Linux TCP/IP Netfilter Devel
[Prev Page][Next Page]
- Re: [PATCH net-next 1/2] net: Convert lowpan_frags_ops
- From: David Miller <davem@xxxxxxxxxxxxx>
- Re: [nf-next PATCH] net: nftables: Respect hash set backend features
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH 2/2 nf] netfilter: nf_tables: do not hold reference on netdevice from preparation phase
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH 1/2 nf] netfilter: nf_tables: cache device name in flowtable object
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH nf] netfilter: drop template ct when conntrack is skipped.
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH nf] netfilter: drop template ct when conntrack is skipped.
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nf] netfilter: drop template ct when conntrack is skipped.
- From: Paolo Abeni <pabeni@xxxxxxxxxx>
- Re: [nf-next PATCH] net: nftables: Respect hash set backend features
- From: Phil Sutter <phil@xxxxxx>
- Re: [nf-next PATCH] net: nftables: Respect hash set backend features
- From: Phil Sutter <phil@xxxxxx>
- Re: [nf-next PATCH] net: nftables: Respect hash set backend features
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [PATCH] netfilter: nfnetlink_cthelper: Remove VLA usage
- From: "Gustavo A. R. Silva" <gustavo@xxxxxxxxxxxxxx>
- Re: [nft PATCH] Export libnftables (again)
- From: Phil Sutter <phil@xxxxxx>
- Re: [nf-next PATCH] net: nftables: Respect hash set backend features
- From: Phil Sutter <phil@xxxxxx>
- Re: [nft PATCH] Export libnftables (again)
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [nft PATCH] Export libnftables (again)
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [nft PATCH] Export libnftables (again)
- From: Phil Sutter <phil@xxxxxx>
- Re: [nft PATCH] tests/shell: Test flush and nat chain recreate in one go
- From: Florian Westphal <fw@xxxxxxxxx>
- [nft PATCH] tests/shell: Test flush and nat chain recreate in one go
- From: Phil Sutter <phil@xxxxxx>
- Re: [nf-next PATCH] net: nftables: Respect hash set backend features
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [nf-next PATCH] net: nftables: Respect hash set backend features
- From: Phil Sutter <phil@xxxxxx>
- [PATCH] bridge: netfilter: ebt_stp: Use generic functions for comparisons
- From: Joe Perches <joe@xxxxxxxxxxx>
- [PATCH v2] iptables: constify option struct
- From: Arushi Singhal <arushisinghal19971997@xxxxxxxxx>
- [PATCH] iptables: extension: Constify option struct
- From: Arushi Singhal <arushisinghal19971997@xxxxxxxxx>
- [ebtables PATCH v2] Add string filter to ebtables
- From: Bernie Harris <bernie.harris@xxxxxxxxxxxxxxxxxxx>
- [PATCH v2 3/3] ebtables: Add string filter
- From: Bernie Harris <bernie.harris@xxxxxxxxxxxxxxxxxxx>
- [PATCH v2 2/3] ebtables: Add support for specifying match revision
- From: Bernie Harris <bernie.harris@xxxxxxxxxxxxxxxxxxx>
- [PATCH v2 1/3] net: Allow to and from offsets to be equal in skb_find_text
- From: Bernie Harris <bernie.harris@xxxxxxxxxxxxxxxxxxx>
- [PATCH] netfilter: ipset: Use is_zero_ether_addr instead of static and memcmp
- From: Joe Perches <joe@xxxxxxxxxxx>
- Re: [PATCH nf-next 0/2] ebtables: add support for ICMP and IGMP type/code matching
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH nf] netfilter: nf_tables: add missing netlink attrs to policies
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH libnftnl v2] examples: add nft-ct-helper-{add,get,del}
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH libnftnl v2] examples: add nft-ct-helper-{add,get,del}
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH libnftnl v2] examples: add nft-ct-helper-{add,get,del}
- From: Yang Zheng <tomsun.0.7@xxxxxxxxx>
- [PATCH nf] netfilter: nf_tables: add missing netlink attrs to policies
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [RFC PATCH] netfilter: nf_tables: nf_tables_allow_nat_conflict() can be static
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH nf] netfilter: nf_tables: permit second nat hook if colliding hook is going away
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH nf] netfilter: nf_tables: meter: pick a set backend that supports updates
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH] Net: netfilter: Replace printk() with pr_*() and define pr_fmt()
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH] xt_conntrack: Support bit-shifting for CONNMARK & MARK targets.
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH] netfilter: nfnetlink_cthelper: Remove VLA usage
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH] netfilter: ebtables: use ADD_COUNTER macro
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH v2] netfilter: nf_tables: remove VLA usage
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH] netfilter: cttimeout: remove VLA usage
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH 1/2 conntrackd] src: add ARRAY_SIZE definition
- From: Jan Engelhardt <jengelh@xxxxxxx>
- Re: [PATCH libmnl] attr: zero attribute padding
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [nft PATCH 0/6] A set of patches resulting from running tests/shell
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH 2/2 nf-next] netfilter: SYNPROXY: don't proxy invalid PSH,ACK packets
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [PATCH 2/2 nf-next] netfilter: SYNPROXY: don't proxy invalid PSH,ACK packets
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH 2/2 conntrackd] conntrackd: add TCP flag support
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH 1/2 conntrackd] src: add ARRAY_SIZE definition
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nf-next,RFC] netfilter: nf_conntrack_tcp: reset entry only from CLOSE and TIME_WAIT states
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH 2/2 nf-next] netfilter: SYNPROXY: don't proxy invalid PSH,ACK packets
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH 1/2 nf-next,v2] netfilter: ctnetlink: synproxy support
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH 2/2 nf-next] netfilter: SYNPROXY: don't proxy invalid PSH,ACK packets
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH libnftnl] examples: add nft-ct-helper-{add,get,del}
- From: Arturo Borrero Gonzalez <arturo@xxxxxxxxxxxxx>
- Re: [nft PATCH 0/6] A set of patches resulting from running tests/shell
- From: Arturo Borrero Gonzalez <arturo@xxxxxxxxxxxxx>
- [PATCH libnftnl] examples: add nft-ct-helper-{add,get,del}
- From: Yang Zheng <tomsun.0.7@xxxxxxxxx>
- [nft PATCH 2/6] tests/shell: Fix dump of chains/0016delete_handle_0
- From: Phil Sutter <phil@xxxxxx>
- [nft PATCH 3/6] tests/shell: Fix flowtable test cases
- From: Phil Sutter <phil@xxxxxx>
- [nft PATCH 1/6] Support 'nft -f -' to read from stdin
- From: Phil Sutter <phil@xxxxxx>
- [nft PATCH 6/6] tests/shell: Allow to specify multiple testcases
- From: Phil Sutter <phil@xxxxxx>
- [nft PATCH 4/6] flowtable: Make parsing a little more robust
- From: Phil Sutter <phil@xxxxxx>
- [nft PATCH 0/6] A set of patches resulting from running tests/shell
- From: Phil Sutter <phil@xxxxxx>
- [nft PATCH 5/6] tests/shell: Fix sporadic fail of include/0007glob_double_0
- From: Phil Sutter <phil@xxxxxx>
- Re: [RFC PATCH] netfilter: nf_tables: nf_tables_allow_nat_conflict() can be static
- From: Florian Westphal <fw@xxxxxxxxx>
- [RFC PATCH] netfilter: nf_tables: nf_tables_allow_nat_conflict() can be static
- From: kbuild test robot <lkp@xxxxxxxxx>
- Re: [PATCH nf] netfilter: nf_tables: permit second nat hook if colliding hook is going away
- From: kbuild test robot <lkp@xxxxxxxxx>
- [PATCH net-next 2/2] net: Convert nf_ct_net_ops
- From: Kirill Tkhai <ktkhai@xxxxxxxxxxxxx>
- [PATCH net-next 1/2] net: Convert lowpan_frags_ops
- From: Kirill Tkhai <ktkhai@xxxxxxxxxxxxx>
- [PATCH net-next 0/2] Converting pernet_operations (part #10)
- From: Kirill Tkhai <ktkhai@xxxxxxxxxxxxx>
- Re: [PATCH] doc: nft.8 aim for consistent synopses throughout (again)
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH] doc: nft.8 aim for consistent synopses throughout (again)
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
- [WIKI] Certificate has expired
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
- [PATCH nft] rule: reset cache iff there is an existing cache
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH] libxt_CONNMARK: Support bit-shifting for --restore,set and save-mark
- From: Jack Ma <jack.ma@xxxxxxxxxxxxxxxxxxx>
- [PATCH] xt_conntrack: Support bit-shifting for CONNMARK & MARK targets.
