Linux TCP/IP Netfilter Devel

Thread Index

[Prev Page][Next Page]

[PATCH v3 7/9] drivers/ata: Replace spin_unlock_wait() with lock/unlock pair
- From: "Paul E. McKenney" <paulmck@xxxxxxxxxxxxxxxxxx>
[PATCH v3 5/9] exit: Replace spin_unlock_wait() with lock/unlock pair
- From: "Paul E. McKenney" <paulmck@xxxxxxxxxxxxxxxxxx>
[PATCH v3 1/9] net/netfilter/nf_conntrack_core: Fix net_conntrack_lock()
- From: "Paul E. McKenney" <paulmck@xxxxxxxxxxxxxxxxxx>
[PATCH v3 0/9] Remove spin_unlock_wait()
- From: "Paul E. McKenney" <paulmck@xxxxxxxxxxxxxxxxxx>
Re: [PATCH v2 0/9] Remove spin_unlock_wait()
- From: Manfred Spraul <manfred@xxxxxxxxxxxxxxxx>
Re: how to get consistent value of "nf_conntrack_htable_size" and "nf_conntrack_hash" in a kernel module ?
- From: valdis.kletnieks@xxxxxx
how to get consistent value of "nf_conntrack_htable_size" and "nf_conntrack_hash" in a kernel module ?
- From: Shiyao Ma <i@xxxxxxxxx>
Re: [PATCH v2 0/9] Remove spin_unlock_wait()
- From: "Paul E. McKenney" <paulmck@xxxxxxxxxxxxxxxxxx>
[PATCH nf] netfilter: nftables: onlly allow in/output for arp packets
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH v2 0/9] Remove spin_unlock_wait()
- From: Peter Zijlstra <peterz@xxxxxxxxxxxxx>
[PATCH nf] netfilter: nat: fix src map lookup
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH v2 0/9] Remove spin_unlock_wait()
- From: Ingo Molnar <mingo@xxxxxxxxxx>
Re: [PATCH v2 0/9] Remove spin_unlock_wait()
- From: Ingo Molnar <mingo@xxxxxxxxxx>
Re: [PATCH v2 0/9] Remove spin_unlock_wait()
- From: Peter Zijlstra <peterz@xxxxxxxxxxxxx>
Re: [PATCH nft v3] include: Remove __init and __exit macro definitions.
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH v2 0/9] Remove spin_unlock_wait()
- From: Ingo Molnar <mingo@xxxxxxxxxx>
Re: [PATCH v2 0/9] Remove spin_unlock_wait()
- From: Ingo Molnar <mingo@xxxxxxxxxx>
[PATCH nf] netfilter: remove old pre-netns era hook api
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH v2 1/9] net/netfilter/nf_conntrack_core: Fix net_conntrack_lock()
- From: "Paul E. McKenney" <paulmck@xxxxxxxxxxxxxxxxxx>
[PATCH nft v3] include: Remove __init and __exit macro definitions.
- From: Varsha Rao <rvarsha016@xxxxxxxxx>
Re: [PATCH v2 0/9] Remove spin_unlock_wait()
- From: Alan Stern <stern@xxxxxxxxxxxxxxxxxxx>
Re: [PATCH v2 1/9] net/netfilter/nf_conntrack_core: Fix net_conntrack_lock()
- From: Manfred Spraul <manfred@xxxxxxxxxxxxxxxx>
Re: [PATCH RFC 01/26] netfilter: Replace spin_unlock_wait() with lock/unlock pair
- From: Manfred Spraul <manfred@xxxxxxxxxxxxxxxx>
Re: [PATCH v2 0/9] Remove spin_unlock_wait()
- From: "Paul E. McKenney" <paulmck@xxxxxxxxxxxxxxxxxx>
Re: [PATCH v2 0/9] Remove spin_unlock_wait()
- From: "Paul E. McKenney" <paulmck@xxxxxxxxxxxxxxxxxx>
Re: [PATCH v2 0/9] Remove spin_unlock_wait()
- From: Will Deacon <will.deacon@xxxxxxx>
Re: [PATCH v2 0/9] Remove spin_unlock_wait()
- From: "Paul E. McKenney" <paulmck@xxxxxxxxxxxxxxxxxx>
Re: [PATCH v2 0/9] Remove spin_unlock_wait()
- From: Peter Zijlstra <peterz@xxxxxxxxxxxxx>
Re: [PATCH v2 0/9] Remove spin_unlock_wait()
- From: Peter Zijlstra <peterz@xxxxxxxxxxxxx>
Re: [PATCH v2 0/9] Remove spin_unlock_wait()
- From: Alan Stern <stern@xxxxxxxxxxxxxxxxxxx>
Re: [PATCH v2 0/9] Remove spin_unlock_wait()
- From: Peter Zijlstra <peterz@xxxxxxxxxxxxx>
Re: [PATCH v2 0/9] Remove spin_unlock_wait()
- From: "Paul E. McKenney" <paulmck@xxxxxxxxxxxxxxxxxx>
Re: [PATCH v2 0/9] Remove spin_unlock_wait()
- From: "Paul E. McKenney" <paulmck@xxxxxxxxxxxxxxxxxx>
Re: [PATCH v2 0/9] Remove spin_unlock_wait()
- From: Peter Zijlstra <peterz@xxxxxxxxxxxxx>
Re: [PATCH v2 0/9] Remove spin_unlock_wait()
- From: Peter Zijlstra <peterz@xxxxxxxxxxxxx>
[PATCH] monitor: fix printing of range elements in named sets
- From: Arturo Borrero Gonzalez <arturo@xxxxxxxxxxxxx>
Re: [PATCH v2 0/9] Remove spin_unlock_wait()
- From: "Paul E. McKenney" <paulmck@xxxxxxxxxxxxxxxxxx>
Re: [nft PATCH] segtree: Fix expr_value_cmp()
- From: Phil Sutter <phil@xxxxxx>
RE: [PATCH v2 0/9] Remove spin_unlock_wait()
- From: David Laight <David.Laight@xxxxxxxxxx>
[nft PATCH] segtree: Fix expr_value_cmp()
- From: Phil Sutter <phil@xxxxxx>
Re: [PATCH libnfntl] set: free user data
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH libnfntl] set: free user data
- From: Eric Leblond <eric@xxxxxxxxx>
Re: [PATCH 0/2] Netfilter fixes for net
- From: David Miller <davem@xxxxxxxxxxxxx>
[PATCH 2/2] netfilter: ebt_nflog: fix unexpected truncated packet
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH 1/2] netfilter: nf_ct_dccp/sctp: fix memory leak after netns cleanup
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH 0/2] Netfilter fixes for net
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH RFC 21/26] powerpc: Remove spin_unlock_wait() arch-specific definitions
- From: "Paul E. McKenney" <paulmck@xxxxxxxxxxxxxxxxxx>
[PATCH v2 9/9] arch: Remove spin_unlock_wait() arch-specific definitions
- From: "Paul E. McKenney" <paulmck@xxxxxxxxxxxxxxxxxx>
[PATCH v2 6/9] ipc: Replace spin_unlock_wait() with lock/unlock pair
- From: "Paul E. McKenney" <paulmck@xxxxxxxxxxxxxxxxxx>
[PATCH v2 8/9] locking: Remove spin_unlock_wait() generic definitions
- From: "Paul E. McKenney" <paulmck@xxxxxxxxxxxxxxxxxx>
[PATCH v2 2/9] task_work: Replace spin_unlock_wait() with lock/unlock pair
- From: "Paul E. McKenney" <paulmck@xxxxxxxxxxxxxxxxxx>
[PATCH v2 3/9] sched: Replace spin_unlock_wait() with lock/unlock pair
- From: "Paul E. McKenney" <paulmck@xxxxxxxxxxxxxxxxxx>
[PATCH v2 5/9] exit: Replace spin_unlock_wait() with lock/unlock pair
- From: "Paul E. McKenney" <paulmck@xxxxxxxxxxxxxxxxxx>
[PATCH v2 1/9] net/netfilter/nf_conntrack_core: Fix net_conntrack_lock()
- From: "Paul E. McKenney" <paulmck@xxxxxxxxxxxxxxxxxx>
[PATCH v2 4/9] completion: Replace spin_unlock_wait() with lock/unlock pair
- From: "Paul E. McKenney" <paulmck@xxxxxxxxxxxxxxxxxx>
[PATCH v2 7/9] drivers/ata: Replace spin_unlock_wait() with lock/unlock pair
- From: "Paul E. McKenney" <paulmck@xxxxxxxxxxxxxxxxxx>
[PATCH v2 0/9] Remove spin_unlock_wait()
- From: "Paul E. McKenney" <paulmck@xxxxxxxxxxxxxxxxxx>
Re: [PATCH RFC] inetpeer: remove AVL implementation in favor of RB tree
- From: Mika Penttilä <mika.penttila@xxxxxxxxxxxx>
Re: [PATCH RFC] inetpeer: remove AVL implementation in favor of RB tree
- From: Mika Penttilä <mika.penttila@xxxxxxxxxxxx>
[PATCH RFC] inetpeer: remove AVL implementation in favor of RB tree
- From: Eric Dumazet <eric.dumazet@xxxxxxxxx>
Re: [PATCH RFC 08/26] locking: Remove spin_unlock_wait() generic definitions
- From: "Paul E. McKenney" <paulmck@xxxxxxxxxxxxxxxxxx>
Re: [PATCH RFC 08/26] locking: Remove spin_unlock_wait() generic definitions
- From: "Paul E. McKenney" <paulmck@xxxxxxxxxxxxxxxxxx>
Re: [PATCH RFC 08/26] locking: Remove spin_unlock_wait() generic definitions
- From: Linus Torvalds <torvalds@xxxxxxxxxxxxxxxxxxxx>
Re: [PATCH RFC 08/26] locking: Remove spin_unlock_wait() generic definitions
- From: "Paul E. McKenney" <paulmck@xxxxxxxxxxxxxxxxxx>
Re: [PATCH RFC 08/26] locking: Remove spin_unlock_wait() generic definitions
- From: "Paul E. McKenney" <paulmck@xxxxxxxxxxxxxxxxxx>
Re: [PATCH RFC 01/26] netfilter: Replace spin_unlock_wait() with lock/unlock pair
- From: "Paul E. McKenney" <paulmck@xxxxxxxxxxxxxxxxxx>
Re: [PATCH RFC 01/26] netfilter: Replace spin_unlock_wait() with lock/unlock pair
- From: Alan Stern <stern@xxxxxxxxxxxxxxxxxxx>
Re: [PATCH RFC 01/26] netfilter: Replace spin_unlock_wait() with lock/unlock pair
- From: Alan Stern <stern@xxxxxxxxxxxxxxxxxxx>
Re: [PATCH RFC 01/26] netfilter: Replace spin_unlock_wait() with lock/unlock pair
- From: Manfred Spraul <manfred@xxxxxxxxxxxxxxxx>
Re: [PATCH RFC 01/26] netfilter: Replace spin_unlock_wait() with lock/unlock pair
- From: "Paul E. McKenney" <paulmck@xxxxxxxxxxxxxxxxxx>
Re: [PATCH RFC 08/26] locking: Remove spin_unlock_wait() generic definitions
- From: Will Deacon <will.deacon@xxxxxxx>
Re: [PATCH RFC 08/26] locking: Remove spin_unlock_wait() generic definitions
- From: Linus Torvalds <torvalds@xxxxxxxxxxxxxxxxxxxx>
Re: [PATCH RFC 08/26] locking: Remove spin_unlock_wait() generic definitions
- From: "Paul E. McKenney" <paulmck@xxxxxxxxxxxxxxxxxx>
Re: [PATCH RFC 01/26] netfilter: Replace spin_unlock_wait() with lock/unlock pair
- From: Alan Stern <stern@xxxxxxxxxxxxxxxxxxx>
Re: [PATCH RFC 08/26] locking: Remove spin_unlock_wait() generic definitions
- From: Will Deacon <will.deacon@xxxxxxx>
How to add snat and dnat rules in a kernel module?
