdevbpf@xxxxxxxxxx
- Re: [RFC PATCH v1 03/10] selftests/landlock: Create 'create' test
- From: Mickaël Salaün <mic@xxxxxxxxxxx>
- Could not process rule: Cannot allocate memory
- From: Sven Auhagen <sven.auhagen@xxxxxxxxxxxx>
- [PATCH bpf-next v3 2/2] selftests/bpf: Update tests for new ct zone opts for nf_conntrack kfuncs
- From: Brad Cowie <brad@xxxxxxxxx>
- [PATCH bpf-next v3 1/2] net: netfilter: Make ct zone opts configurable for bpf ct helpers
- From: Brad Cowie <brad@xxxxxxxxx>
- Re: [PATCH net-next] selftests: netfilter: conntrack_tcp_unreplied.sh: wait for initial connection attempt
- From: patchwork-bot+netdevbpf@xxxxxxxxxx
- Re: nftables with thousands of chains is unreasonably slow
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH nf-next] selftests: netfilter: add packetdrill based conntrack tests
- From: Jozsef Kadlecsik <kadlec@xxxxxxxxxxxxx>
- [PATCH nf-next] selftests: netfilter: add packetdrill based conntrack tests
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [PATCH net-next v6 8/8] ax.25: x.25: Remove the now superfluous sentinel elements from ctl_table array
- From: Joel Granados <j.granados@xxxxxxxxxxx>
- [PATCH libnetfilter_queue] Stop a memory leak in nfq_close
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
- Re: [PATCH net-next 1/2] netfilter: nft_queue: compute SCTP checksum
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH v4 2/2] ipvs: allow some sysctls in non-init user namespaces
- From: Julian Anastasov <ja@xxxxxx>
- Re: [PATCH v4 1/2] ipvs: add READ_ONCE barrier for ipvs->sysctl_amemthresh
- From: Julian Anastasov <ja@xxxxxx>
- Re: [PATCH net-next v3 2/2] ipvs: allow some sysctls in non-init user namespaces
- From: Aleksandr Mikhalitsyn <aleksandr.mikhalitsyn@xxxxxxxxxxxxx>
- [PATCH v4 2/2] ipvs: allow some sysctls in non-init user namespaces
- From: Alexander Mikhalitsyn <aleksandr.mikhalitsyn@xxxxxxxxxxxxx>
- [PATCH v4 1/2] ipvs: add READ_ONCE barrier for ipvs->sysctl_amemthresh
- From: Alexander Mikhalitsyn <aleksandr.mikhalitsyn@xxxxxxxxxxxxx>
- nftables with thousands of chains is unreasonably slow
- From: Neels Hofmeyr <nhofmeyr@xxxxxxxxxxx>
- [PATCH net-next] selftests: netfilter: conntrack_tcp_unreplied.sh: wait for initial connection attempt
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [netfilter-nf:under-review 14/18] net/netfilter/nft_set_pipapo.c:2122: warning: expecting prototype for __nft_pipapo_walk(). Prototype was for nft_pipapo_do_walk() instead
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH net-next 1/2] netfilter: nft_queue: compute SCTP checksum
- From: kernel test robot <lkp@xxxxxxxxx>
- [nf-next PATCH 5/5] netfilter: nf_tables: Correctly handle NETDEV_RENAME events
- From: Phil Sutter <phil@xxxxxx>
- [nf-next PATCH 4/5] netfilter: nf_tables: Dynamic hook interface binding
- From: Phil Sutter <phil@xxxxxx>
- [nf-next PATCH 3/5] netfilter: nf_tables: Report active interfaces to user space
- From: Phil Sutter <phil@xxxxxx>
- [nf-next PATCH 0/5] Dynamic hook interface binding
- From: Phil Sutter <phil@xxxxxx>
- [nf-next PATCH 1/5] netfilter: nf_tables: Store user-defined hook ifname
- From: Phil Sutter <phil@xxxxxx>
- [nf-next PATCH 2/5] netfilter: nf_tables: Relax hook interface binding
- From: Phil Sutter <phil@xxxxxx>
- [PATCH net-next 07/15] netfilter: br_netfilter: Use nested-BH locking for brnf_frag_data_storage.