- From: Jack Ma <jack.ma@xxxxxxxxxxxxxxxxxxx>
- [PATCH libmnl] attr: zero attribute padding
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nf] netfilter: nf_tables: permit second nat hook if colliding hook is going away
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [PATCH net-next 0/6] Converting pernet_operations (part #8)
- From: Kirill Tkhai <ktkhai@xxxxxxxxxxxxx>
- Re: [PATCH net-next 0/6] Converting pernet_operations (part #8)
- From: David Miller <davem@xxxxxxxxxxxxx>
- Re: [PATCH nft] doc: describe table dormant flag
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [nft PATCH] Combine redir and masq statements into nat
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nft] doc: describe table dormant flag
- From: Florian Westphal <fw@xxxxxxxxx>
- [nft PATCH] Combine redir and masq statements into nat
- From: Phil Sutter <phil@xxxxxx>
- Re: [nft PATCH v2 1/3] nftables: rearrange files and examples
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
- Re: [PATCH] support bit shifting operations
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [PATCH nft 1/2] src: fix routing header support
- From: Ahmed Abdelsalam <amsalam20@xxxxxxxxx>
- [PATCH nft 2/2] tests: add srh test cases
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nft 1/2] src: fix routing header support
- From: Florian Westphal <fw@xxxxxxxxx>
- [iptables PATCH] iptables: add xtables-translate.8 manpage
- From: Arturo Borrero Gonzalez <arturo@xxxxxxxxxxxxx>
- Re: [PATCH 00/30] Netfilter/IPVS updates for net-next
- From: David Miller <davem@xxxxxxxxxxxxx>
- Re: [PATCH 00/30] Netfilter/IPVS updates for net-next
- From: Guy Shattah <sguy@xxxxxxxxxxxx>
- Re: [PATCH 00/30] Netfilter/IPVS updates for net-next
- From: David Miller <davem@xxxxxxxxxxxxx>
- [PATCH nft] tests: update to new syntax to add/update set from packet path
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nft,v2] src: revisit syntax to update sets and maps from packet path
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nft] src: revisit syntax to update sets and maps from packet path
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [nft PATCH 0/2] relational: Eliminate meta OPs
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [nft PATCH] tests/shell: Use custom nft binary for ruleset listing
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH v2 nft] support of dynamic map addition and update of elements
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH v2 nft] support of dynamic map addition and update of elements
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nft] src: update dynamic set updates from packet path syntax
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH v2 nft] support of dynamic map addition and update of elements
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [nft PATCH 1/2] relational: Eliminate meta OPs
- From: Phil Sutter <phil@xxxxxx>
- [nft PATCH 2/2] netlink: Fold netlink_gen_cmp() into netlink_gen_relational()
- From: Phil Sutter <phil@xxxxxx>
- [nft PATCH 0/2] relational: Eliminate meta OPs
- From: Phil Sutter <phil@xxxxxx>
- [nft PATCH] tests/shell: Use custom nft binary for ruleset listing
- From: Phil Sutter <phil@xxxxxx>
- [PATCH v2 nft] support of dynamic map addition and update of elements
- From: Laura Garcia Liebana <nevola@xxxxxxxxx>
- Re: [PATCH net-next 0/6] Converting pernet_operations (part #8)
- From: Julian Anastasov <ja@xxxxxx>
- Re: [PATCH nft] support of dynamic map addition and update of elements
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH] net: drivers/net: Remove unnecessary skb_copy_expand OOM messages
- From: David Miller <davem@xxxxxxxxxxxxx>
- Re: [PATCH nft] support of dynamic map addition and update of elements
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH net-next 1/6] net: Convert l2tp_net_ops
- From: Guillaume Nault <g.nault@xxxxxxxxxxxx>
- [PATCH net-next 2/6] net: Convert mpls_net_ops
- From: Kirill Tkhai <ktkhai@xxxxxxxxxxxxx>
- [PATCH net-next 6/6] net: Convert ip_vs_ftp_ops
- From: Kirill Tkhai <ktkhai@xxxxxxxxxxxxx>
- [PATCH net-next 5/6] net: Convert ipvs_core_dev_ops
- From: Kirill Tkhai <ktkhai@xxxxxxxxxxxxx>
- [PATCH net-next 4/6] net: Convert ipvs_core_ops
- From: Kirill Tkhai <ktkhai@xxxxxxxxxxxxx>
- [PATCH net-next 3/6] net: Convert ovs_net_ops
- From: Kirill Tkhai <ktkhai@xxxxxxxxxxxxx>
- [PATCH net-next 1/6] net: Convert l2tp_net_ops
- From: Kirill Tkhai <ktkhai@xxxxxxxxxxxxx>
- [PATCH net-next 0/6] Converting pernet_operations (part #8)
- From: Kirill Tkhai <ktkhai@xxxxxxxxxxxxx>
- [PATCH nft] support of dynamic map addition and update of elements
- From: Laura Garcia Liebana <nevola@xxxxxxxxx>
- [PATCH nft] create u32_integer type to be used as a key for sets and maps
- From: Laura Garcia Liebana <nevola@xxxxxxxxx>
- Re: [PATCH 00/30] Netfilter/IPVS updates for net-next
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH] netfilter: ebtables: use ADD_COUNTER macro
- From: Taehee Yoo <ap420073@xxxxxxxxx>
- [PATCH conntrack-tools] src: synproxy support
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH libnetfilter_conntrack] conntrack: add synproxy support
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nf-next] netfilter: ctnetlink: synproxy support
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nf] netfilter: nf_tables: meter: pick a set backend that supports updates
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: explicit OP_EQ with non-singleton RHS
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- explicit OP_EQ with non-singleton RHS
- From: Phil Sutter <phil@xxxxxx>
- Re: [PATCH nf-next 0/2] ebtables: add support for ICMP and IGMP type/code matching
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
- nftables patch proposal: debug_mask propagate through cache_update() just as it is.
- From: nozzy123nozzy@xxxxxxxxx
- Re: [PATCH] support bit shifting operations
- From: Jack Ma <Jack.Ma@xxxxxxxxxxxxxxxxxxx>
- Re: [PATCH nf-next] net: netfilter: nf_tables_api: Use id allocation.
- From: Varsha Rao <rvarsha016@xxxxxxxxx>
- Re: iptables-save - suggest patch to add functionality
- From: Alban Vidal <alban.vidal@xxxxxxxxxx>
- Re: [PATCH 00/30] Netfilter/IPVS updates for net-next
- From: David Miller <davem@xxxxxxxxxxxxx>
- Re: [PATCH] netfilter: cttimeout: remove VLA usage
- From: Joe Perches <joe@xxxxxxxxxxx>
- Re: [PATCH 00/30] Netfilter/IPVS updates for net-next
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [PATCH] netfilter: cttimeout: remove VLA usage
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: iptables-save - suggest patch to add functionality
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH 2/2] ebtables: Add string filter
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH 00/30] Netfilter/IPVS updates for net-next
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [PATCH v3 0/17] netfilter: nf_flow_table: refactoring, TCP state tracking, sending flows to slow path
- From: Laura Garcia <nevola@xxxxxxxxx>
- Re: [PATCH v3 0/17] netfilter: nf_flow_table: refactoring, TCP state tracking, sending flows to slow path
- From: Rafał Miłecki <zajec5@xxxxxxxxx>
- [PATCH v2] netfilter: nf_tables: remove VLA usage
- From: "Gustavo A. R. Silva" <gustavo@xxxxxxxxxxxxxx>
- Re: [PATCH 2/2] ebtables: Add string filter
- From: Bernie Harris <Bernie.Harris@xxxxxxxxxxxxxxxxxxx>
- [PATCH] netfilter: nf_tables: remove VLA usage
- From: "Gustavo A. R. Silva" <gustavo@xxxxxxxxxxxxxx>
- [PATCH] netfilter: nfnetlink_cthelper: Remove VLA usage
- From: "Gustavo A. R. Silva" <gustavo@xxxxxxxxxxxxxx>
- Re: [PATCH] netfilter: cttimeout: remove VLA usage
- From: Joe Perches <joe@xxxxxxxxxxx>
- [PATCH] netfilter: cttimeout: remove VLA usage
- From: "Gustavo A. R. Silva" <gustavo@xxxxxxxxxxxxxx>
- Re: iptables-save - suggest patch to add functionality
- From: Alban Vidal <alban.vidal@xxxxxxxxxx>
- Re: [PATCH 00/30] Netfilter/IPVS updates for net-next
- From: Felix Fietkau <nbd@xxxxxxxx>
- Re: [PATCH 00/30] Netfilter/IPVS updates for net-next
- From: David Miller <davem@xxxxxxxxxxxxx>
- Re: [PATCH 00/30] Netfilter/IPVS updates for net-next
- From: Felix Fietkau <nbd@xxxxxxxx>
- Re: [PATCH 00/30] Netfilter/IPVS updates for net-next
- From: David Miller <davem@xxxxxxxxxxxxx>
- [PATCH 00/30] Netfilter/IPVS updates for net-next
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH 02/30] netfilter: nfnetlink_acct: remove useless parameter
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH 03/30] netfilter: xt_cluster: get rid of xt_cluster_ipv6_is_multicast
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH 01/30] netfilter: nf_tables: nf_tables_obj_lookup_byhandle() can be static
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH 07/30] netfilter: x_tables: check standard verdicts in core
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH 05/30] netfilter: ipt_ah: return boolean instead of integer
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH 08/30] netfilter: x_tables: check error target size too
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH 09/30] netfilter: x_tables: move hook entry checks into core
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH 06/30] netfilter: unlock xt_table earlier in __do_replace
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH 04/30] netfilter: nf_conntrack_broadcast: remove useless parameter
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH 11/30] netfilter: x_tables: cap allocations at 512 mbyte