- From: Shiyao Ma <i@xxxxxxxxx>
Re: [PATCH RFC 21/26] powerpc: Remove spin_unlock_wait() arch-specific definitions
- From: Boqun Feng <boqun.feng@xxxxxxxxx>
Re: [PATCH RFC 06/26] ipc: Replace spin_unlock_wait() with lock/unlock pair
- From: "Paul E. McKenney" <paulmck@xxxxxxxxxxxxxxxxxx>
Re: [PATCH RFC 01/26] netfilter: Replace spin_unlock_wait() with lock/unlock pair
- From: "Paul E. McKenney" <paulmck@xxxxxxxxxxxxxxxxxx>
Re: [PATCH RFC 06/26] ipc: Replace spin_unlock_wait() with lock/unlock pair
- From: Manfred Spraul <manfred@xxxxxxxxxxxxxxxx>
Re: [4.9.y,netfilter] please, cherry-pick 2638fd0f92d4
- From: Greg KH <greg@xxxxxxxxx>
Re: [4.11.y,netfilter] please, cherry-pick 87e94dbc210a
- From: Greg KH <greg@xxxxxxxxx>
Re: nf_conntrack: Infoleak via CTA_ID and CTA_EXPECT_ID
- From: Florian Westphal <fw@xxxxxxxxx>
Re: nf_conntrack: Infoleak via CTA_ID and CTA_EXPECT_ID
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH RFC 02/26] task_work: Replace spin_unlock_wait() with lock/unlock pair
- From: "Paul E. McKenney" <paulmck@xxxxxxxxxxxxxxxxxx>
Re: [PATCH RFC 02/26] task_work: Replace spin_unlock_wait() with lock/unlock pair
- From: Alan Stern <stern@xxxxxxxxxxxxxxxxxxx>
Re: [PATCH RFC 08/26] locking: Remove spin_unlock_wait() generic definitions
- From: "Paul E. McKenney" <paulmck@xxxxxxxxxxxxxxxxxx>
Re: nf_conntrack: Infoleak via CTA_ID and CTA_EXPECT_ID
- From: Richard Weinberger <richard@xxxxxx>
Re: [PATCH RFC 02/26] task_work: Replace spin_unlock_wait() with lock/unlock pair
- From: "Paul E. McKenney" <paulmck@xxxxxxxxxxxxxxxxxx>
Re: nf_conntrack: Infoleak via CTA_ID and CTA_EXPECT_ID
- From: Florian Westphal <fw@xxxxxxxxx>
Re: nf_conntrack: Infoleak via CTA_ID and CTA_EXPECT_ID
- From: Richard Weinberger <richard@xxxxxx>
Re: [PATCH RFC 02/26] task_work: Replace spin_unlock_wait() with lock/unlock pair
- From: "Paul E. McKenney" <paulmck@xxxxxxxxxxxxxxxxxx>
Re: nf_conntrack: Infoleak via CTA_ID and CTA_EXPECT_ID
- From: Florian Westphal <fw@xxxxxxxxx>
nf_conntrack: Infoleak via CTA_ID and CTA_EXPECT_ID
- From: Richard Weinberger <richard@xxxxxx>
Re: [PATCH RFC 02/26] task_work: Replace spin_unlock_wait() with lock/unlock pair
- From: Oleg Nesterov <oleg@xxxxxxxxxx>
Re: [PATCH RFC 12/26] arm64: Remove spin_unlock_wait() arch-specific definitions
- From: "Paul E. McKenney" <paulmck@xxxxxxxxxxxxxxxxxx>
[RFC PATCH nf-next 3/3] netfilter: exthdr: early set support
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH nf-next 2/3] netfilter: exthdr: split netlink dump function
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH nf-next 1/3] netfilter: exthdr: factor out tcp option access
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH RFC 02/26] task_work: Replace spin_unlock_wait() with lock/unlock pair
- From: "Paul E. McKenney" <paulmck@xxxxxxxxxxxxxxxxxx>
Re: [PATCH RFC 02/26] task_work: Replace spin_unlock_wait() with lock/unlock pair
- From: "Paul E. McKenney" <paulmck@xxxxxxxxxxxxxxxxxx>
Re: [PATCH 00/29] Netfilter updates for net-next
- From: David Miller <davem@xxxxxxxxxxxxx>
Re: [PATCH RFC 02/26] task_work: Replace spin_unlock_wait() with lock/unlock pair
- From: Oleg Nesterov <oleg@xxxxxxxxxx>
Re: [PATCH v2] netfilter: nfnetlink: Improve input length sanitization in nfnetlink_rcv
- From: Mateusz Jurczyk <mjurczyk@xxxxxxxxxx>
Re: [PATCH RFC 08/26] locking: Remove spin_unlock_wait() generic definitions
- From: Will Deacon <will.deacon@xxxxxxx>
Re: [PATCH RFC 02/26] task_work: Replace spin_unlock_wait() with lock/unlock pair
- From: "Paul E. McKenney" <paulmck@xxxxxxxxxxxxxxxxxx>
Re: [PATCH RFC 08/26] locking: Remove spin_unlock_wait() generic definitions
- From: "Paul E. McKenney" <paulmck@xxxxxxxxxxxxxxxxxx>
Re: [PATCH RFC 03/26] sched: Replace spin_unlock_wait() with lock/unlock pair
- From: "Paul E. McKenney" <paulmck@xxxxxxxxxxxxxxxxxx>
[ANNOUNCE] Netfilter (+folks) userday in Faro, Portugal (Monday, July 3th)
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
RE: [PATCH 25/29] netfilter, kbuild: use canonical method to specify objs.
- From: David Laight <David.Laight@xxxxxxxxxx>
Re: [PATCH RFC 02/26] task_work: Replace spin_unlock_wait() with lock/unlock pair
- From: Oleg Nesterov <oleg@xxxxxxxxxx>
Re: [PATCH nft 2/3] include: Remove __init macro definition.
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nft 1/3] include: Remove datatype_register().
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH RFC 03/26] sched: Replace spin_unlock_wait() with lock/unlock pair
- From: Arnd Bergmann <arnd@xxxxxxxx>
[PATCH nft 3/3] include: Remove __exit macro definition.
- From: Varsha Rao <rvarsha016@xxxxxxxxx>
[PATCH nft 2/3] include: Remove __init macro definition.
- From: Varsha Rao <rvarsha016@xxxxxxxxx>
[PATCH nft 1/3] include: Remove datatype_register().
- From: Varsha Rao <rvarsha016@xxxxxxxxx>
[PATCH nft 0/3] include: Remove datatype_register(), __init and __exit macros.