- From: Sebastian Andrzej Siewior <bigeasy@xxxxxxxxxxxxx>
- Re: [PATCH net-next v6 8/8] ax.25: x.25: Remove the now superfluous sentinel elements from ctl_table array
- From: Dan Carpenter <dan.carpenter@xxxxxxxxxx>
- Re: [PATCH v3 00/11] sysctl: treewide: constify ctl_table argument of sysctl handlers
- From: Thomas Weißschuh <linux@xxxxxxxxxxxxxx>
- Re: [PATCH v2] sysctl: treewide: constify ctl_table_header::ctl_table_arg
- From: Joel Granados <j.granados@xxxxxxxxxxx>
- Re: [PATCH net-next 1/2] netfilter: nft_queue: compute SCTP checksum
- From: Antonio Ojea <aojea@xxxxxxxxxx>
- Re: [PATCH net-next v3 2/2] ipvs: allow some sysctls in non-init user namespaces
- From: Julian Anastasov <ja@xxxxxx>
- Re: [PATCH net-next 1/2] netfilter: nft_queue: compute SCTP checksum
- From: Antonio Ojea <aojea@xxxxxxxxxx>
- Re: [PATCH net-next v6 1/8] net: Remove the now superfluous sentinel elements from ctl_table array
- From: patchwork-bot+netdevbpf@xxxxxxxxxx
- Re: [PATCH net-next v6 0/8] sysctl: Remove sentinel elements from networking
- From: Joel Granados <j.granados@xxxxxxxxxxx>
- Re: [PATCH net-next v6 8/8] ax.25: x.25: Remove the now superfluous sentinel elements from ctl_table array
- From: Joel Granados <j.granados@xxxxxxxxxxx>
- [PATCH net-next 2/2] selftests: net: netfilter: nft_queue.sh: sctp checksum
- From: Antonio Ojea <aojea@xxxxxxxxxx>
- [PATCH net-next 0/2] netfilter: nfqueue: incorrect sctp checksum
- From: Antonio Ojea <aojea@xxxxxxxxxx>
- [PATCH net-next 1/2] netfilter: nft_queue: compute SCTP checksum
- From: Antonio Ojea <aojea@xxxxxxxxxx>
- Re: [netfilter-nf:under-review 14/18] net/netfilter/nft_set_pipapo.c:2122: warning: expecting prototype for __nft_pipapo_walk(). Prototype was for nft_pipapo_do_walk() instead
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [PATCH v3 00/11] sysctl: treewide: constify ctl_table argument of sysctl handlers
- From: Joel Granados <j.granados@xxxxxxxxxxx>
- [netfilter-nf:under-review 14/18] net/netfilter/nft_set_pipapo.c:2122: warning: expecting prototype for __nft_pipapo_walk(). Prototype was for nft_pipapo_do_walk() instead
- From: kernel test robot <lkp@xxxxxxxxx>
- Re: [PATCH net-next v6 3/8] net: rds: Remove the now superfluous sentinel elements from ctl_table array
- From: Allison Henderson <allison.henderson@xxxxxxxxxx>
- Re: [libnetfilter_conntrack PATCH] conntrack: bsf: Do not return -1 on failure
- From: Phil Sutter <phil@xxxxxx>
- [syzbot] [netfilter?] WARNING: suspicious RCU usage in br_mst_set_state
- From: syzbot <syzbot+fa04eb8a56fd923fc5d8@xxxxxxxxxxxxxxxxxxxxxxxxx>
- Re: [PATCH] conntrackd: Fix signal handler race-condition
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH bpf-next v2 1/2] net: netfilter: Make ct zone opts configurable for bpf ct helpers
- From: Martin KaFai Lau <martin.lau@xxxxxxxxx>
- Re: [PATCH net-next] selftests: netfilter: nft_concat_range.sh: reduce debug kernel run time
- From: patchwork-bot+netdevbpf@xxxxxxxxxx
- Re: [PATCH net-next] selftests: netfilter: nft_concat_range.sh: reduce debug kernel run time
- From: Simon Horman <horms@xxxxxxxxxx>
- Re: [PATCH net-next] selftests: netfilter: nft_concat_range.sh: reduce debug kernel run time