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH 10/30] netfilter: x_tables: enforce unique and ascending entry points
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH 15/30] netfilter: compat: reject huge allocation requests
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH 17/30] netfilter: x_tables: ensure last rule in base chain matches underflow/policy
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH 16/30] netfilter: x_tables: make sure compat af mutex is held
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH 18/30] netfilter: make xt_rateest hash table per net
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH 19/30] netfilter: xt_limit: Spelling s/maxmum/maximum/
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH 22/30] ipv6: make ip6_dst_mtu_forward inline
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH 20/30] netfilter: nf_flow_table: use IP_CT_DIR_* values for FLOW_OFFLOAD_DIR_*
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH 26/30] ipvs: use true and false for boolean values
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH 23/30] netfilter: nf_flow_table: cache mtu in struct flow_offload_tuple
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH 21/30] netfilter: nf_flow_table: clean up flow_offload_alloc
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH 27/30] netfilter: nf_tables: handle rt0 and rt2 properly
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH 28/30] netfilter: Refactor nf_conncount
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH 29/30] netfilter: conncount: Support count only use case
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH 30/30] netfilter: nft_ct: add NFT_CT_{SRC,DST}_{IP,IP6}
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH 24/30] netfilter: nf_flow_table: rename nf_flow_table.c to nf_flow_table_core.c
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH 25/30] netfilter: x_tables: fix build with CONFIG_COMPAT=n
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH 14/30] netfilter: compat: prepare xt_compat_init_offsets to return errors
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH 13/30] netfilter: x_tables: add counters allocation wrapper
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH 12/30] netfilter: x_tables: limit allocation requests for blob rule heads
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH 0/5] Netfilter fixes for net
- From: David Miller <davem@xxxxxxxxxxxxx>
- [PATCH 4/5] netfilter: bridge: ebt_among: add more missing match size checks
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH 3/5] netfilter: x_tables: add and use xt_check_proc_name
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH 5/5] netfilter: nf_tables: release flowtable hooks
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH 1/5] netfilter: nft_set_hash: skip fixed hash if timeout is specified
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH 2/5] netfilter: ebtables: fix erroneous reject of last rule
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH 0/5] Netfilter fixes for net
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH nft] netlink: use nftnl_flowtable_get/set
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: Port triggering
- From: Stéphane Veyret <sveyret@xxxxxxxxx>
- Re: Port triggering
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: Port triggering
- From: Stéphane Veyret <sveyret@xxxxxxxxx>
- [PATCH] net: drivers/net: Remove unnecessary skb_copy_expand OOM messages
- From: Joe Perches <joe@xxxxxxxxxxx>
- [PATCH] Net: netfilter: Replace printk() with pr_*() and define pr_fmt()
- From: Arushi Singhal <arushisinghal19971997@xxxxxxxxx>
- Re: [PATCH nft] src: install table skeleton files to sysconfdir/nftables
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nft] netlink: use nftnl_flowtable_get/set
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [PATCH nft] src: install table skeleton files to sysconfdir/nftables
- From: Arturo Borrero Gonzalez <arturo@xxxxxxxxxxxxx>
- Re: [nft] nftables: Fixing Bug 1219 - handle rt0 and rt2 properly
- From: Ahmed Abdelsalam <amsalam20@xxxxxxxxx>
- [PATCH nft] src: install table skeleton files to sysconfdir/nftables
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: Port triggering
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: Port triggering
- From: Stéphane Veyret <sveyret@xxxxxxxxx>
- Re: [PATCH] src: fix parsing for set handle attributes
- From: Eckl, Máté <ecklm94@xxxxxxxxx>
- Re: [RFC] netfilter: cttimeout: remove VLA in ctnl_timeout_parse_policy
- From: "Gustavo A. R. Silva" <gustavo@xxxxxxxxxxxxxx>
- Re: [RFC] netfilter: cttimeout: remove VLA in ctnl_timeout_parse_policy
- From: "Gustavo A. R. Silva" <gustavo@xxxxxxxxxxxxxx>
- Re: [PATCH v2] net: netfilter: Replace printk() with appropriate pr_*() macro
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [PATCH v2] net: netfilter: Replace printk() with appropriate pr_*() macro
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [RFC] netfilter: cttimeout: remove VLA in ctnl_timeout_parse_policy
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH nf-next 1/2] ebtables: add support for matching ICMP type and code
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [RFC] netfilter: cttimeout: remove VLA in ctnl_timeout_parse_policy
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH nf-next 1/2] ebtables: add support for matching ICMP type and code
- From: Matthias Schiffer <mschiffer@xxxxxxxxxxxxxxxxxxxx>
- Re: [nft] nftables: Adding support for segment routing header 'srh'
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [nft] nftables: Fixing Bug 1219 - handle rt0 and rt2 properly
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH nf-next 1/2] netfilter: SYNPROXY: set transport header properly
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH nf-next v2 2/2] nf_conncount: Support count only use case
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH nf-next v2 1/2] netfilter: Refactor nf_conncount
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH nf-next 1/2] ebtables: add support for matching ICMP type and code
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH nf-next] net: netfilter: nf_tables_api: Use id allocation.
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: iptables-save - suggest patch to add functionality
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [nf-next] netfilter: nf_tables: Fixing Bug 1219 - handle rt0 and rt2 properly
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH v2] net: netfilter: Replace printk() with appropriate pr_*() macro
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH 2/2] ebtables: Add string filter
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH nf] netfilter: ebtables: fix erroneous reject of last rule
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH nf] netfilter: x_tables: add and use xt_check_proc_name
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH nf v5] netfilter: bridge: ebt_among: add more missing match size checks
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nf] netfilter: nf_tables: release flowtable hooks
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH v2] net: netfilter: Replace printk() with appropriate pr_*() macro
- From: Joe Perches <joe@xxxxxxxxxxx>
- [PATCH v2] net: netfilter: Replace printk() with appropriate pr_*() macro
- From: Arushi Singhal <arushisinghal19971997@xxxxxxxxx>
- Re: connlimit modul doesn't works as expected
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: connlimit modul doesn't works as expected
- From: Toralf Förster <toralf.foerster@xxxxxx>
- Re: connlimit modul doesn't works as expected
- From: Toralf Förster <toralf.foerster@xxxxxx>
- [PATCH 1/1] doc: add set information and example for run-time blackhole
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH] src: fix parsing for set handle attributes
- From: Harsha Sharma <harshasharmaiitr@xxxxxxxxx>
- Re: [PATCH Netfilter] net: netfilter: Replace printk() with more standardize output format.
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: connlimit modul doesn't works as expected
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [PATCH Netfilter] net: netfilter: Replace printk() with more standardize output format.
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [nft PATCH v2 1/3] nftables: rearrange files and examples
- From: Arturo Borrero Gonzalez <arturo@xxxxxxxxxxxxx>
- Re: Port triggering
- From: Stéphane Veyret <sveyret@xxxxxxxxx>
- Re: Problem in setting up netfilter repository
- From: Harsha Sharma <harshasharmaiitr@xxxxxxxxx>
- Problem in setting up netfilter repository
- From: SIMRAN SINGHAL <singhalsimran0@xxxxxxxxx>
- connlimit modul doesn't works as expected
- From: Toralf Förster <toralf.foerster@xxxxxx>
- Re: [nft PATCH v2 1/3] nftables: rearrange files and examples
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
- [PATCH nf] netfilter: x_tables: add and use xt_check_proc_name
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: WARNING in __proc_create
- From: Eric Dumazet <eric.dumazet@xxxxxxxxx>
- Re: WARNING in __proc_create
- From: Cong Wang <xiyou.wangcong@xxxxxxxxx>
- Re: WARNING in __proc_create
- From: Eric Dumazet <eric.dumazet@xxxxxxxxx>
- Re: WARNING in __proc_create
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: WARNING in __proc_create