- From: Varsha Rao <rvarsha016@xxxxxxxxx>
Re: [PATCH RFC 12/26] arm64: Remove spin_unlock_wait() arch-specific definitions
- From: Will Deacon <will.deacon@xxxxxxx>
Re: [PATCH RFC 08/26] locking: Remove spin_unlock_wait() generic definitions
- From: Will Deacon <will.deacon@xxxxxxx>
Re: [PATCH RFC 25/26] tile: Remove spin_unlock_wait() arch-specific definitions
- From: "Paul E. McKenney" <paulmck@xxxxxxxxxxxxxxxxxx>
Re: [PATCH RFC 25/26] tile: Remove spin_unlock_wait() arch-specific definitions
- From: "Paul E. McKenney" <paulmck@xxxxxxxxxxxxxxxxxx>
[PATCH RFC 11/26] arm: Remove spin_unlock_wait() arch-specific definitions
- From: "Paul E. McKenney" <paulmck@xxxxxxxxxxxxxxxxxx>
[PATCH RFC 02/26] task_work: Replace spin_unlock_wait() with lock/unlock pair
- From: "Paul E. McKenney" <paulmck@xxxxxxxxxxxxxxxxxx>
[PATCH RFC 03/26] sched: Replace spin_unlock_wait() with lock/unlock pair
- From: "Paul E. McKenney" <paulmck@xxxxxxxxxxxxxxxxxx>
[PATCH RFC 04/26] completion: Replace spin_unlock_wait() with lock/unlock pair
- From: "Paul E. McKenney" <paulmck@xxxxxxxxxxxxxxxxxx>
[PATCH RFC 16/26] m32r: Remove spin_unlock_wait() arch-specific definitions
- From: "Paul E. McKenney" <paulmck@xxxxxxxxxxxxxxxxxx>
Re: [PATCH RFC 25/26] tile: Remove spin_unlock_wait() arch-specific definitions
- From: Linus Torvalds <torvalds@xxxxxxxxxxxxxxxxxxxx>
[PATCH RFC 15/26] ia64: Remove spin_unlock_wait() arch-specific definitions
- From: "Paul E. McKenney" <paulmck@xxxxxxxxxxxxxxxxxx>
[PATCH RFC 05/26] exit: Replace spin_unlock_wait() with lock/unlock pair
- From: "Paul E. McKenney" <paulmck@xxxxxxxxxxxxxxxxxx>
Re: [PATCH RFC 25/26] tile: Remove spin_unlock_wait() arch-specific definitions
- From: "Paul E. McKenney" <paulmck@xxxxxxxxxxxxxxxxxx>
[PATCH RFC 06/26] ipc: Replace spin_unlock_wait() with lock/unlock pair
- From: "Paul E. McKenney" <paulmck@xxxxxxxxxxxxxxxxxx>
[PATCH RFC 17/26] metag: Remove spin_unlock_wait() arch-specific definitions
- From: "Paul E. McKenney" <paulmck@xxxxxxxxxxxxxxxxxx>
[PATCH RFC 12/26] arm64: Remove spin_unlock_wait() arch-specific definitions
- From: "Paul E. McKenney" <paulmck@xxxxxxxxxxxxxxxxxx>
[PATCH RFC 07/26] drivers/ata: Replace spin_unlock_wait() with lock/unlock pair
- From: "Paul E. McKenney" <paulmck@xxxxxxxxxxxxxxxxxx>
[PATCH RFC 21/26] powerpc: Remove spin_unlock_wait() arch-specific definitions
- From: "Paul E. McKenney" <paulmck@xxxxxxxxxxxxxxxxxx>
[PATCH RFC 08/26] locking: Remove spin_unlock_wait() generic definitions
- From: "Paul E. McKenney" <paulmck@xxxxxxxxxxxxxxxxxx>
[PATCH RFC 24/26] sparc: Remove spin_unlock_wait() arch-specific definitions
- From: "Paul E. McKenney" <paulmck@xxxxxxxxxxxxxxxxxx>
[PATCH RFC 18/26] mips: Remove spin_unlock_wait() arch-specific definitions
- From: "Paul E. McKenney" <paulmck@xxxxxxxxxxxxxxxxxx>
Re: [PATCH RFC 25/26] tile: Remove spin_unlock_wait() arch-specific definitions
- From: Linus Torvalds <torvalds@xxxxxxxxxxxxxxxxxxxx>
[PATCH RFC 13/26] blackfin: Remove spin_unlock_wait() arch-specific definitions
- From: "Paul E. McKenney" <paulmck@xxxxxxxxxxxxxxxxxx>
[PATCH RFC 19/26] mn10300: Remove spin_unlock_wait() arch-specific definitions
- From: "Paul E. McKenney" <paulmck@xxxxxxxxxxxxxxxxxx>
[PATCH RFC 10/26] arc: Remove spin_unlock_wait() arch-specific definitions
- From: "Paul E. McKenney" <paulmck@xxxxxxxxxxxxxxxxxx>
[PATCH RFC 01/26] netfilter: Replace spin_unlock_wait() with lock/unlock pair
- From: "Paul E. McKenney" <paulmck@xxxxxxxxxxxxxxxxxx>
[PATCH RFC 25/26] tile: Remove spin_unlock_wait() arch-specific definitions
- From: "Paul E. McKenney" <paulmck@xxxxxxxxxxxxxxxxxx>
[PATCH RFC 14/26] hexagon: Remove spin_unlock_wait() arch-specific definitions
- From: "Paul E. McKenney" <paulmck@xxxxxxxxxxxxxxxxxx>
[PATCH RFC 22/26] s390: Remove spin_unlock_wait() arch-specific definitions
- From: "Paul E. McKenney" <paulmck@xxxxxxxxxxxxxxxxxx>
[PATCH RFC 26/26] xtensa: Remove spin_unlock_wait() arch-specific definitions
- From: "Paul E. McKenney" <paulmck@xxxxxxxxxxxxxxxxxx>
[PATCH RFC 09/26] alpha: Remove spin_unlock_wait() arch-specific definitions
- From: "Paul E. McKenney" <paulmck@xxxxxxxxxxxxxxxxxx>
[PATCH RFC 20/26] parisc: Remove spin_unlock_wait() arch-specific definitions
- From: "Paul E. McKenney" <paulmck@xxxxxxxxxxxxxxxxxx>
[PATCH RFC 0/26] Remove spin_unlock_wait()
- From: "Paul E. McKenney" <paulmck@xxxxxxxxxxxxxxxxxx>
[PATCH 00/29] Netfilter updates for net-next
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH 03/29] netfilter: dup: resolve warnings about missing prototypes
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH 01/29] netfilter: ctnetlink: delete extra spaces
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH 05/29] netfilter: conntrack: rename nf_ct_iterate_cleanup
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH 07/29] netfilter: conntrack: add nf_ct_iterate_destroy
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH 08/29] netfilter: conntrack: restart iteration on resize
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH 17/29] netfilter: nft_set_hash: add non-resizable hashtable implementation
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH 10/29] netfilter: nft_set_hash: unnecessary forward declaration
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH 11/29] netfilter: nf_tables: no size estimation if number of set elements is unknown
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH 15/29] netfilter: nft_set_hash: add nft_hash_buckets()
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH 02/29] netfilter: ipt_CLUSTERIP: switch to nf_register_net_hook
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH 04/29] netfilter: nft_rt: make local functions static
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH 20/29] netfilter: cttimeout: use nf_ct_iterate_cleanup_net to unlink timeout objs
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH 19/29] netfilter: nf_ct_helper: use nf_ct_iterate_destroy to unlink helper objs
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH 18/29] netfilter: nft_set_hash: add lookup variant for fixed size hashtable
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH 14/29] netfilter: nf_tables: pass set description to ->privsize
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH 24/29] netfilter: ebt: Use new helper ebt_invalid_target to check target
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH 16/29] netfilter: nf_tables: allow large allocations for new sets
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH 06/29] netfilter: conntrack: don't call iter for non-confirmed conntracks
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH 22/29] netfilter: move table iteration out of netns exit paths
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH 25/29] netfilter, kbuild: use canonical method to specify objs.
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH 23/29] netns: add and use net_ns_barrier
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH 21/29] netfilter: ipt_CLUSTERIP: do not hold dev
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH 12/29] netfilter: nft_set_hash: use nft_rhash prefix for resizable set backend
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH 29/29] netfilter: nfnetlink: extended ACK reporting
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH 13/29] netfilter: nf_tables: select set backend flavour depending on description
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH 26/29] netfilter: use nf_conntrack_helpers_register when possible
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH 27/29] netfilter: conntrack: use NFPROTO_MAX to size array
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH 09/29] netfilter: nat: destroy nat mappings on module exit path only
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH 28/29] netfilter: nf_tables: reduce chain type table size
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH] netfilter: ctnetlink: move CTA_TIMEOUT case to outside
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH] netfilter: conntrack: fix clash resolution in nat
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH v2] netfilter: nfnetlink: Improve input length sanitization in nfnetlink_rcv
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH] nft: make raw payloads work
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[4.9.y,netfilter] please, cherry-pick 2638fd0f92d4
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[4.11.y,netfilter] please, cherry-pick 87e94dbc210a
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[RFC PATCH 2/2] nefilter: nf_nat: split nat rewriting from do_chain logic
- From: Florian Westphal <fw@xxxxxxxxx>
[RFC PATCH 1/2] netfilter: add nf_nat_netns_get infrasstructure
- From: Florian Westphal <fw@xxxxxxxxx>
[RFC 0/2] nftables iptables nat co-existence patches
- From: Florian Westphal <fw@xxxxxxxxx>
Re: crash on >= 4.9.0 kernel seems nf related
- From: Bjørnar Ness <bjornar.ness@xxxxxxxxx>
Re: [nft crap] ct original ip saddr ... handling
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [nf] netfilter: nf_ct_dccp/sctp: fix memory leak after netns cleanup
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [nft crap] ct original ip saddr ... handling
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [nf] netfilter: nf_ct_dccp/sctp: fix memory leak after netns cleanup
- From: Andrei Vagin <avagin@xxxxxxxxxxxxx>
Re: [nft crap] ct original ip saddr ... handling
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH] man: add include statement documentation.
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: crash on >= 4.9.0 kernel seems nf related
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH 15/17] src: rt: add keyword distinction for nexthop vs nexthop6
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH 17/17] doc: update man page
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH 16/17] tests: rt: fix test cases
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH 14/17] tests: ct: adjust test case commands
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH 12/17] tests: update inet/bridge icmp test case
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH 13/17] src: ct: print nfproto name for some header fields
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH 11/17] src: unifiy meta and ct postprocessing
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH 10/17] src: ct: add eval part to inject dependencies for ct saddr/daddr
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH 09/17] src: ct: store proto base of ct key, if any
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH 08/17] src: add alternate syntax for ct saddr
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH 07/17] tests: ct: remove unsupported syntax
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH 06/17] bison: permit keywords in list_stmt_expressions
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH 05/17] bison: permit 'label' on rhs side of expression
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH 04/17] parser: compact list of rhs keyword expressions
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH 03/17] parser: use scanner tokens again for ct key handling
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH 02/17] src: prepare for future ct timeout policy support
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH 01/17] rename struct ct to ct_helper
- From: Florian Westphal <fw@xxxxxxxxx>
[nft crap] ct original ip saddr ... handling
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH] man: add include statement documentation.