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [PATCH net-next] selftests: netfilter: nft_concat_range.sh: reduce debug kernel run time
- From: Simon Horman <horms@xxxxxxxxxx>
- Re: [PATCH net-next v6 0/8] sysctl: Remove sentinel elements from networking
- From: Sabrina Dubroca <sd@xxxxxxxxxxxxxxx>
- Re: [PATCH net-next v6 8/8] ax.25: x.25: Remove the now superfluous sentinel elements from ctl_table array
- From: Sabrina Dubroca <sd@xxxxxxxxxxxxxxx>
- [PATCH net-next v6 3/8] net: rds: Remove the now superfluous sentinel elements from ctl_table array
- From: Joel Granados via B4 Relay <devnull+j.granados.samsung.com@xxxxxxxxxx>
- [PATCH net-next v6 8/8] ax.25: x.25: Remove the now superfluous sentinel elements from ctl_table array
- From: Joel Granados via B4 Relay <devnull+j.granados.samsung.com@xxxxxxxxxx>
- [PATCH net-next v6 7/8] appletalk: Remove the now superfluous sentinel elements from ctl_table array
- From: Joel Granados via B4 Relay <devnull+j.granados.samsung.com@xxxxxxxxxx>
- [PATCH net-next v6 6/8] netfilter: Remove the now superfluous sentinel elements from ctl_table array
- From: Joel Granados via B4 Relay <devnull+j.granados.samsung.com@xxxxxxxxxx>
- [PATCH net-next v6 4/8] net: sunrpc: Remove the now superfluous sentinel elements from ctl_table array
- From: Joel Granados via B4 Relay <devnull+j.granados.samsung.com@xxxxxxxxxx>
- [PATCH net-next v6 5/8] net: Remove ctl_table sentinel elements from several networking subsystems
- From: Joel Granados via B4 Relay <devnull+j.granados.samsung.com@xxxxxxxxxx>
- [PATCH net-next v6 2/8] net: ipv{6,4}: Remove the now superfluous sentinel elements from ctl_table array
- From: Joel Granados via B4 Relay <devnull+j.granados.samsung.com@xxxxxxxxxx>
- [PATCH net-next v6 0/8] sysctl: Remove sentinel elements from networking
- From: Joel Granados via B4 Relay <devnull+j.granados.samsung.com@xxxxxxxxxx>
- [PATCH net-next v6 1/8] net: Remove the now superfluous sentinel elements from ctl_table array
- From: Joel Granados via B4 Relay <devnull+j.granados.samsung.com@xxxxxxxxxx>
- Re: [PATCH v4 1/8] net: Remove the now superfluous sentinel elements from ctl_table array
- From: Joel Granados <j.granados@xxxxxxxxxxx>
- Re: [PATCH bpf-next v2 1/2] net: netfilter: Make ct zone opts configurable for bpf ct helpers
- From: Brad Cowie <brad@xxxxxxxxx>
- Re: [PATCH bpf-next v2 2/2] selftests/bpf: Update tests for new ct zone opts for nf_conntrack kfuncs
- From: Brad Cowie <brad@xxxxxxxxx>
- Re: [PATCH 1/2] landlock: Add hook on socket_listen()
- From: Mickaël Salaün <mic@xxxxxxxxxxx>
- Re: [libnetfilter_log] fix bug in race condition of calling nflog_open from different threads at same time
- From: Phil Sutter <phil@xxxxxx>
- Re: [libnetfilter_log] fix bug in race condition of calling nflog_open from different threads at same time
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [libnetfilter_log] fix bug in race condition of calling nflog_open from different threads at same time
- From: Evgen Bendyak <jman.box@xxxxxxxxx>
- Re: [PATCH net-next] selftests: netfilter: avoid test timeouts on debug kernels
- From: patchwork-bot+netdevbpf@xxxxxxxxxx
- [PATCH net-next] selftests: netfilter: nft_concat_range.sh: reduce debug kernel run time