- From: Cong Wang <xiyou.wangcong@xxxxxxxxx>
- Re: WARNING in __proc_create
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: WARNING in __proc_create
- From: Eric Dumazet <eric.dumazet@xxxxxxxxx>
- Re: WARNING in __proc_create
- From: Eric Dumazet <eric.dumazet@xxxxxxxxx>
- Re: WARNING in __proc_create
- From: Cong Wang <xiyou.wangcong@xxxxxxxxx>
- WARNING in __proc_create
- From: syzbot <syzbot+0502b00edac2a0680b61@xxxxxxxxxxxxxxxxxxxxxxxxx>
- Re: [PATCH] tests: shell: fix tests for deletion via handle attribute
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH] tests: shell: fix tests for deletion via handle attribute
- From: Harsha Sharma <harshasharmaiitr@xxxxxxxxx>
- Re: [PATCH] rule: print handle attribute in more clearer manner
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH nft] tests: shell: autogenerate dump verification
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH nf v5] netfilter: bridge: ebt_among: add more missing match size checks
- From: Eric Dumazet <eric.dumazet@xxxxxxxxx>
- [PATCH nf v5] netfilter: bridge: ebt_among: add more missing match size checks
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [PATCH nf v4] netfilter: bridge: ebt_among: add more missing match size checks
- From: Eric Dumazet <eric.dumazet@xxxxxxxxx>
- Re: Port triggering
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: Port triggering
- From: Stéphane Veyret <sveyret@xxxxxxxxx>
- [PATCH nft] ct: support for NFT_CT_{SRC,DST}_{IP,IP6}
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH libnftnl] src: support for NFT_CT_{SRC,DST}_{IP,IP6}
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH nf-next] netfilter: nft_ct: add NFT_CT_{SRC,DST}_{IP,IP6}
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nf-next] netfilter: nft_ct: add NFT_CT_{SRC,DST}_{IP,IP6}
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nf v4] netfilter: bridge: ebt_among: add more missing match size checks
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [PATCH nf v3] netfilter: bridge: ebt_among: add more missing match size checks
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [PATCH nf v3] netfilter: bridge: ebt_among: add more missing match size checks
- From: Eric Dumazet <eric.dumazet@xxxxxxxxx>
- Re: [PATCH nf v3] netfilter: bridge: ebt_among: add more missing match size checks
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [PATCH nf v3] netfilter: bridge: ebt_among: add more missing match size checks
- From: Eric Dumazet <eric.dumazet@xxxxxxxxx>
- [PATCH nf v3] netfilter: bridge: ebt_among: add more missing match size checks
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [PATCH nf-next 1/2] netfilter: SYNPROXY: set transport header properly
- From: Serhey Popovych <serhe.popovych@xxxxxxxxx>
- [PATCH nf v2] netfilter: bridge: ebt_among: add more missing match size checks
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH] rule: print handle attribute in more clearer manner
- From: Harsha Sharma <harshasharmaiitr@xxxxxxxxx>
- Re: [PATCH nf-next 1/2] netfilter: SYNPROXY: set transport header properly
- From: Eric Dumazet <eric.dumazet@xxxxxxxxx>
- Re: [PATCH nf-next 1/2] netfilter: SYNPROXY: set transport header properly
- From: Serhey Popovych <serhe.popovych@xxxxxxxxx>
- Re: [PATCH nf-next 1/2] netfilter: SYNPROXY: set transport header properly
- From: Eric Dumazet <eric.dumazet@xxxxxxxxx>
- [PATCH nf] netfilter: ebtables: fix erroneous reject of last rule
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [PATCH nf] netfilter: bridge: ebt_among: add more missing match size checks
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nf-next 2/2] netfilter: nf_reject: set transport header properly
- From: Serhey Popovych <serhe.popovych@xxxxxxxxx>
- [PATCH nf-next 1/2] netfilter: SYNPROXY: set transport header properly
- From: Serhey Popovych <serhe.popovych@xxxxxxxxx>
- [PATCH nf-next 0/2] netfilter: set transport header properly
- From: Serhey Popovych <serhe.popovych@xxxxxxxxx>
- Re: [PATCH v4] netfilter : add NAT support for shifted portmap ranges
- From: Thierry Du Tre <thierry@xxxxxxxxxxxx>
- [PATCH nf] netfilter: bridge: ebt_among: add more missing match size checks
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [PATCH RFC 0/4] net: add bpfilter
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
- [PATCH nft] tests: shell: autogenerate dump verification
- From: Laura Garcia Liebana <nevola@xxxxxxxxx>
- Re: [PATCH] support bit shifting operations
- From: Jack Ma <Jack.Ma@xxxxxxxxxxxxxxxxxxx>
- [PATCH] support bit shifting operations
- From: Jack Ma <Jack.Ma@xxxxxxxxxxxxxxxxxxx>
- BUG: unable to handle kernel paging request in ebt_among_mt_check (2)
- From: syzbot <syzbot+bdabab6f1983a03fc009@xxxxxxxxxxxxxxxxxxxxxxxxx>
- Re: [PATCH iptables 0/4] iptables: Fix [unsupported revision] for matches/targets after update
- From: Willem de Bruijn <willem.j.debruijn@xxxxxxxxx>
- [PATCH] src: don't not dump set content from netlink_get_setelems()
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nft] src: remove unused batch support checks
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH nft] src: move monitor code to src/monitor.c
- From: Arturo Borrero Gonzalez <arturo@xxxxxxxxxxxxx>
- Re: [PATCH nft] src: move monitor code to src/monitor.c
- From: Phil Sutter <phil@xxxxxx>
- [PATCH nft] src: move monitor code to src/monitor.c
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nft] src: support for get element command
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH iptables 4/4] xtables: Fix rules print/save after iptables update
- From: Serhey Popovych <serhe.popovych@xxxxxxxxx>
- [PATCH iptables 3/4] xtables: Register all match/target revisions supported by us and kernel
- From: Serhey Popovych <serhe.popovych@xxxxxxxxx>
- [PATCH iptables 2/4] xtables: Check match/target size vs XT_ALIGN(size) at register time
- From: Serhey Popovych <serhe.popovych@xxxxxxxxx>
- [PATCH iptables 1/4] xtables: Do not register matches/targets with incompatible revision
- From: Serhey Popovych <serhe.popovych@xxxxxxxxx>
- [PATCH iptables 0/4] iptables: Fix [unsupported revision] for matches/targets after update
- From: Serhey Popovych <serhe.popovych@xxxxxxxxx>
- [RFC] netfilter: cttimeout: remove VLA in ctnl_timeout_parse_policy
- From: "Gustavo A. R. Silva" <gustavo@xxxxxxxxxxxxxx>
- WARNING in compat_copy_entries (2)
- From: syzbot <syzbot+659574e7bcc7f7eb4df7@xxxxxxxxxxxxxxxxxxxxxxxxx>
- Re: [PATCH] configure: Verify libnftnl install is recent enough
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [RFC nft] tests: shell: autogenerate dump verification
- From: Arturo Borrero Gonzalez <arturo@xxxxxxxxxxxxx>
- Re: [RFC nft] tests: shell: autogenerate dump verification
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [PATCH] ipvs: use true and false for boolean values
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [RFC nft] tests: shell: autogenerate dump verification
- From: Arturo Borrero Gonzalez <arturo@xxxxxxxxxxxxx>
- Re: [PATCH nf-next] netfilter: x_tables: fix build with CONFIG_COMPAT=n
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Port triggering
- From: Stéphane Veyret <sveyret@xxxxxxxxx>
- Re: [PATCH] ipvs: use true and false for boolean values
- From: Simon Horman <horms@xxxxxxxxxxxx>
- [PATCH nf-next] netfilter: x_tables: fix build with CONFIG_COMPAT=n
- From: Florian Westphal <fw@xxxxxxxxx>
- [nf-next:master 7/24] net/netfilter/x_tables.c:797:3: error: implicit declaration of function 'verdict_ok'
- From: kbuild test robot <fengguang.wu@xxxxxxxxx>
- [PATCH] configure: Verify libnftnl install is recent enough
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
- [nf-next:master 8/24] net/netfilter/x_tables.c:819:8: error: implicit declaration of function 'error_tg_ok'
- From: kbuild test robot <fengguang.wu@xxxxxxxxx>
- [nf-next:master 7/24] net/netfilter/x_tables.c:797:8: error: implicit declaration of function 'verdict_ok'; did you mean 'vprintk'?
- From: kbuild test robot <fengguang.wu@xxxxxxxxx>
- Re: [PATCH v4] netfilter : add NAT support for shifted portmap ranges
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [RFC nft] tests: shell: autogenerate dump verification
- From: Laura Garcia Liebana <nevola@xxxxxxxxx>
- Re: [PATCH] netfilter: ipt_ah: return boolean instead of integer
- From: "Gustavo A. R. Silva" <garsilva@xxxxxxxxxxxxxx>
- Re: [PATCH v3 0/17] netfilter: nf_flow_table: refactoring, TCP state tracking, sending flows to slow path
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH trivial resend]] netfilter: xt_limit: Spelling s/maxmum/maximum/
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [Patch nf-next] netfilter: make xt_rateest hash table per net
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH nf-next 00/11] netfilter: x_tables: add more checks on rule blob format
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH v3 0/17] netfilter: nf_flow_table: refactoring, TCP state tracking, sending flows to slow path
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH net] netfilter: unlock xt_table earlier in __do_replace
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH] netfilter: ipt_ah: return boolean instead of integer
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH] netfilter: remove useless prototype
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH] netfilter: nf_conntrack_broadcast: remove useless parameter