- From: Ismo Puustinen <ismo.puustinen@xxxxxxxxx>
Re: [PATCH v2] netfilter: nfnetlink: Improve input length sanitization in nfnetlink_rcv
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH] libnetfilter_queue: Add information about retrieving UID/GID/SECCTX fields
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH 1/2] scanner: support for wildcards in include statements.
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nf] netfilter: ebt_nflog: fix unexpected truncated packet
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH 2/2] tests: update include directory tests to support wildcard syntax.
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH 1/2] scanner: support for wildcards in include statements.
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH v2] netfilter: nfnetlink: Improve input length sanitization in nfnetlink_rcv
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nf] netfilter: nf_ct_dccp/sctp: fix memory leak after netns cleanup
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH 2/2] tests: update include directory tests to support wildcard syntax.
- From: Ismo Puustinen <ismo.puustinen@xxxxxxxxx>
[PATCH 1/2] scanner: support for wildcards in include statements.
- From: Ismo Puustinen <ismo.puustinen@xxxxxxxxx>
Re: [4.11.y netfilter] 4.11 iptables regression fix
- From: Greg KH <greg@xxxxxxxxx>
Re: crash on >= 4.9.0 kernel seems nf related
- From: Bjørnar Ness <bjornar.ness@xxxxxxxxx>
Re: [PATCH net-next] netfilter: conntrack: add a new NF_CT_EXT_EXPAND extension
- From: kbuild test robot <lkp@xxxxxxxxx>
Re: [PATCH] netfilter: ip_tables: remove useless variable assignment in get_info()
- From: "Gustavo A. R. Silva" <garsilva@xxxxxxxxxxxxxx>
Re: [PATCH] netfilter: ip_tables: remove useless variable assignment in get_info()
- From: Joe Perches <joe@xxxxxxxxxxx>
[PATCH] netfilter: ip_tables: remove useless variable assignment in get_info()
- From: "Gustavo A. R. Silva" <garsilva@xxxxxxxxxxxxxx>
[PATCH] libnetfilter_queue: Add information about retrieving UID/GID/SECCTX fields
- From: Piotr Sawicki <piotr.sawicki@xxxxxxxxx>
Re: [netfilter-core] Heap overflow in xt_geoip.c
- From: Loic <hackurx@xxxxxxxxxx>
Re: [netfilter-core] Heap overflow in xt_geoip.c
- From: Loic <hackurx@xxxxxxxxxx>
Re: [PATCH 1/2] tests: shell: Add test for incomplete set add set command
- From: Shyam Saini <mayhs11saini@xxxxxxxxx>
Re: [PATCH 1/2] tests: shell: Add test for incomplete set add set command
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH 1/2] tests: shell: Add test for incomplete set add set command
- From: Shyam Saini <mayhs11saini@xxxxxxxxx>
Re: [PATCH 1/2] tests: shell: Add test for incomplete set add set command
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH 1/2] tests: shell: Add test for incomplete set add set command
- From: Shyam Saini <mayhs11saini@xxxxxxxxx>
Re: [PATCH] tests: py: Fail test forcefully when bug is not fixed
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH] bump version to 1.0.3
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH net-next] netfilter: conntrack: add a new NF_CT_EXT_EXPAND extension
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nft 2/2] src: add --check option flag
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nft 1/2] src: add new generic context structure nft_ctx
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH 2/2] tests: shell: Test input descriptors for included files
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH 1/2] tests: shell: Add test for incomplete set add set command
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH net-next] netfilter: conntrack: add a new NF_CT_EXT_EXPAND extension
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH net-next] netfilter: conntrack: add a new NF_CT_EXT_EXPAND extension
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH net-next] netfilter: conntrack: add a new NF_CT_EXT_EXPAND extension
- From: kbuild test robot <lkp@xxxxxxxxx>
Bug on nfacct xml output
- From: Marcelo S Mota <motasmarcelo@xxxxxxxxx>
Re: crash on >= 4.9.0 kernel seems nf related
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH net-next] netfilter: conntrack: add a new NF_CT_EXT_EXPAND extension
- From: Lin Zhang <xiaolou4617@xxxxxxxxx>
Re: [netfilter-core] Heap overflow in xt_geoip.c
- From: Jan Engelhardt <jengelh@xxxxxxx>
[PATCH nft] include: Remove __init macro definition.
- From: Varsha Rao <rvarsha016@xxxxxxxxx>
[PATCH nft 2/2] src: add --check option flag
- From: "Pablo M. Bermudo Garay" <pablombg@xxxxxxxxx>
[PATCH nft 1/2] src: add new generic context structure nft_ctx
- From: "Pablo M. Bermudo Garay" <pablombg@xxxxxxxxx>
Re: RFC: Ideas about possible solutions for nfbz#949
- From: Phil Sutter <phil@xxxxxx>
[PATCH 2/2] tests: shell: Test input descriptors for included files
- From: Shyam Saini <mayhs11saini@xxxxxxxxx>
[PATCH 1/2] tests: shell: Add test for incomplete set add set command
- From: Shyam Saini <mayhs11saini@xxxxxxxxx>
Re: [PATCH] bump version to 1.0.3
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH] bump version to 1.0.3
- From: Richard Weinberger <richard@xxxxxx>
[PATCH] bump version to 1.0.3
- From: Richard Weinberger <richard@xxxxxx>
Re: [PATCH lnf-queue] src: prepare for new release
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH] nft: make raw payloads work
- From: Laurent Fasnacht <l@xxxxxxxxx>
Re: [PATCHv3] tests: py: Add test for ambiguity while setting the value
- From: Shyam Saini <mayhs11saini@xxxxxxxxx>
[PATCH] tests: py: Fail test forcefully when bug is not fixed
- From: Shyam Saini <mayhs11saini@xxxxxxxxx>
Re: [PATCHv3] tests: py: Add test for ambiguity while setting the value
- From: Shyam Saini <mayhs11saini@xxxxxxxxx>
Re: [PATCHv3] tests: py: Add test for ambiguity while setting the value
- From: Shyam Saini <mayhs11saini@xxxxxxxxx>
[4.11.y netfilter] 4.11 iptables regression fix
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH lnf-queue] src: prepare for new release
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH V2] netfilter: Remove duplicated rcu_read_lock.
- From: Taehee Yoo <ap420073@xxxxxxxxx>
Re: crash on >= 4.9.0 kernel seems nf related
- From: Bjørnar Ness <bjornar.ness@xxxxxxxxx>
Re: [PATCH V2] netfilter: Remove duplicated rcu_read_lock.
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH V2] netfilter: Remove duplicated rcu_read_lock.
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nf-next] netfilter: nfnetlink: extended ACK reporting
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH 1/1] iptables-xml: Fix segfault on jump without a target
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH v3] extensions: libxt_hashlimit: fix uint64_t printf formats
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nf-next] netfilter: conntrack: use NFPROTO_MAX to size array
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nf-next] nf_tables: reduce chain type table size
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nf-next RFC 1/5] netfilter: use nf_conntrack_helpers_register when possible
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH] netfilter, kbuild: use canonical method to specify objs.
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH v2 nf-next] netfilter: ebt: Use new helper ebt_invalid_target to check target
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nf-next] netns: add and use net_ns_barrier
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nf-next] netfilter: move table iteration out of netns exit paths
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH net] netfilter: do not hold dev in ipt_CLUSTERIP
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nf] netfilter: nf_ct_dccp/sctp: fix memory leak after netns cleanup
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH nft] evaluate: Better error reporting for bad set references
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft] evaluate: merge nested set flags
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH 4/4] evaluate: reject meta nfproto outside of inet family
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCHv3] tests: py: Add test for ambiguity while setting the value
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nft 0/4] restrict meta nfproto to inet family
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCHv3] tests: py: Add test for ambiguity while setting the value
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCHv3] tests: py: Add test for ambiguity while setting the value
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nft v3] src: Pass stateless, numeric, ip2name and handle variables as structure members.
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nf] netfilter: ebt_nflog: fix unexpected truncated packet
- From: Liping Zhang <zlpnobody@xxxxxxx>
Re: [NFQUEUE] lack of UID/GID fields in fragmented packets
- From: Florian Westphal <fw@xxxxxxxxx>
[NFQUEUE] lack of UID/GID fields in fragmented packets
- From: Piotr Sawicki <piotr.sawicki@xxxxxxxxx>
[PATCH 4/4] evaluate: reject meta nfproto outside of inet family
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH 3/4] tests: restrict meta nfproto test cases to inet family
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH 2/4] tests: remove two non-sensical rules
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH 1/4] tests: restrict ct saddr test to inet family
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH nft 0/4] restrict meta nfproto to inet family
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCHv3] tests: py: Add test for ambiguity while setting the value
- From: Shyam Saini <mayhs11saini@xxxxxxxxx>
[PATCH nft] src: error reporting for nested ruleset representation
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft v3] src: Pass stateless, numeric, ip2name and handle variables as structure members.
- From: Varsha Rao <rvarsha016@xxxxxxxxx>
Re: [PATCH nft v2] src: Pass stateless, numeric, ip2name and handle variables as structure members.
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft v2] src: Pass stateless, numeric, ip2name and handle variables as structure members.
- From: Varsha Rao <rvarsha016@xxxxxxxxx>
Re: [PATCH nft] src: Pass stateless, numeric, ip2name and handle variables as structure members.
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nft] src: Pass stateless, numeric, ip2name and handle variables as structure members.