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [libnetfilter_log] fix bug in race condition of calling nflog_open from different threads at same time
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [libnetfilter_log] fix bug in race condition of calling nflog_open from different threads at same time
- From: Evgen Bendyak <jman.box@xxxxxxxxx>
- Re: [PATCH net-next 0/7] selftest: netfilter: additional cleanups
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [PATCH 2/2] selftests/landlock: Create 'listen_zero', 'deny_listen_zero' tests
- From: Mickaël Salaün <mic@xxxxxxxxxxx>
- Re: [PATCH 1/2] landlock: Add hook on socket_listen()
- From: Mickaël Salaün <mic@xxxxxxxxxxx>
- Re: [PATCH v5 1/8] net: Remove the now superfluous sentinel elements from ctl_table array
- From: Joel Granados <j.granados@xxxxxxxxxxx>
- Re: [libnetfilter_log] fix bug in race condition of calling nflog_open from different threads at same time
- From: Phil Sutter <phil@xxxxxx>
- [libnetfilter_log] fix bug in race condition of calling nflog_open from different threads at same time
- From: Evgen Bendyak <jman.box@xxxxxxxxx>
- [PATCH nft v3 0/2] Support for variables in map expressions
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
- [PATCH nft v3 2/2] evaluate: add support for variables in map expressions
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
- [PATCH nft v3 1/2] evaluate: handle invalid mapping expressions in stateful object statements gracefully.
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
- Re: [PATCH v5 1/8] net: Remove the now superfluous sentinel elements from ctl_table array
- From: Sabrina Dubroca <sd@xxxxxxxxxxxxxxx>
- Re: [PATCH v5 1/8] net: Remove the now superfluous sentinel elements from ctl_table array
- From: Joel Granados <j.granados@xxxxxxxxxxx>
- [PATCH net-next] selftests: netfilter: avoid test timeouts on debug kernels
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [PATCH v5 8/8] ax.25: x.25: Remove the now superfluous sentinel elements from ctl_table array
- From: Joel Granados <j.granados@xxxxxxxxxxx>
- Re: [PATCH v5 6/8] netfilter: Remove the now superfluous sentinel elements from ctl_table array
- From: Joel Granados <j.granados@xxxxxxxxxxx>
- Re: [PATCH v3 11/11] sysctl: treewide: constify the ctl_table argument of handlers
- From: Heiko Carstens <hca@xxxxxxxxxxxxx>
- Re: [PATCH v5 5/8] net: Remove ctl_table sentinel elements from several networking subsystems
- From: Joel Granados <j.granados@xxxxxxxxxxx>
- Re: [PATCH v5 1/8] net: Remove the now superfluous sentinel elements from ctl_table array
- From: Sabrina Dubroca <sd@xxxxxxxxxxxxxxx>
- Re: [PATCH v4 1/8] net: Remove the now superfluous sentinel elements from ctl_table array
- From: Joel Granados <j.granados@xxxxxxxxxxx>
- [PATCH libnetfilter_queue] Update .gitignore
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
- Re: [PATCH v5 8/8] ax.25: x.25: Remove the now superfluous sentinel elements from ctl_table array
- From: Sabrina Dubroca <sd@xxxxxxxxxxxxxxx>
- Re: [PATCH v3 00/11] sysctl: treewide: constify ctl_table argument of sysctl handlers
- From: Thomas Weißschuh <linux@xxxxxxxxxxxxxx>
- Re: [PATCH v5 5/8] net: Remove ctl_table sentinel elements from several networking subsystems