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH] netfilter: xt_cluster: get rid of xt_cluster_ipv6_is_multicast
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH] netfilter: nfnetlink_acct: remove useless parameter
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH] netfilter: remove useless prototype
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH] ipvs: use true and false for boolean values
- From: "Gustavo A. R. Silva" <garsilva@xxxxxxxxxxxxxx>
- Re: [ANNOUNCE] ipset 6.28 released
- From: Jozsef Kadlecsik <kadlec@xxxxxxxxxxxxxxxxx>
- Re: [PATCH nft] tests: shell: set timeout and size combination coverage
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nft] rule: broken handle listing of table and named objects
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH nft] tests: shell: set timeout and size combination coverage
- From: Arturo Borrero Gonzalez <arturo@xxxxxxxxxxxxx>
- [PATCH nft] rule: print object handle with --echo --handle
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nft 2/2] netlink: print table handle with --echo --handle
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nft 1/2] netlink: print chain handle with --echo --handle
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nft] tests: shell: set timeout and size combination coverage
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: BUG: unable to handle kernel paging request in compat_copy_entries
- From: Paolo Abeni <pabeni@xxxxxxxxxx>
- Re: [PATCH net] netfilter: check for out-of-bounds while copying compat entries
- From: Paolo Abeni <pabeni@xxxxxxxxxx>
- [PATCH nf] netfilter: nft_set_hash: skip fixed hash if timeout is specified
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH net] netfilter: check for out-of-bounds while copying compat entries
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [PATCH nf-next v2 2/2] nf_conncount: Support count only use case
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [PATCH nf-next v2 1/2] netfilter: Refactor nf_conncount
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH net] netfilter: check for out-of-bounds while copying compat entries
- From: Paolo Abeni <pabeni@xxxxxxxxxx>
- BUG: unable to handle kernel paging request in compat_copy_entries
- From: syzbot <syzbot+5705ba91388d7bc30828@xxxxxxxxxxxxxxxxxxxxxxxxx>
- Re: [ANNOUNCE] ipset 6.28 released
- From: Akshat Kakkar <akshat.1984@xxxxxxxxx>
- [PATCH nf-next v2 2/2] nf_conncount: Support count only use case
- From: Yi-Hung Wei <yihung.wei@xxxxxxxxx>
- [PATCH nf-next v2 1/2] netfilter: Refactor nf_conncount
- From: Yi-Hung Wei <yihung.wei@xxxxxxxxx>
- Re: Contribute to Net-filter Development && G-Soc 2018
- From: Arturo Borrero Gonzalez <arturo@xxxxxxxxxxxxx>
- Re: [PATCH nf-next 0/2] ebtables: add support for ICMP and IGMP type/code matching
- From: Matthias Schiffer <mschiffer@xxxxxxxxxxxxxxxxxxxx>
- Re: [PATCH nf-next 0/2] ebtables: add support for ICMP and IGMP type/code matching
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nf-next 2/2] ebtables: add support for matching IGMP type
- From: Matthias Schiffer <mschiffer@xxxxxxxxxxxxxxxxxxxx>
- [PATCH ebtables 3/4] ebt_ip: add support for matching ICMP type and code
- From: Matthias Schiffer <mschiffer@xxxxxxxxxxxxxxxxxxxx>
- [PATCH ebtables 2/4] Move ICMP type handling functions from ebt_ip6 to useful_functions.c
- From: Matthias Schiffer <mschiffer@xxxxxxxxxxxxxxxxxxxx>
- [PATCH ebtables 1/4] include: sync linux/netfilter_bridge/ebt_ip.h with kernel
- From: Matthias Schiffer <mschiffer@xxxxxxxxxxxxxxxxxxxx>
- [PATCH ebtables 4/4] ebt_ip: add support for matching IGMP type
- From: Matthias Schiffer <mschiffer@xxxxxxxxxxxxxxxxxxxx>
- [PATCH nf-next 1/2] ebtables: add support for matching ICMP type and code
- From: Matthias Schiffer <mschiffer@xxxxxxxxxxxxxxxxxxxx>
- [PATCH nf-next 0/2] ebtables: add support for ICMP and IGMP type/code matching
- From: Matthias Schiffer <mschiffer@xxxxxxxxxxxxxxxxxxxx>
- [PATCH nft,v2] src: add variable expression and use it to allow redefinitions
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nft 1/2] src: add variable expression and use it to allow redefinitions
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nft 2/2] tests: shell: redefine and undefine
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Contribute to Net-filter Development && G-Soc 2018
- From: Himanshu Sagar <himanshu14046@xxxxxxxxxxx>
- [ANNOUNCE] nftables 0.8.3 release
- From: Florian Westphal <fw@xxxxxxxxx>
- [ANNOUNCE] ipset 6.36 released
- From: Jozsef Kadlecsik <kadlec@xxxxxxxxxxxxxxxxx>
- Re: [PATCH nf-next 2/2] nf_conncount: Support count only use case
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nft] src: datatype: prefer sscanf, avoid strncpy
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [PATCH v2 nft] libnftables: Print error and exit for empty string
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [PATCH nft] configure: misc updates
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nft] netlink: remove non-batching routines
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nft] configure: misc updates
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH v2 nft] libnftables: Print error and exit for empty string
- From: Harsha Sharma <harshasharmaiitr@xxxxxxxxx>
- Re: [PATCH 00/14] Netfilter/IPVS fixes for net
- From: David Miller <davem@xxxxxxxxxxxxx>
- [PATCH 02/14] netfilter: ipt_CLUSTERIP: put config instead of freeing it
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH 01/14] netfilter: ipt_CLUSTERIP: put config struct if we can't increment ct refcount
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH 03/14] netfilter: ipv6: fix use-after-free Write in nf_nat_ipv6_manip_pkt
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH 06/14] netfilter: ebtables: CONFIG_COMPAT: don't trust userland offsets
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH 04/14] netfilter: bridge: ebt_among: add missing match size checks
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH 08/14] netfilter: increase IPSTATS_MIB_CSUMERRORS stat
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH 13/14] netfilter: nf_tables: use the right index from flowtable error path
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH 05/14] netfilter: ebtables: convert BUG_ONs to WARN_ONs
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH 10/14] netfilter: use skb_to_full_sk in ip6_route_me_harder
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH 14/14] ipvs: remove IPS_NAT_MASK check to fix passive FTP
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH 11/14] netfilter: nf_tables: return EBUSY if device already belongs to flowtable
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH 12/14] netfilter: nf_tables: missing attribute validation in nf_tables_delflowtable()
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH 09/14] netfilter: don't set F_IFACE on ipv6 fib lookups
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH 07/14] netfilter: nf_flow_table: fix checksum when handling DNAT
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH 00/14] Netfilter/IPVS fixes for net
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH nft] fix integer type size to be used as a key for sets and maps
- From: Laura Garcia Liebana <nevola@xxxxxxxxx>
- Re: [PATCH nft] fix integer type size to be used as a key for sets and maps
- From: Phil Sutter <phil@xxxxxx>
- [PATCH nft] fix integer type size to be used as a key for sets and maps
- From: Laura Garcia Liebana <nevola@xxxxxxxxx>
- [PATCH trivial resend]] netfilter: xt_limit: Spelling s/maxmum/maximum/
- From: Geert Uytterhoeven <geert+renesas@xxxxxxxxx>
- Re: [PATCH nft] parser: support of maps with timeout
- From: Arturo Borrero Gonzalez <arturo@xxxxxxxxxxxxx>
- Re: [PATCH nft] parser: support of maps with timeout
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [nft PATCH 0/6] A number of covscan-induced fixes
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nft] parser: support of maps with timeout
- From: Laura Garcia Liebana <nevola@xxxxxxxxx>
- Re: [Patch nf-next] netfilter: make xt_rateest hash table per net
- From: Eric Dumazet <eric.dumazet@xxxxxxxxx>
- [Patch nf-next] netfilter: make xt_rateest hash table per net
- From: Cong Wang <xiyou.wangcong@xxxxxxxxx>
- Re: [PATCH nf-next 2/2] nf_conncount: Support count only use case
- From: Yi-Hung Wei <yihung.wei@xxxxxxxxx>
- Re: [PATCH nf-next 1/2] netfilter: nf_conncount: Refactor nf_conncount
- From: Yi-Hung Wei <yihung.wei@xxxxxxxxx>
- Re: [ANNOUNCE] ipset 6.28 released
- From: Jozsef Kadlecsik <kadlec@xxxxxxxxxxxxxxxxx>
- Re: [ANNOUNCE] ipset 6.28 released
- From: Akshat Kakkar <akshat.1984@xxxxxxxxx>
- Re: [ANNOUNCE] ipset 6.28 released
- From: Jozsef Kadlecsik <kadlec@xxxxxxxxxxxxxxxxx>
- [nft PATCH 5/6] netlink: Complain if setting O_NONBLOCK fails
- From: Phil Sutter <phil@xxxxxx>
- [nft PATCH 1/6] cli: Drop pointless check in cli_append_multiline()
- From: Phil Sutter <phil@xxxxxx>
- [nft PATCH 2/6] erec: Avoid passing negative offset to fseek()
- From: Phil Sutter <phil@xxxxxx>
- [nft PATCH 3/6] evaluate: Fix memleak in stmt_reject_gen_dependency()
- From: Phil Sutter <phil@xxxxxx>
- [nft PATCH v2 6/6] netlink_delinearize: Fix resource leaks
- From: Phil Sutter <phil@xxxxxx>
- [nft PATCH 0/6] A number of covscan-induced fixes
- From: Phil Sutter <phil@xxxxxx>