- From: Varsha Rao <rvarsha016@xxxxxxxxx>
Re: [PATCHv2] tests: shell: Add test for ambguity while setting the value
- From: Shyam Saini <mayhs11saini@xxxxxxxxx>
Re: [PATCH xtables-addons] build: support for Linux 4.12
- From: Jan Engelhardt <jengelh@xxxxxxx>
Re: [PATCHv2] tests: shell: Add test for ambguity while setting the value
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nft] src: Pass stateless, numeric, ip2name and handle variables as structure members.
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [4.9.y,netfilter] please, cherry-pick da2f27e9e615
- From: Greg KH <greg@xxxxxxxxx>
[PATCH nft] src: Pass stateless, numeric, ip2name and handle variables as structure members.
- From: Varsha Rao <rvarsha016@xxxxxxxxx>
Re: using nft & iptables nat in parallel
- From: Florian Westphal <fw@xxxxxxxxx>
Re: using nft & iptables nat in parallel
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: using nft & iptables nat in parallel
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nf-next] netns: add and use net_ns_barrier
- From: ebiederm@xxxxxxxxxxxx (Eric W. Biederman)
Re: using nft & iptables nat in parallel
- From: Arturo Borrero Gonzalez <arturo@xxxxxxxxxx>
Re: using nft & iptables nat in parallel
- From: Florian Westphal <fw@xxxxxxxxx>
Re: using nft & iptables nat in parallel
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: using nft & iptables nat in parallel
- From: Florian Westphal <fw@xxxxxxxxx>
Re: using nft & iptables nat in parallel
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: using nft & iptables nat in parallel
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH nf-next] netfilter: conntrack: use NFPROTO_MAX to size array
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH nf-next] nf_tables: reduce chain type table size
- From: Florian Westphal <fw@xxxxxxxxx>
Re: using nft & iptables nat in parallel
- From: Arturo Borrero Gonzalez <arturo@xxxxxxxxxx>
using nft & iptables nat in parallel
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH nf-next] netns: add and use net_ns_barrier
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH] netfilter: conntrack: fix clash resolution in nat
- From: Haishuang Yan <yanhaishuang@xxxxxxxxxxxxxxxxxxxx>
Re: [PATCH nf-next] netns: add and use net_ns_barrier
- From: Cong Wang <xiyou.wangcong@xxxxxxxxx>
Re: [PATCH nf-next] netns: add and use net_ns_barrier
- From: Joe Stringer <joe@xxxxxxx>
Re: [PATCH nf-next] netns: add and use net_ns_barrier
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH nf-next] netns: add and use net_ns_barrier
- From: Cong Wang <xiyou.wangcong@xxxxxxxxx>
Re: [PATCH nf-next] netns: add and use net_ns_barrier
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH nf-next] netns: add and use net_ns_barrier
- From: Cong Wang <xiyou.wangcong@xxxxxxxxx>
[4.9.y,netfilter] please, cherry-pick da2f27e9e615
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCHv2] tests: shell: Add test for ambguity while setting the value
- From: Shyam Saini <mayhs11saini@xxxxxxxxx>
Re: [PATCHv2] tests: shell: Add test for ambguity while setting the value
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nft] meta: permit meta nfproto ip in ip family
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCHv2] tests: shell: Add test for ambguity while setting the value
- From: Shyam Saini <mayhs11saini@xxxxxxxxx>
Re: [conntrack-tools PATCH v2] conntrackd: make the daemon run in RT mode by default
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCHv2] tests: shell: Add test for ambguity while setting the value
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nf-next] netns: add and use net_ns_barrier
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[conntrack-tools PATCH v2] conntrackd: make the daemon run in RT mode by default
- From: Arturo Borrero Gonzalez <arturo@xxxxxxxxxx>
Re: [conntrack-tools PATCH 2/4] conntrackd: make the daemon run in RT mode by default
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH 1/3] scanner: add files in include dirs in alphabetical order.
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [conntrack-tools PATCH v2] In order to prevent netlink buffer overrun, conntrackd is recommended to run
- From: Arturo Borrero Gonzalez <arturo@xxxxxxxxxx>
[PATCHv2] tests: shell: Add test for ambguity while setting the value
- From: Shyam Saini <mayhs11saini@xxxxxxxxx>
Re: [PATCH] tests: shell: Add test for ambguity while setting the value
- From: Shyam Saini <mayhs11saini@xxxxxxxxx>
[conntrack-tools PATCH v2] In order to prevent netlink buffer overrun, conntrackd is recommended to run
- From: Arturo Borrero Gonzalez <arturo@xxxxxxxxxx>
Re: [PATCH] tests: shell: Add test for ambguity while setting the value
- From: Arturo Borrero Gonzalez <arturo@xxxxxxxxxxxxx>
[PATCH] tests: shell: Add test for ambguity while setting the value
- From: Shyam Saini <mayhs11saini@xxxxxxxxx>
[PATCH] netfilter: ctnetlink: move CTA_TIMEOUT case to outside
- From: Haishuang Yan <yanhaishuang@xxxxxxxxxxxxxxxxxxxx>
nfqueue accepted packet is disappeared
- From: Oleg <lego12239@xxxxxxxxx>
Re: [PATCH 1/3] scanner: add files in include dirs in alphabetical order.
- From: Arturo Borrero Gonzalez <arturo@xxxxxxxxxx>
Re: [PATCH v2] decnet: dn_rtmsg: Improve input length sanitization in dnrmg_receive_user_skb
- From: David Miller <davem@xxxxxxxxxxxxx>
Re: [PATCH 1/3] scanner: add files in include dirs in alphabetical order.
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [conntrack-tools PATCH 2/4] conntrackd: make the daemon run in RT mode by default
- From: Arturo Borrero Gonzalez <arturo@xxxxxxxxxx>
Re: [PATCH 1/3] scanner: add files in include dirs in alphabetical order.
- From: Arturo Borrero Gonzalez <arturo@xxxxxxxxxx>
Re: [PATCH nft 2/2] src: rename ct eventmask to event
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH nft] netlink_delinearize: prefer ct event set foo,bar over 'set foo|bar'
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft] netlink_delinearize: prefer ct event set foo,bar over 'set foo|bar'
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH v2] decnet: dn_rtmsg: Improve input length sanitization in dnrmg_receive_user_skb
- From: Mateusz Jurczyk <mjurczyk@xxxxxxxxxx>
Re: [PATCH v2] decnet: dn_rtmsg: Improve input length sanitization in dnrmg_receive_user_skb
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH v2] decnet: dn_rtmsg: Improve input length sanitization in dnrmg_receive_user_skb
- From: Mateusz Jurczyk <mjurczyk@xxxxxxxxxx>
[PATCH v2] netfilter: nfnetlink: Improve input length sanitization in nfnetlink_rcv
- From: Mateusz Jurczyk <mjurczyk@xxxxxxxxxx>
Re: [PATCH] netfilter: nfnetlink: Improve input length sanitization in nfnetlink_rcv
- From: Eric Dumazet <eric.dumazet@xxxxxxxxx>
[PATCH] decnet: dn_rtmsg: Improve input length sanitization in dnrmg_receive_user_skb
- From: Mateusz Jurczyk <mjurczyk@xxxxxxxxxx>
[PATCH] netfilter: nfnetlink: Improve input length sanitization in nfnetlink_rcv
- From: Mateusz Jurczyk <mjurczyk@xxxxxxxxxx>
Re: [PATCH nft 2/2] src: rename ct eventmask to event
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nft 2/2] src: rename ct eventmask to event
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH nft 2/2] src: rename ct eventmask to event
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nft 2/2] src: rename ct eventmask to event
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nft 1/2] parser: allow ct eventmask set new,related
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft 2/2] src: display default directory for file inclusion in -h/--help
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft 1/2] doc: nft: describe -I override behaviour when path starts by ./ and /
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft 2/2] src: rename ct eventmask to event
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH nft 1/2] parser: allow ct eventmask set new,related
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH 2/3] man: add include directory documentation.
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH 1/3] scanner: add files in include dirs in alphabetical order.
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH 2/3] man: add include directory documentation.
- From: Ismo Puustinen <ismo.puustinen@xxxxxxxxx>
[PATCH 3/3] tests: added tests for ordering files in include dirs.
- From: Ismo Puustinen <ismo.puustinen@xxxxxxxxx>
[PATCH 1/3] scanner: add files in include dirs in alphabetical order.
- From: Ismo Puustinen <ismo.puustinen@xxxxxxxxx>
Re: [PATCH nft] meta: permit meta nfproto ip in ip family
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [conntrack-tools PATCH 4/4] conntrackd: deprecate unix backlog configuration
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [conntrack-tools PATCH 3/4] conntrackd: cleanup if failed forking
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [conntrack-tools PATCH 1/4] conntrackd: evaluate configuration earlier
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nft] ct: fix inet/bridge/netdev family handling for saddr/daddr
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nft] meta: permit meta nfproto ip in ip family
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH] src: Remove expire information from list stateless ruleset.
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH v3 1/2] scanner: add support for include directories
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH v3 2/2] tests: test include directories
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH v3 1/2] scanner: add support for include directories
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH iptables 3/3] xtables-translate: fix double space before comment
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH iptables 2/3] libip6t_icmp6: xlate: remove leftover space
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH iptables 1/3] tests: xlate: generalize owner
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH conntrack-tools v2] ipv6: remove use of HAVE_INET_PTON_IPV6
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH v3 2/2] tests: test include directories
- From: Ismo Puustinen <ismo.puustinen@xxxxxxxxx>
[PATCH v3 1/2] scanner: add support for include directories
- From: Ismo Puustinen <ismo.puustinen@xxxxxxxxx>
Re: [nf-next PATCH] netfilter: nf_tables: Report transactions' process info to user space
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [conntrack-tools PATCH 4/4] conntrackd: deprecate unix backlog configuration
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [conntrack-tools PATCH 4/4] conntrackd: deprecate unix backlog configuration
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [conntrack-tools PATCH 2/4] conntrackd: make the daemon run in RT mode by default
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[conntrack-tools PATCH 4/4] conntrackd: deprecate unix backlog configuration
- From: Arturo Borrero Gonzalez <arturo@xxxxxxxxxx>
[conntrack-tools PATCH 3/4] conntrackd: cleanup if failed forking
- From: Arturo Borrero Gonzalez <arturo@xxxxxxxxxx>
[conntrack-tools PATCH 2/4] conntrackd: make the daemon run in RT mode by default
- From: Arturo Borrero Gonzalez <arturo@xxxxxxxxxx>
[conntrack-tools PATCH 1/4] conntrackd: evaluate configuration earlier
- From: Arturo Borrero Gonzalez <arturo@xxxxxxxxxx>
[PATCH] src: Remove expire information from list stateless ruleset.