- From: Sabrina Dubroca <sd@xxxxxxxxxxxxxxx>
- [libnetfilter_conntrack PATCH] conntrack: bsf: Do not return -1 on failure
- From: Phil Sutter <phil@xxxxxx>
- Re: [PATCH v4 1/8] net: Remove the now superfluous sentinel elements from ctl_table array
- From: Jakub Kicinski <kuba@xxxxxxxxxx>
- Re: [PATCH v5 4/8] net: sunrpc: Remove the now superfluous sentinel elements from ctl_table array
- From: Chuck Lever <chuck.lever@xxxxxxxxxx>
- Re: [PATCH v5 4/8] net: sunrpc: Remove the now superfluous sentinel elements from ctl_table array
- From: Jeffrey Layton <jlayton@xxxxxxxxxx>
- Re: [PATCH v5 6/8] netfilter: Remove the now superfluous sentinel elements from ctl_table array
- From: Julian Anastasov <ja@xxxxxx>
- [PATCH v5 5/8] net: Remove ctl_table sentinel elements from several networking subsystems
- From: Joel Granados via B4 Relay <devnull+j.granados.samsung.com@xxxxxxxxxx>
- [PATCH v5 6/8] netfilter: Remove the now superfluous sentinel elements from ctl_table array
- From: Joel Granados via B4 Relay <devnull+j.granados.samsung.com@xxxxxxxxxx>
- [PATCH v5 8/8] ax.25: x.25: Remove the now superfluous sentinel elements from ctl_table array
- From: Joel Granados via B4 Relay <devnull+j.granados.samsung.com@xxxxxxxxxx>
- [PATCH v5 7/8] appletalk: Remove the now superfluous sentinel elements from ctl_table array
- From: Joel Granados via B4 Relay <devnull+j.granados.samsung.com@xxxxxxxxxx>
- [PATCH v5 4/8] net: sunrpc: Remove the now superfluous sentinel elements from ctl_table array
- From: Joel Granados via B4 Relay <devnull+j.granados.samsung.com@xxxxxxxxxx>
- [PATCH v5 3/8] net: rds: Remove the now superfluous sentinel elements from ctl_table array
- From: Joel Granados via B4 Relay <devnull+j.granados.samsung.com@xxxxxxxxxx>
- [PATCH v5 1/8] net: Remove the now superfluous sentinel elements from ctl_table array
- From: Joel Granados via B4 Relay <devnull+j.granados.samsung.com@xxxxxxxxxx>
- [PATCH v5 0/8] sysctl: Remove sentinel elements from networking
- From: Joel Granados via B4 Relay <devnull+j.granados.samsung.com@xxxxxxxxxx>
- [PATCH v5 2/8] net: ipv{6,4}: Remove the now superfluous sentinel elements from ctl_table array
- From: Joel Granados via B4 Relay <devnull+j.granados.samsung.com@xxxxxxxxxx>
- Re: [PATCH net] netfilter: conntrack: fix ct-state for ICMPv6 Multicast Router Discovery
- From: Linus Lüssing <linus.luessing@xxxxxxxxx>
- Re: [PATCH v4 1/8] net: Remove the now superfluous sentinel elements from ctl_table array
- From: Joel Granados <j.granados@xxxxxxxxxxx>
- Re: [PATCH nf-next v2 4/8] netfilter: nft_set_pipapo: prepare walk function for on-demand clone
- From: Stefano Brivio <sbrivio@xxxxxxxxxx>
- Re: [PATCH bpf-next v2 2/2] selftests/bpf: Update tests for new ct zone opts for nf_conntrack kfuncs
- From: Martin KaFai Lau <martin.lau@xxxxxxxxx>
- Re: [PATCH bpf-next v2 1/2] net: netfilter: Make ct zone opts configurable for bpf ct helpers
- From: Martin KaFai Lau <martin.lau@xxxxxxxxx>
- Re: [PATCH v4 1/8] net: Remove the now superfluous sentinel elements from ctl_table array
- From: Jakub Kicinski <kuba@xxxxxxxxxx>
[Index of Archives]
[LARTC]
[Berkeley Packet Filter]
[Bugtraq]
[Yosemite News]
[Samba]