- [nft PATCH 4/6] hash: Fix potential null-pointer dereference in hash_expr_cmp()
- From: Phil Sutter <phil@xxxxxx>
- Re: [ANNOUNCE] ipset 6.28 released
- From: Akshat Kakkar <akshat.1984@xxxxxxxxx>
- Re: [ANNOUNCE] ipset 6.28 released
- From: Jozsef Kadlecsik <kadlec@xxxxxxxxxxxxxxxxx>
- [PATCH iptables 3/3] xtables: Introduce and use common function to print val[/mask] arguments
- From: Serhey Popovych <serhe.popovych@xxxxxxxxx>
- [PATCH iptables 1/3] extensions: Initialize linear mapping of symbols in _init() of extension
- From: Serhey Popovych <serhe.popovych@xxxxxxxxx>
- [PATCH iptables 2/3] xtables: Introduce and use common function to parse val[/mask] arguments
- From: Serhey Popovych <serhe.popovych@xxxxxxxxx>
- [PATCH iptables 0/3] iptables: Unify val[/mask] parsing and printing routines
- From: Serhey Popovych <serhe.popovych@xxxxxxxxx>
- Re: [ANNOUNCE] ipset 6.28 released
- From: Akshat Kakkar <akshat.1984@xxxxxxxxx>
- Re: [PATCH nf-next 2/2] nf_conncount: Support count only use case
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [PATCH nf-next 1/2] netfilter: nf_conncount: Refactor nf_conncount
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nf-next 2/2] nf_conncount: Support count only use case
- From: Yi-Hung Wei <yihung.wei@xxxxxxxxx>
- [PATCH nf-next 1/2] netfilter: nf_conncount: Refactor nf_conncount
- From: Yi-Hung Wei <yihung.wei@xxxxxxxxx>
- [PATCH nft] tests: shell: regression test for bugzilla 1228
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH net] ipvs: remove IPS_NAT_MASK check to fix passive FTP
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH] extensions: libxt_bpf: Fix build with old kernel versions
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [nft PATCH 0/2] Review monitor code for output_fp conformity
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [nft PATCH] Review switch statements for unmarked fall through cases
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [nft PATCH] Review switch statements for unmarked fall through cases
- From: Phil Sutter <phil@xxxxxx>
- Re: [nft PATCH] Review switch statements for unmarked fall through cases
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [PATCH net] ipvs: remove IPS_NAT_MASK check to fix passive FTP
- From: Simon Horman <horms@xxxxxxxxxxxx>
- [nft PATCH] Review switch statements for unmarked fall through cases
- From: Phil Sutter <phil@xxxxxx>
- [nft PATCH] netlink_delinearize: Fix resource leaks
- From: Phil Sutter <phil@xxxxxx>
- [nft PATCH 2/2] monitor: Make JSON/XML output respect output_fp
- From: Phil Sutter <phil@xxxxxx>
- [nft PATCH 0/2] Review monitor code for output_fp conformity
- From: Phil Sutter <phil@xxxxxx>
- [nft PATCH 1/2] monitor: Make trace events respect output_fp
- From: Phil Sutter <phil@xxxxxx>
- [PATCH nft] doc: add example for rule add/delete
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [ANNOUNCE] ipset 6.28 released
- From: Akshat Kakkar <akshat.1984@xxxxxxxxx>
- [nft] nftables: Adding support for segment routing header 'srh'
- From: Ahmed Abdelsalam <amsalam20@xxxxxxxxx>
- Re: [nft] nftables: Fixing Bug 1219 - handle rt0 and rt2 properly
- From: Ahmed Abdelsalam <amsalam20@xxxxxxxxx>
- [PATCH nft] doc: remove ipv6 address FIXME
- From: Florian Westphal <fw@xxxxxxxxx>
- WARNING in xt_cluster_mt
- From: syzbot <syzbot+0346441ae0545cfcea3a@xxxxxxxxxxxxxxxxxxxxxxxxx>
- [PATCH nf-next 11/11] netfilter: x_tables: ensure last rule in base chain matches underflow/policy
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nf-next 10/11] netfilter: x_tables: make sure compat af mutex is held
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nf-next 09/11] netfilter: compat: reject huge allocation requests
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nf-next 08/11] netfilter: compat: prepare xt_compat_init_offsets to return errors
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nf-next 07/11] netfilter: x_tables: add counters allocation wrapper
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nf-next 06/11] netfilter: x_tables: limit allocation requests for blob rule heads
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nf-next 05/11] netfilter: x_tables: cap allocations at 512 mbyte
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nf-next 04/11] netfilter: x_tables: enforce unique and ascending entry points
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nf-next 03/11] netfilter: x_tables: move hook entry checks into core
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nf-next 02/11] netfilter: x_tables: check error target size too
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nf-next 01/11] netfilter: x_tables: check standard verdicts in core
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nf-next 00/11] netfilter: x_tables: add more checks on rule blob format
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [nft] nftables: Fixing Bug 1219 - handle rt0 and rt2 properly
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [nft] nftables: Fixing Bug 1219 - handle rt0 and rt2 properly
- From: Ahmed Abdelsalam <amsalam20@xxxxxxxxx>
- [PATCH nf] netfilter: nf_tables: use the right index from flowtable error path
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH 1/2 nf,v2] netfilter: nf_tables: return EBUSY if device already belongs to flowtable
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [nft] nftables: Fixing Bug 1219 - handle rt0 and rt2 properly
- From: Florian Westphal <fw@xxxxxxxxx>
- [nft] nftables: Fixing Bug 1219 - handle rt0 and rt2 properly
- From: Ahmed Abdelsalam <amsalam20@xxxxxxxxx>
- [nf-next] netfilter: nf_tables: Fixing Bug 1219 - handle rt0 and rt2 properly
- From: Ahmed Abdelsalam <amsalam20@xxxxxxxxx>
- [PATCH] extensions: libxt_bpf: Fix build with old kernel versions
- From: Hauke Mehrtens <hauke@xxxxxxxxxx>
- [PATCH nft] doc: mention meta l4proto and ipv6 nexthdr issue wrt. extension headers
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: PROBLEM: "netfilter: on sockopt() acquire sock lock only in the required scope" breaks at least sshuttle
- From: Florian Westphal <fw@xxxxxxxxx>
- PROBLEM: "netfilter: on sockopt() acquire sock lock only in the required scope" breaks at least sshuttle
- From: Luke Bratch <luke@xxxxxxxxxxxx>
- Re: [ANNOUNCE] ipset 6.28 released
- From: Akshat Kakkar <akshat.1984@xxxxxxxxx>
- [PATCH 1/2] net: Allow to and from offsets to be equal in skb_find_text
- From: Bernie Harris <bernie.harris@xxxxxxxxxxxxxxxxxxx>
- [PATCH 2/2] ebtables: Add string filter
- From: Bernie Harris <bernie.harris@xxxxxxxxxxxxxxxxxxx>
- [ebtables PATCH] Add string filter to ebtables
- From: Bernie Harris <bernie.harris@xxxxxxxxxxxxxxxxxxx>
- Re: [ANNOUNCE] ipset 6.28 released
- From: Michal Kubecek <mkubecek@xxxxxxx>
- Re: question about UNDEFINE/REDEFINE
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nft 5/5] tests: add raw payload test cases.
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nft 1/5] payload: use integer_type when initializing a raw expression
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nft 4/5] doc: document raw protocol expression
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nft 3/5] src: make raw payloads work
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nft 2/5] payload: don't resolve expressions using the inet pseudoheader
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nft 0/5] payload: make raw protocl expressions work
- From: Florian Westphal <fw@xxxxxxxxx>
- [PATCH nf 2/2] netfilter: nf_tables: missing attribute validation in nf_tables_delflowtable()
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nf 1/2] netfilter: nf_tables: return EBUSY if device already belongs to flowtable
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [ANNOUNCE] ipset 6.28 released
- From: Akshat Kakkar <akshat.1984@xxxxxxxxx>
- [PATCH v3 03/17] ipv6: make ip6_dst_mtu_forward inline
- From: Felix Fietkau <nbd@xxxxxxxx>
- [PATCH v3 14/17] netfilter: nf_flow_table: add a new flow state for tearing down offloading
- From: Felix Fietkau <nbd@xxxxxxxx>
- [PATCH v3 09/17] netfilter: nf_flow_table: relax mixed ipv4/ipv6 flowtable dependencies
- From: Felix Fietkau <nbd@xxxxxxxx>
- [PATCH v3 07/17] netfilter: nf_flow_table: move ip header check out of nf_flow_exceeds_mtu
- From: Felix Fietkau <nbd@xxxxxxxx>
- [PATCH v3 0/17] netfilter: nf_flow_table: refactoring, TCP state tracking, sending flows to slow path
- From: Felix Fietkau <nbd@xxxxxxxx>
- [PATCH v3 06/17] netfilter: nf_flow_table: move ipv4 offload hook code to nf_flow_table
- From: Felix Fietkau <nbd@xxxxxxxx>
- [PATCH v3 13/17] netfilter: nf_flow_table: make flow_offload_dead inline
- From: Felix Fietkau <nbd@xxxxxxxx>
- [PATCH v3 16/17] netfilter: nf_flow_table: add support for sending flows back to the slow path
- From: Felix Fietkau <nbd@xxxxxxxx>
- [PATCH v3 11/17] netfilter: nf_flow_table: fix priv pointer for netdev hook
- From: Felix Fietkau <nbd@xxxxxxxx>
- [PATCH v3 15/17] netfilter: nf_flow_table: in flow_offload_lookup, skip entries being deleted
- From: Felix Fietkau <nbd@xxxxxxxx>
- [PATCH v3 10/17] netfilter: nf_flow_table: move init code to nf_flow_table_core.c
- From: Felix Fietkau <nbd@xxxxxxxx>
- [PATCH v3 12/17] netfilter: nf_flow_table: track flow tables in nf_flow_table directly
- From: Felix Fietkau <nbd@xxxxxxxx>
- [PATCH v3 17/17] netfilter: nf_flow_table: tear down TCP flows if RST or FIN was seen