- From: Varsha Rao <rvarsha016@xxxxxxxxx>
Re: [PATCH nf-next RFC 0/5] netfilter: add net namespace support for cthelper
- From: Liping Zhang <zlpnobody@xxxxxxxxx>
Re: [PATCH nf-next RFC 0/5] netfilter: add net namespace support for cthelper
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH v2 2/2] tests: test include directories
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH v2 1/2] scanner: add support for include directories
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH iptables 2/3] libip6t_icmp6: xlate: remove leftover space
- From: "Pablo M. Bermudo Garay" <pablombg@xxxxxxxxx>
[PATCH iptables 1/3] tests: xlate: generalize owner
- From: "Pablo M. Bermudo Garay" <pablombg@xxxxxxxxx>
[PATCH iptables 3/3] xtables-translate: fix double space before comment
- From: "Pablo M. Bermudo Garay" <pablombg@xxxxxxxxx>
Re: [PATCH V2] netfilter: Remove duplicated rcu_read_lock.
- From: Julian Anastasov <ja@xxxxxx>
[PATCH V2] netfilter: Remove duplicated rcu_read_lock.
- From: Taehee Yoo <ap420073@xxxxxxxxx>
[PATCH v2 2/2] tests: test include directories
- From: Ismo Puustinen <ismo.puustinen@xxxxxxxxx>
[PATCH v2 1/2] scanner: add support for include directories
- From: Ismo Puustinen <ismo.puustinen@xxxxxxxxx>
Re: [PATCH nf-next RFC 1/5] netfilter: use nf_conntrack_helpers_register when possible
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH nf] netfilter: nf_ct_dccp/sctp: fix memory leak after netns cleanup
- From: Davide Caratti <dcaratti@xxxxxxxxxx>
Re: [PATCH nf-next RFC 0/5] netfilter: add net namespace support for cthelper
- From: Liping Zhang <zlpnobody@xxxxxxxxx>
Re: [PATCH nf-next RFC 0/5] netfilter: add net namespace support for cthelper
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nf-next RFC 0/5] netfilter: add net namespace support for cthelper
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH nf-next RFC 5/5] netfilter: complete the netns support for the kernel built-in cthelpers
- From: Liping Zhang <zlpnobody@xxxxxxx>
[PATCH nf-next RFC 4/5] netfilter: complete the netns support for the user cthelpers
- From: Liping Zhang <zlpnobody@xxxxxxx>
[PATCH nf-next RFC 3/5] netfilter: make each ct helper belong to a specific netns
- From: Liping Zhang <zlpnobody@xxxxxxx>
[PATCH nf-next RFC 2/5] netfilter: make nf_conntrack_helper_register become per-net
- From: Liping Zhang <zlpnobody@xxxxxxx>
[PATCH nf-next RFC 1/5] netfilter: use nf_conntrack_helpers_register when possible
- From: Liping Zhang <zlpnobody@xxxxxxx>
[PATCH nf-next RFC 0/5] netfilter: add net namespace support for cthelper
- From: Liping Zhang <zlpnobody@xxxxxxx>
Re: [PATCH] ipset: Fix ipset command replacement in runtest.sh
- From: Jozsef Kadlecsik <kadlec@xxxxxxxxxxxxxxxxx>
[PATCH nf] netfilter: nf_ct_dccp/sctp: fix memory leak after netns cleanup
- From: Liping Zhang <zlpnobody@xxxxxxx>
[PATCH 1/1] iptables-xml: Fix segfault on jump without a target
- From: Oliver Ford <ojford@xxxxxxxxx>
Re: [PATCH 6/6 RFC] netfilter: add audit netns ID
- From: Paul Moore <paul@xxxxxxxxxxxxxx>
Re: [PATCH 5/6 RFC] netfilter: add audit operation field
- From: Paul Moore <paul@xxxxxxxxxxxxxx>
Re: [PATCH 4/6 RFC] netfilter: ebtables: audit table registration
- From: Paul Moore <paul@xxxxxxxxxxxxxx>
Re: [PATCH 3/6 RFC] netfilter: audit only on xtables and ebtables syscall rule or standalone
- From: Paul Moore <paul@xxxxxxxxxxxxxx>
Re: [PATCH nf-next] netns: add and use net_ns_barrier
- From: Florian Westphal <fw@xxxxxxxxx>
RE: [PATCH nf-next] netns: add and use net_ns_barrier
- From: David Laight <David.Laight@xxxxxxxxxx>
[PATCH] netfilter, kbuild: use canonical method to specify objs.
- From: Jike Song <jike.song@xxxxxxxxx>
Re: [PATCH nf-next] netns: add and use net_ns_barrier
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH nf-next] netns: add and use net_ns_barrier
- From: Joe Stringer <joe@xxxxxxx>
Re: [PATCH nf-next] netns: add and use net_ns_barrier
- From: ebiederm@xxxxxxxxxxxx (Eric W. Biederman)
Re: [PATCH nf-next] netns: add and use net_ns_barrier
- From: ebiederm@xxxxxxxxxxxx (Eric W. Biederman)
Re: [PATCH nf-next] netns: add and use net_ns_barrier
- From: David Miller <davem@xxxxxxxxxxxxx>
[PATCH v2 nf-next] netfilter: ebt: Use new helper ebt_invalid_target to check target
- From: gfree.wind@xxxxxxxxxxx
Re: [PATCH nf-next] netfilter: ebt: Use ebt_invalid_target instead of INVALID_TARGET
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nf-next] netfilter: ebt: Use ebt_invalid_target instead of INVALID_TARGET
- From: gfree.wind@xxxxxxxxxxx
Re: [nf-next PATCH] netfilter: nf_tables: Report transactions' process info to user space
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCHv2] extensions: libxt_cluster: Add translation to nft
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [nf-next PATCH] netfilter: nf_tables: Report transactions' process info to user space
- From: Phil Sutter <phil@xxxxxx>
Re: [PATCHv2] extensions: libxt_cluster: Add translation to nft
- From: Shyam Saini <mayhs11saini@xxxxxxxxx>
Re: [nf-next PATCH] netfilter: nf_tables: Report transactions' process info to user space
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: RFC: Ideas about possible solutions for nfbz#949
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: RFC: Ideas about possible solutions for nfbz#949
- From: Phil Sutter <phil@xxxxxx>
[PATCH] ipset: Fix ipset command replacement in runtest.sh
- From: Neutron Soutmun <neo.neutron@xxxxxxxxx>
Re: [PATCHv2] extensions: libxt_cluster: Add translation to nft
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCHv2] extensions: libxt_cluster: Add translation to nft
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nf-next] netns: add and use net_ns_barrier
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH nf-next] netfilter: move table iteration out of netns exit paths
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCHv2] extensions: libxt_cluster: Add translation to nft
- From: Shyam Saini <mayhs11saini@xxxxxxxxx>
[PATCH conntrack-tools v2] ipv6: remove use of HAVE_INET_PTON_IPV6
- From: Nicolas Dichtel <nicolas.dichtel@xxxxxxxxx>
Re: [PATCH conntrack-tools] ipv6: remove use of HAVE_INET_PTON_IPV6
- From: Nicolas Dichtel <nicolas.dichtel@xxxxxxxxx>
Re: [PATCH 0/4] Netfilter fixes for net
- From: David Miller <davem@xxxxxxxxxxxxx>
Re: RFC: Ideas about possible solutions for nfbz#949
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft] src: remove global nftnl_batch structure in mnl layer
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft] ct: fix inet/bridge/netdev family handling for saddr/daddr
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH nft] meta: permit meta nfproto ip in ip family
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH conntrack-tools] ipv6: remove use of HAVE_INET_PTON_IPV6
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH conntrack-tools] ipv6: remove use of HAVE_INET_PTON_IPV6
- From: Nicolas Dichtel <nicolas.dichtel@xxxxxxxxx>
Re: [PATCH] netfilter: Remove duplicated rcu_read_lock.
- From: Taehee Yoo <ap420073@xxxxxxxxx>
Re: [PATCH v3] extensions: libxt_hashlimit: fix uint64_t printf formats
- From: Alin Năstac <alin.nastac@xxxxxxxxx>
Re: [PATCH v3] extensions: libxt_hashlimit: fix uint64_t printf formats
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH v3] extensions: libxt_hashlimit: fix uint64_t printf formats
- From: Alin Năstac <alin.nastac@xxxxxxxxx>
Re: [PATCH v5 1/1] iptables: Fix crash on malformed iptables-restore
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH 1/1] iptables: Add file output option to iptables-save
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH] iptables: insist that the lock is held.
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH v3] extensions: libxt_hashlimit: fix uint64_t printf formats
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH 0/4] Netfilter fixes for net
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH 3/4] netfilter: nat: use atomic bit op to clear the _SRC_NAT_DONE_BIT
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH 2/4] netfilter: nft_set_rbtree: handle element re-addition after deletion
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH 4/4] netfilter: ctnetlink: fix incorrect nf_ct_put during hash resize
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH 1/4] netfilter: conntrack: fix false CRC32c mismatch using paged skb
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH] netfilter: Remove duplicated rcu_read_lock.
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[4.9.y,netfilter] please, cherry-pick da2f27e9e615
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH] Fix typo in documentation of nft
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [nft PATCH v2] evaluate: avoid reference to multiple src data in statements which set values
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nf-next V2] netfilter: cttimeout: use nf_ct_iterate_cleanup_net to unlink timeout objs
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nf-next V2] netfilter: nf_ct_helper: use nf_ct_iterate_destroy to unlink helper objs
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nf-next 0/5] netfilter: conntrack: rework nf_ct_iterate, part 1.
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH net-next 2/2] netfilter: nf_tables: make local functions static
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH net-next 1/2] netfilter: resolve warnings about missing prototypes
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nf-next] netfilter: clusterip: switch to nf_register_net_hook
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH] net: netfilter: netlink: delete extra spaces
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nf-next V2] netfilter: cttimeout: use nf_ct_iterate_cleanup_net to unlink timeout objs
- From: Liping Zhang <zlpnobody@xxxxxxxxx>
Re: [PATCH nf-next V2] netfilter: nf_ct_helper: use nf_ct_iterate_destroy to unlink helper objs
- From: kbuild test robot <lkp@xxxxxxxxx>
Re: [PATCH nf-next V2] netfilter: cttimeout: use nf_ct_iterate_cleanup_net to unlink timeout objs
- From: kbuild test robot <lkp@xxxxxxxxx>
[PATCH nf-next V2] netfilter: cttimeout: use nf_ct_iterate_cleanup_net to unlink timeout objs
- From: Liping Zhang <zlpnobody@xxxxxxx>
[PATCH nf-next V2] netfilter: nf_ct_helper: use nf_ct_iterate_destroy to unlink helper objs
- From: Liping Zhang <zlpnobody@xxxxxxx>
Re: [PATCH 1/1] iptables: Add file output option to iptables-save
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH 1/1] iptables: Add file output option to iptables-save
- From: Oliver Ford <ojford@xxxxxxxxx>
[PATCH nft 2/2] tests: py: flush stdout on each test run
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft 1/2] expression: don't trim off unary expression on delinearization
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH 1/1] iptables: Add file output option to iptables-save
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH 1/1] iptables: Add file output option to iptables-save
- From: Oliver Ford <ojford@xxxxxxxxx>
[nft PATCH v2] evaluate: avoid reference to multiple src data in statements which set values
- From: Arturo Borrero Gonzalez <arturo@xxxxxxxxxx>
Re: [PATCH nf-next 7/9] netfilter: nf_tables: allow large allocations for new sets
- From: Liping Zhang <zlpnobody@xxxxxxxxx>
Re: [PATCH nf-next 7/9] netfilter: nf_tables: allow large allocations for new sets
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nf-next 7/9] netfilter: nf_tables: allow large allocations for new sets
- From: Liping Zhang <zlpnobody@xxxxxxxxx>
NFQUEUE and TRPOXY
- From: Pavel Vajarov <pavel@xxxxxxxx>
[PATCH] Fix typo in documentation of nft
- From: Bertrand Bonnefoy-Claudet <bertrandbc@xxxxxxxxx>
Re: [PATCH 1/1] extensions: libxt_cluster: Add translation to nft
- From: Shyam Saini <mayhs11saini@xxxxxxxxx>
Re: [PATCH 1/1] extensions: libxt_cluster: Add translation to nft
- From: Shyam Saini <mayhs11saini@xxxxxxxxx>
Re: [PATCH 1/6 RFC] netfilter: normalize x_table function declarations
- From: Richard Guy Briggs <rgb@xxxxxxxxxx>
Re: [PATCH 6/6 RFC] netfilter: add audit netns ID
- From: ebiederm@xxxxxxxxxxxx (Eric W. Biederman)
Re: [PATCH 3/6 RFC] netfilter: audit only on xtables and ebtables syscall rule or standalone
- From: Richard Guy Briggs <rgb@xxxxxxxxxx>
Re: [PATCH 6/6 RFC] netfilter: add audit netns ID
- From: Richard Guy Briggs <rgb@xxxxxxxxxx>
Re: [PATCH 1/6 RFC] netfilter: normalize x_table function declarations
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH 3/6 RFC] netfilter: audit only on xtables and ebtables syscall rule or standalone
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH 6/6 RFC] netfilter: add audit netns ID
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nf-next 8/9,v2] netfilter: nft_set_hash: add non-resizable hashtable implementation
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nf-next 9/9,v2] netfilter: nft_set_hash: add lookup variant for fixed size hashtable
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH 1/1] extensions: libxt_cluster: Add translation to nft
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [nft PATCH] evaluate: prevent using sets in payload statements
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [nft PATCH] evaluate: prevent using sets in payload statements
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH 1/1] extensions: libxt_cluster: Add translation to nft
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH 1/1] extensions: libxt_cluster: Add translation to nft
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH 1/1] extensions: libxt_cluster: Add translation to nft
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCHv2 net] netfilter: do not hold dev in ipt_CLUSTERIP
- From: Xin Long <lucien.xin@xxxxxxxxx>
[nft PATCH] evaluate: prevent using sets in payload statements
- From: Arturo Borrero Gonzalez <arturo@xxxxxxxxxx>
[PATCH 1/1] extensions: libxt_cluster: Add translation to nft
- From: Shyam Saini <mayhs11saini@xxxxxxxxx>
Re: [PATCH] netfilter: Remove duplicated rcu_read_lock.
- From: Julian Anastasov <ja@xxxxxx>
Re: [PATCH nf] netfilter: ctnetlink: fix incorrect nf_ct_put during hash resize
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [nft PATCH 0/4 RFC] Support IPv6 AH header matches
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nf-next 8/9] netfilter: nft_set_hash: add non-resizable hashtable implementation
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft 3/3] netlink: add size description for constant sets
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft 2/3] segtree: reset element size counter before adding intervals to set
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft 1/3] rule: adjust set expression size accordingly with intervals
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nf-next 9/9] netfilter: nft_set_hash: add lookup variant for fixed size hashtable
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nf-next 7/9] netfilter: nf_tables: allow large allocations for new sets
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nf-next 5/9] netfilter: nf_tables: pass set description to ->privsize
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nf-next 8/9] netfilter: nft_set_hash: add non-resizable hashtable implementation
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nf-next 4/9] netfilter: nf_tables: select set backend flavour depending on description
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nf-next 0/9] nf_tables set updates
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nf-next 1/9] netfilter: nft_set_hash: unnecessary forward declaration
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nf-next 2/9] netfilter: nf_tables: no size estimation if number of set elements is unknown
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nf-next 3/9] netfilter: nft_set_hash: use nft_rhash prefix for resizable set backend
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nf-next 6/9] netfilter: nft_set_hash: add nft_hash_buckets()
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH net] netfilter: do not hold dev in ipt_CLUSTERIP
- From: Xin Long <lucien.xin@xxxxxxxxx>
[PATCH v3] extensions: libxt_hashlimit: fix uint64_t printf formats
- From: Alin Nastac <alin.nastac@xxxxxxxxx>
Re: [PATCH nf] netfilter: ctnetlink: fix incorrect nf_ct_put during hash resize
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH nf] netfilter: ctnetlink: fix incorrect nf_ct_put during hash resize
- From: Liping Zhang <zlpnobody@xxxxxxxxx>
Re: [PATCH nf] netfilter: ctnetlink: fix incorrect nf_ct_put during hash resize
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH nf] netfilter: ctnetlink: fix incorrect nf_ct_put during hash resize
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nf] netfilter: conntrack: fix false CRC32c mismatch using paged skb
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH net] netfilter: do not hold dev in ipt_CLUSTERIP
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nf] netfilter: nat: use atomic bit op to clear the _SRC_NAT_DONE_BIT
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nft v3 0/7] switch l4 dependency to meta l4proto
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH v2] extensions: libxt_hashlimit: fix 64-bit printf formats
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [nft PATCH v3] List handles of added rules if requested
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [nft PATCH v3] List handles of added rules if requested
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nf] netfilter: conntrack: fix false CRC32c mismatch using paged skb
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nf] netfilter: conntrack: fix false CRC32c mismatch using paged skb
- From: Davide Caratti <dcaratti@xxxxxxxxxx>
Re: [PATCH 00/12] Netfilter/IPVS fixes for net
- From: David Miller <davem@xxxxxxxxxxxxx>
Re: [PATCH 00/12] Netfilter/IPVS fixes for net
- From: David Miller <davem@xxxxxxxxxxxxx>
[nft PATCH 3/4 RFC] exthdr: Define AH header description
- From: Phil Sutter <phil@xxxxxx>
[nft PATCH 4/4 RFC] payload: Convert AH header expression to exthdr for IPv6
- From: Phil Sutter <phil@xxxxxx>
[nft PATCH 1/4 RFC] payload: Carry template number around for internal use
- From: Phil Sutter <phil@xxxxxx>
[nft PATCH 2/4 RFC] exthdr: Align max templates count with payload expr
- From: Phil Sutter <phil@xxxxxx>
[nft PATCH 0/4 RFC] Support IPv6 AH header matches
- From: Phil Sutter <phil@xxxxxx>
Re: [PATCH nf] netfilter: nft_set_rbtree: handle re-addition element after deletion
- From: Wolfgang Bumiller <w.bumiller@xxxxxxxxxxx>
Re: [PATCH 00/12] Netfilter/IPVS fixes for net
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nf] netfilter: nft_set_rbtree: handle re-addition element after deletion
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH 00/12] Netfilter/IPVS fixes for net
- From: David Miller <davem@xxxxxxxxxxxxx>
Re: [PATCH nf] netfilter: nat: use atomic bit op to clear the _SRC_NAT_DONE_BIT
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH nf] netfilter: nat: use atomic bit op to clear the _SRC_NAT_DONE_BIT
- From: Liping Zhang <zlpnobody@xxxxxxx>
Re: [PATCH nf-next 2/3] netfilter: nf_ct_helper: use nf_ct_iterate_cleanup to unlink helper objs
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH nf-next 2/3] netfilter: nf_ct_helper: use nf_ct_iterate_cleanup to unlink helper objs
- From: Liping Zhang <zlpnobody@xxxxxxxxx>
[PATCH nf-next 5/5] netfilter: nat: destroy nat mappings on module exit path only
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH nf-next 4/5] netfilter: conntrack: restart iteration on resize
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH nf-next 3/5] netfilter: conntrack: add nf_ct_iterate_destroy
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH nf-next 2/5] netfilter: conntrack: don't call iter for non-confirmed conntracks
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH nf-next 1/5] netfilter: conntrack: rename nf_ct_iterate_cleanup
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH nf-next 0/5] netfilter: conntrack: rework nf_ct_iterate, part 1.