- From: Felix Fietkau <nbd@xxxxxxxx>
- [PATCH v3 05/17] netfilter: nf_flow_table: rename nf_flow_table.c to nf_flow_table_core.c
- From: Felix Fietkau <nbd@xxxxxxxx>
- [PATCH v3 04/17] netfilter: nf_flow_table: cache mtu in struct flow_offload_tuple
- From: Felix Fietkau <nbd@xxxxxxxx>
- [PATCH v3 08/17] netfilter: nf_flow_table: move ipv6 offload hook code to nf_flow_table
- From: Felix Fietkau <nbd@xxxxxxxx>
- [PATCH v3 02/17] netfilter: nf_flow_table: clean up flow_offload_alloc
- From: Felix Fietkau <nbd@xxxxxxxx>
- [PATCH v3 01/17] netfilter: nf_flow_table: use IP_CT_DIR_* values for FLOW_OFFLOAD_DIR_*
- From: Felix Fietkau <nbd@xxxxxxxx>
- Re: [PATCH v2 6/6] netfilter: nf_flow_table: fix checksum when handling DNAT
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH v2 6/6] netfilter: nf_flow_table: fix checksum when handling DNAT
- From: Felix Fietkau <nbd@xxxxxxxx>
- Re: [PATCH v2 6/6] netfilter: nf_flow_table: fix checksum when handling DNAT
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nft] src: allow to specify flowtable maximum size
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH libnftnl] flowtable: allow to specify size
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH v2 6/6] netfilter: nf_flow_table: fix checksum when handling DNAT
- From: Felix Fietkau <nbd@xxxxxxxx>
- [PATCH nf-next] netfilter: nf_tables: set maximum flowtable size
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH v2 6/6] netfilter: nf_flow_table: fix checksum when handling DNAT
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH v2 6/6] netfilter: nf_flow_table: fix checksum when handling DNAT
- From: Felix Fietkau <nbd@xxxxxxxx>
- Re: [PATCH v2 3/6] netfilter: nf_flow_table: in flow_offload_lookup, skip entries being deleted
- From: Felix Fietkau <nbd@xxxxxxxx>
- Re: [PATCH v2 4/6] netfilter: nf_flow_table: add support for sending flows back to the slow path
- From: Felix Fietkau <nbd@xxxxxxxx>
- Re: [nft PATCH] meta: introduce datatype ifname_type
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH nf] netfilter: ipvs: flag ct as needing s/dnat in original direction
- From: Julian Anastasov <ja@xxxxxx>
- [PATCH net] ipvs: remove IPS_NAT_MASK check to fix passive FTP
- From: Julian Anastasov <ja@xxxxxx>
- Re: [PATCH v2 3/6] netfilter: nf_flow_table: in flow_offload_lookup, skip entries being deleted
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH v2 4/6] netfilter: nf_flow_table: add support for sending flows back to the slow path
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH nf] netfilter: ipvs: flag ct as needing s/dnat in original direction
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [PATCH nf] netfilter: ipvs: flag ct as needing s/dnat in original direction
- From: Julian Anastasov <ja@xxxxxx>
- Re: [PATCH] extensions: add tests for comp match options
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH nf] netfilter: don't set F_IFACE on ipv6 fib lookups
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH] netfilter: increase IPSTATS_MIB_CSUMERRORS stat
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH nf] netfilter: ipvs: flag ct as needing s/dnat in original direction
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH v2 6/6] netfilter: nf_flow_table: fix checksum when handling DNAT
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH nf] netfilter: ebtables: CONFIG_COMPAT: don't trust userland offsets
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH nf] netfilter: ebtables: convert BUG_ONs to WARN_ONs
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH nf] netfilter: bridge: ebt_among: add missing match size checks
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH nf] netfilter: ipv6: fix use-after-free Write in nf_nat_ipv6_manip_pkt
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH nf 0/2] netfilter: ipt_CLUSTERIP: two more fixes
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH] xtables-compat-multi.c: Allow symlink of ebtables
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [nft PATCH v2 3/3] files: add load balance example
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [nft PATCH v3 2/3] examples: add ct helper examples
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [nft PATCH v2 1/3] nftables: rearrange files and examples
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH v2 6/6] netfilter: nf_flow_table: fix checksum when handling DNAT
- From: Felix Fietkau <nbd@xxxxxxxx>
- Re: [PATCH v2 6/6] netfilter: nf_flow_table: fix checksum when handling DNAT
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH v2 5/6] netfilter: nf_flow_table: tear down TCP flows if RST or FIN was seen
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [iptables PATCH] iptables: add xtables-compat.8 manpage
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [PATCH] src: Print error and exit for empty string
- From: Florian Westphal <fw@xxxxxxxxx>
- [iptables PATCH] iptables: add xtables-compat.8 manpage
- From: Arturo Borrero Gonzalez <arturo@xxxxxxxxxx>
- [PATCH] src: Print error and exit for empty string
- From: Harsha Sharma <harshasharmaiitr@xxxxxxxxx>
- [nft PATCH v3 2/3] examples: add ct helper examples
- From: Arturo Borrero Gonzalez <arturo@xxxxxxxxxxxxx>
- [nft PATCH] meta: introduce datatype ifname_type
- From: Arturo Borrero Gonzalez <arturo@xxxxxxxxxxxxx>
- [PATCH v2 6/6] netfilter: nf_flow_table: fix checksum when handling DNAT
- From: Felix Fietkau <nbd@xxxxxxxx>
- [PATCH v2 1/6] netfilter: nf_flow_table: make flow_offload_dead inline
- From: Felix Fietkau <nbd@xxxxxxxx>
- [PATCH v2 4/6] netfilter: nf_flow_table: add support for sending flows back to the slow path
- From: Felix Fietkau <nbd@xxxxxxxx>
- [PATCH v2 2/6] netfilter: nf_flow_table: add a new flow state for tearing down offloading
- From: Felix Fietkau <nbd@xxxxxxxx>
- [PATCH v2 3/6] netfilter: nf_flow_table: in flow_offload_lookup, skip entries being deleted
- From: Felix Fietkau <nbd@xxxxxxxx>
- [PATCH v2 5/6] netfilter: nf_flow_table: tear down TCP flows if RST or FIN was seen
- From: Felix Fietkau <nbd@xxxxxxxx>
- [PATCH v2 0/6] netfilter: nf_flow_table: TCP state tracking and bumping of flows to slow path
- From: Felix Fietkau <nbd@xxxxxxxx>
- Re: [PATCH] xtables-compat-multi.c: Allow symlink of ebtables
- From: Arturo Borrero Gonzalez <arturo@xxxxxxxxxxxxx>
- [PATCH 1/5] netfilter: nf_flow_table: make flow_offload_dead inline
- From: Felix Fietkau <nbd@xxxxxxxx>
- [PATCH 0/5] netfilter: nf_flow_table: TCP state tracking and bumping of flows to slow path
- From: Felix Fietkau <nbd@xxxxxxxx>
- [PATCH 4/5] netfilter: nf_flow_table: add support for sending flows back to the slow path
- From: Felix Fietkau <nbd@xxxxxxxx>
- [PATCH 5/5] netfilter: nf_flow_table: tear down TCP flows if RST or FIN was seen
- From: Felix Fietkau <nbd@xxxxxxxx>
- [PATCH 3/5] netfilter: nf_flow_table: in flow_offload_lookup, skip entries being deleted
- From: Felix Fietkau <nbd@xxxxxxxx>
- [PATCH 2/5] netfilter: nf_flow_table: add a new flow state for tearing down offloading
- From: Felix Fietkau <nbd@xxxxxxxx>
- [PATCH] xtables-compat-multi.c: Allow symlink of ebtables
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
- Re: [nft PATCH v2 1/3] nftables: rearrange files and examples
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [nft PATCH v2 1/3] nftables: rearrange files and examples
- From: Arturo Borrero Gonzalez <arturo@xxxxxxxxxxxxx>
- Re: [nft PATCH v2 2/3] examples: add ct helper examples
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [nft PATCH v2 1/3] nftables: rearrange files and examples
- From: Florian Westphal <fw@xxxxxxxxx>
- [nft PATCH v2 3/3] files: add load balance example
- From: Arturo Borrero Gonzalez <arturo@xxxxxxxxxxxxx>
- [nft PATCH v2 2/3] examples: add ct helper examples
- From: Arturo Borrero Gonzalez <arturo@xxxxxxxxxxxxx>
- [nft PATCH v2 1/3] nftables: rearrange files and examples
- From: Arturo Borrero Gonzalez <arturo@xxxxxxxxxxxxx>
- [PATCH nf] netfilter: ipvs: flag ct as needing s/dnat in original direction
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [NFT PATCH 1/3] nftables: rearrange files and examples
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH nft] segtree: check for overlapping elements at insertion
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [NFT PATCH 1/3] nftables: rearrange files and examples
- From: Florian Westphal <fw@xxxxxxxxx>
- [NFT PATCH 3/3] files: add load balance example
- From: Arturo Borrero Gonzalez <arturo@xxxxxxxxxxxxx>
- [NFT PATCH 2/3] examples: add ct helper examples
- From: Arturo Borrero Gonzalez <arturo@xxxxxxxxxxxxx>
- [NFT PATCH 1/3] nftables: rearrange files and examples
- From: Arturo Borrero Gonzalez <arturo@xxxxxxxxxxxxx>
- Re: [ANNOUNCE] ipset 6.28 released
- From: Jozsef Kadlecsik <kadlec@xxxxxxxxxxxxxxxxx>
- Re: nft/bpf interpreters and spectre2. Was: [PATCH RFC 0/4] net: add bpfilter
- From: Jann Horn <jannh@xxxxxxxxxx>
- Re: nft/bpf interpreters and spectre2. Was: [PATCH RFC 0/4] net: add bpfilter
- From: Alexei Starovoitov <alexei.starovoitov@xxxxxxxxx>
- Re: nft/bpf interpreters and spectre2. Was: [PATCH RFC 0/4] net: add bpfilter
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [ANNOUNCE] ipset 6.28 released
- From: Akshat Kakkar <akshat.1984@xxxxxxxxx>
- nft/bpf interpreters and spectre2. Was: [PATCH RFC 0/4] net: add bpfilter
- From: Alexei Starovoitov <alexei.starovoitov@xxxxxxxxx>
- Re: [PATCH RFC PoC 0/3] nftables meets bpf
- From: Jakub Kicinski <kubakici@xxxxx>
- Re: [PATCH RFC PoC 0/3] nftables meets bpf
- From: Florian Fainelli <f.fainelli@xxxxxxxxx>
- Re: [PATCH RFC PoC 0/3] nftables meets bpf
- From: Jakub Kicinski <kubakici@xxxxx>
- WARNING: ODEBUG bug in do_ipt_get_ctl
- From: syzbot <syzbot+d7deafa2c73b7a2b74ef@xxxxxxxxxxxxxxxxxxxxxxxxx>
- WARNING: ODEBUG bug in do_arpt_get_ctl
- From: syzbot <syzbot+9d1c0d941336dbc741a1@xxxxxxxxxxxxxxxxxxxxxxxxx>
- Re: [PATCH 00/19] Netfilter fixes for net
- From: David Miller <davem@xxxxxxxxxxxxx>
- Re: [PATCH RFC 0/4] net: add bpfilter
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [PATCH RFC 0/4] net: add bpfilter
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH RFC 3/3] netfilter: nf_tables: add BPF-based jit infrastructure
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: WARNING: ODEBUG bug in __queue_work
- From: Dmitry Vyukov <dvyukov@xxxxxxxxxx>
- Re: [PATCH RFC 3/3] netfilter: nf_tables: add BPF-based jit infrastructure
- From: Alexei Starovoitov <alexei.starovoitov@xxxxxxxxx>
- Re: [PATCH RFC 0/4] net: add bpfilter
- From: Alexei Starovoitov <alexei.starovoitov@xxxxxxxxx>
- WARNING: ODEBUG bug in __queue_work
- From: syzbot <syzbot+8288e492017b059ff014@xxxxxxxxxxxxxxxxxxxxxxxxx>
- Re: [PATCH RFC 0/4] net: add bpfilter
- From: Phil Sutter <phil@xxxxxx>
- Re: [PATCH 08/12] netfilter: nf_flow_table: move ipv6 offload hook code to nf_flow_table
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: How to retrieve original source address with FTP/NAT/TPROXY
- From: Gregory Vander Schueren <gregory.vanderschueren@xxxxxxxxxxxx>
- Re: [PATCH 08/12] netfilter: nf_flow_table: move ipv6 offload hook code to nf_flow_table
- From: Felix Fietkau <nbd@xxxxxxxx>
- Re: [PATCH 08/12] netfilter: nf_flow_table: move ipv6 offload hook code to nf_flow_table
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH 02/19] netfilter: ipt_CLUSTERIP: fix a race condition of proc file creation
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH 04/19] netfilter: add back stackpointer size checks
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH 05/19] netfilter: ipt_CLUSTERIP: fix a refcount bug in clusterip_config_find_get()
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH 07/19] netfilter: x_tables: use pr ratelimiting in xt core
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH 03/19] netfilter: drop outermost socket lock in getsockopt()
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH 06/19] netfilter: x_tables: remove pr_info where possible
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH 09/19] netfilter: xt_NFQUEUE: use pr ratelimiting
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH 10/19] netfilter: xt_set: use pr ratelimiting
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH 11/19] netfilter: bridge: use pr ratelimiting
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH 12/19] netfilter: x_tables: rate-limit table mismatch warnings
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH 08/19] netfilter: xt_CT: use pr ratelimiting
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH 13/19] netfilter: x_tables: use pr ratelimiting in matches/targets
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH 15/19] .gitignore: ignore ASN.1 auto generated files
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH 14/19] netfilter: x_tables: use pr ratelimiting in all remaining spots
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH 17/19] netfilter: nat: cope with negative port range
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH 16/19] netfilter: x_tables: fix missing timer initialization in xt_LED
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH 18/19] netfilter: xt_hashlimit: fix lock imbalance
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH 19/19] netfilter: IDLETIMER: be syzkaller friendly
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH 01/19] netfilter: x_tables: remove size check
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- [PATCH 00/19] Netfilter fixes for net
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH 08/12] netfilter: nf_flow_table: move ipv6 offload hook code to nf_flow_table
- From: Felix Fietkau <nbd@xxxxxxxx>
- Re: [PATCH 08/12] netfilter: nf_flow_table: move ipv6 offload hook code to nf_flow_table
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH 12/12] netfilter: nf_flow_table: track flow tables in nf_flow_table directly
- From: Felix Fietkau <nbd@xxxxxxxx>
- Re: [PATCH 12/12] netfilter: nf_flow_table: track flow tables in nf_flow_table directly
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH 08/12] netfilter: nf_flow_table: move ipv6 offload hook code to nf_flow_table
- From: Felix Fietkau <nbd@xxxxxxxx>
- Re: [PATCH RFC PoC 0/3] nftables meets bpf
- From: Daniel Borkmann <daniel@xxxxxxxxxxxxx>
- Re: [PATCH 08/12] netfilter: nf_flow_table: move ipv6 offload hook code to nf_flow_table
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH RFC 0/4] net: add bpfilter
- From: David Miller <davem@xxxxxxxxxxxxx>
- [PATCH 12/12] netfilter: nf_flow_table: track flow tables in nf_flow_table directly
- From: Felix Fietkau <nbd@xxxxxxxx>
- [PATCH 05/12] netfilter: nf_flow_table: rename nf_flow_table.c to nf_flow_table_core.c
- From: Felix Fietkau <nbd@xxxxxxxx>
- [PATCH 04/12] netfilter: nf_flow_table: cache mtu in struct flow_offload_tuple
- From: Felix Fietkau <nbd@xxxxxxxx>
- [PATCH 01/12] netfilter: nf_flow_table: use IP_CT_DIR_* values for FLOW_OFFLOAD_DIR_*
- From: Felix Fietkau <nbd@xxxxxxxx>
- [PATCH 11/12] netfilter: nf_flow_table: fix priv pointer for netdev hook
- From: Felix Fietkau <nbd@xxxxxxxx>
- [PATCH 03/12] ipv6: make ip6_dst_mtu_forward inline
- From: Felix Fietkau <nbd@xxxxxxxx>
- [PATCH 06/12] netfilter: nf_flow_table: move ipv4 offload hook code to nf_flow_table
- From: Felix Fietkau <nbd@xxxxxxxx>
- [PATCH 07/12] netfilter: nf_flow_table: move ip header check out of nf_flow_exceeds_mtu
- From: Felix Fietkau <nbd@xxxxxxxx>
- [PATCH 09/12] netfilter: nf_flow_table: relax mixed ipv4/ipv6 flowtable dependencies
- From: Felix Fietkau <nbd@xxxxxxxx>
- [PATCH 02/12] netfilter: nf_flow_table: clean up flow_offload_alloc
- From: Felix Fietkau <nbd@xxxxxxxx>
- [PATCH 08/12] netfilter: nf_flow_table: move ipv6 offload hook code to nf_flow_table
- From: Felix Fietkau <nbd@xxxxxxxx>
- [PATCH 10/12] netfilter: nf_flow_table: move init code to nf_flow_table_core.c
- From: Felix Fietkau <nbd@xxxxxxxx>
- Re: shift by n bits while performing '--restore-mark'
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [PATCH RFC 0/4] net: add bpfilter
- From: Daniel Borkmann <daniel@xxxxxxxxxxxxx>
- Re: [PATCH RFC 0/4] net: add bpfilter
- From: Phil Sutter <phil@xxxxxx>
- Re: [PATCH RFC PoC 0/3] nftables meets bpf
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH RFC 3/3] netfilter: nf_tables: add BPF-based jit infrastructure
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH RFC 0/4] net: add bpfilter
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH RFC 0/4] net: add bpfilter
- From: Michal Kubecek <mkubecek@xxxxxxx>
- Re: shift by n bits while performing '--restore-mark'
- From: Jack Ma <Jack.Ma@xxxxxxxxxxxxxxxxxxx>
- Re: [PATCH RFC 0/4] net: add bpfilter
- From: Willem de Bruijn <willemdebruijn.kernel@xxxxxxxxx>
- Re: [PATCH RFC 0/4] net: add bpfilter
- From: Jozsef Kadlecsik <kadlec@xxxxxxxxxxxxxxxxx>
- Re: [PATCH RFC 0/4] net: add bpfilter
- From: Florian Westphal <fw@xxxxxxxxx>
- Re: [PATCH RFC 0/4] net: add bpfilter
- From: Phil Sutter <phil@xxxxxx>
- Re: [PATCH RFC PoC 0/3] nftables meets bpf
- From: Daniel Borkmann <daniel@xxxxxxxxxxxxx>
- Re: [PATCH RFC 3/3] netfilter: nf_tables: add BPF-based jit infrastructure
- From: David Miller <davem@xxxxxxxxxxxxx>
- Re: [PATCH RFC 0/4] net: add bpfilter
- From: David Miller <davem@xxxxxxxxxxxxx>
- Re: [PATCH RFC 0/4] net: add bpfilter
- From: David Miller <davem@xxxxxxxxxxxxx>
- Re: [PATCH RFC 0/4] net: add bpfilter
- From: David Miller <davem@xxxxxxxxxxxxx>
- Re: [PATCH RFC 0/4] net: add bpfilter
- From: Harald Welte <laforge@xxxxxxxxxxxx>
- Re: [PATCH RFC 0/4] net: add bpfilter
- From: Arturo Borrero Gonzalez <arturo@xxxxxxxxxxxxx>
- Re: [PATCH RFC 0/4] net: add bpfilter
- From: Phil Sutter <phil@xxxxxx>
- Re: [PATCH RFC 0/4] net: add bpfilter
- From: Arturo Borrero Gonzalez <arturo@xxxxxxxxxxxxx>
- Re: [PATCH RFC 0/4] net: add bpfilter
- From: Arturo Borrero Gonzalez <arturo@xxxxxxxxxxxxx>
- Re: [PATCH RFC 0/4] net: add bpfilter
- From: Arturo Borrero Gonzalez <arturo@xxxxxxxxxxxxx>
- Re: [PATCH RFC 0/4] net: add bpfilter
- From: Harald Welte <laforge@xxxxxxxxxxxx>
- Re: [PATCH nft v2] nftables: basic support for extended netlink errors
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH RFC 0/4] net: add bpfilter
- From: David Miller <davem@xxxxxxxxxxxxx>
- Re: [PATCH nf] netfilter: IDLETIMER: be syzkaller friendly
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH iptables] extensions: connmark: remove non-working translation
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH iptables] extensions: mark: prefer plain 'set' over 'set mark and'
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
- Re: [PATCH RFC 0/4] net: add bpfilter
- From: David Miller <davem@xxxxxxxxxxxxx>
[Index of Archives]
[LARTC]
[Berkeley Packet Filter]
[Bugtraq]
[Yosemite News]
[Samba]