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH nf-next 2/3] netfilter: nf_ct_helper: use nf_ct_iterate_cleanup to unlink helper objs
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH nf-next 2/3] netfilter: nf_ct_helper: use nf_ct_iterate_cleanup to unlink helper objs
- From: Liping Zhang <zlpnobody@xxxxxxxxx>
Re: [PATCH nf-next 2/3] netfilter: nf_ct_helper: use nf_ct_iterate_cleanup to unlink helper objs
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH nf-next 1/3] netfilter: restart nf ct cleanup if hash resize happen
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH nf-next 0/3] netfilter: handle hash resize situation in nf_ct_iterate_cleanup
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH nf-next 2/3] netfilter: nf_ct_helper: use nf_ct_iterate_cleanup to unlink helper objs
- From: Liping Zhang <zlpnobody@xxxxxxx>
[PATCH nf-next 3/3] netfilter: cttimeout: use nf_ct_iterate_cleanup to unlink timeout objs
- From: Liping Zhang <zlpnobody@xxxxxxx>
[PATCH nf-next 0/3] netfilter: handle hash resize situation in nf_ct_iterate_cleanup
- From: Liping Zhang <zlpnobody@xxxxxxx>
[PATCH nf-next 1/3] netfilter: restart nf ct cleanup if hash resize happen
- From: Liping Zhang <zlpnobody@xxxxxxx>
Re: [PATCH nf] netfilter: ctnetlink: fix incorrect nf_ct_put during hash resize
- From: Liping Zhang <zlpnobody@xxxxxxxxx>
Re: [PATCH nf] netfilter: ctnetlink: fix incorrect nf_ct_put during hash resize
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH nf] netfilter: ctnetlink: fix incorrect nf_ct_put during hash resize
- From: Liping Zhang <zlpnobody@xxxxxxx>
[PATCH net] netfilter: do not hold dev in ipt_CLUSTERIP
- From: Xin Long <lucien.xin@xxxxxxxxx>
[PATCH nft v3 7/7] tests: fix up meta l4proto change for ip family
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH nft v3 6/7] src: ip: switch implicit dependencies to meta l4proto too
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH nft v3 5/7] tests: fix up meta l4proto change for ip6 family
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH nft 4/7] payload: enforce ip/ip6 protocol depending on icmp or icmpv6
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH nft v3 3/7] src: ipv6: switch implicit dependencies to meta l4proto
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH nft v3 2/7] src: allow update of net base w. meta l4proto icmpv6
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH nft 1/7] payload: split ll proto dependency into helper
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH nft v3 0/7] switch l4 dependency to meta l4proto
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH net-next 2/2] netfilter: nf_tables: make local functions static
- From: Stephen Hemminger <stephen@xxxxxxxxxxxxxxxxxx>
[PATCH net-next 1/2] netfilter: resolve warnings about missing prototypes
- From: Stephen Hemminger <stephen@xxxxxxxxxxxxxxxxxx>
Re: [PATCH v3 1/1] iptables: Fix crash on malformed iptables-restore
- From: Oliver Ford <ojford@xxxxxxxxx>
[PATCH v5 1/1] iptables: Fix crash on malformed iptables-restore
- From: Oliver Ford <ojford@xxxxxxxxx>
[nft PATCH v3] List handles of added rules if requested
- From: Phil Sutter <phil@xxxxxx>
Re: [PATCH nf] netfilter: conntrack: fix false CRC32c mismatch using paged skb
- From: Davide Caratti <dcaratti@xxxxxxxxxx>
Re: [PATCH v3 1/1] iptables: Fix crash on malformed iptables-restore
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH v3 1/1] iptables: Fix crash on malformed iptables-restore
- From: Oliver Ford <ojford@xxxxxxxxx>
[PATCH v4 1/1] iptables: Fix crash on malformed iptables-restore
- From: Oliver Ford <ojford@xxxxxxxxx>
Re: [nf-next PATCH] netfilter: nf_tables: Report transactions' process info to user space
- From: Phil Sutter <phil@xxxxxx>
Re: [PATCH v3 1/1] iptables: Fix crash on malformed iptables-restore
- From: Oliver Ford <ojford@xxxxxxxxx>
Re: [PATCH v3 1/1] iptables: Fix crash on malformed iptables-restore
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH v3 1/1] iptables: Fix crash on malformed iptables-restore
- From: Oliver Ford <ojford@xxxxxxxxx>
Re: [PATCH v3 1/1] iptables: Fix crash on malformed iptables-restore
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH v2 1/1] iptables: Fix crash on malformed iptables-restore
- From: Oliver Ford <ojford@xxxxxxxxx>
[PATCH v3 1/1] iptables: Fix crash on malformed iptables-restore
- From: Oliver Ford <ojford@xxxxxxxxx>
Re: [PATCH nf] netfilter: conntrack: fix false CRC32c mismatch using paged skb
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH 06/12] netfilter: xtables: zero padding in data_to_user
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH 00/12] Netfilter/IPVS fixes for net
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH 02/12] netfilter: ctnetlink: Make some parameters integer to avoid enum mismatch
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH 04/12] netfilter: introduce nf_conntrack_helper_put helper function
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH 07/12] netfilter: synproxy: fix conntrackd interaction
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH 08/12] netfilter: nf_tables: can't assume lock is acquired when dumping set elems
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH 05/12] netfilter: nfnl_cthelper: reject del request if helper obj is in use
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH 09/12] netfilter: nf_tables: missing sanitization in data from userspace
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH 03/12] netfilter: don't setup nat info for confirmed ct
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH 11/12] ebtables: arpreply: Add the standard target sanity check
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH 12/12] netfilter: xtables: fix build failure from COMPAT_XT_ALIGN outside CONFIG_COMPAT
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH 10/12] netfilter: nf_tables: revisit chain/object refcounting from elements
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH 01/12] ipvs: SNAT packet replies only for NATed connections
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH iptables] iptables: support insisting that the lock is held
- From: Lorenzo Colitti <lorenzo@xxxxxxxxxx>
[PATCH] iptables: insist that the lock is held.
- From: Lorenzo Colitti <lorenzo@xxxxxxxxxx>
[PATCH 6/6 RFC] netfilter: add audit netns ID
- From: Richard Guy Briggs <rgb@xxxxxxxxxx>
[PATCH 5/6 RFC] netfilter: add audit operation field
- From: Richard Guy Briggs <rgb@xxxxxxxxxx>
[PATCH 4/6 RFC] netfilter: ebtables: audit table registration
- From: Richard Guy Briggs <rgb@xxxxxxxxxx>
[PATCH 3/6 RFC] netfilter: audit only on xtables and ebtables syscall rule or standalone
- From: Richard Guy Briggs <rgb@xxxxxxxxxx>
[PATCH 2/6 RFC] netfilter: normalize ebtables function declarations
- From: Richard Guy Briggs <rgb@xxxxxxxxxx>
[PATCH 1/6 RFC] netfilter: normalize x_table function declarations
- From: Richard Guy Briggs <rgb@xxxxxxxxxx>
[PATCH 0/6 RFC] Address NETFILTER_CFG issues
- From: Richard Guy Briggs <rgb@xxxxxxxxxx>
[PATCH nf] netfilter: conntrack: fix false CRC32c mismatch using paged skb
- From: Davide Caratti <dcaratti@xxxxxxxxxx>
Re: [PATCH v2 1/1] iptables: Fix crash on malformed iptables-restore
- From: Oliver Ford <ojford@xxxxxxxxx>
Re: [PATCH v2 1/1] iptables: Fix crash on malformed iptables-restore
- From: Oliver Ford <ojford@xxxxxxxxx>
Re: [PATCH v2 1/1] iptables: Fix crash on malformed iptables-restore
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH v2 1/1] iptables: Fix crash on malformed iptables-restore
- From: Oliver Ford <ojford@xxxxxxxxx>
[PATCH v2] extensions: libxt_hashlimit: fix 64-bit printf formats
- From: Alin Nastac <alin.nastac@xxxxxxxxx>
Re: [PATCH] extensions: libxt_hashlimit: fix 64-bit printf format
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH] extensions: libxt_hashlimit: fix 64-bit printf format
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH] extensions: libxt_hashlimit: fix 64-bit printf format
- From: Alin Nastac <alin.nastac@xxxxxxxxx>
Re: [PATCH nf] xtables: fix build failure from COMPAT_XT_ALIGN outside CONFIG_COMPAT
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [1/1] iptables: Fix crash on malformed iptables-restore
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [1/1] iptables: Fix crash on malformed iptables-restore
- From: Oliver Ford <ojford@xxxxxxxxx>
Re: crash on >= 4.9.0 kernel seems nf related
- From: Bjørnar Ness <bjornar.ness@xxxxxxxxx>
Re: linux-next: build failure after merge of the netfilter tree
- From: Stephen Rothwell <sfr@xxxxxxxxxxxxxxxx>
Re: [1/1] iptables: Fix crash on malformed iptables-restore
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH nft 04/10] tests: fix up meta l4proto change for ip6 family
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH nft 04/10] tests: fix up meta l4proto change for ip6 family
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nft 04/10] tests: fix up meta l4proto change for ip6 family
- From: Florian Westphal <fw@xxxxxxxxx>

[Index of Archives] [LARTC] [Berkeley Packet Filter] [Bugtraq] [Yosemite News] [Samba]