Linux TCP/IP Netfilter Devel

Thread Index

[Prev Page][Next Page]

[PATCH net 5/6] netfilter: nf_tables: validate family when identifying table via handle
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH net 3/6] netfilter: nf_tables: fix 'exist' matching on bigendian arches
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH net 2/6] netfilter: nft_set_pipapo: skip inactive elements during set walk
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH net 1/6] netfilter: bpf: fix bad registration on nf_defrag
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH net 0/6] Netfilter fixes for net
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft] evaluate: reset statement length context before evaluating statement
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nft v2 0/5] add infrastructure for unit tests
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: Is xt_owner's owner_mt() racy with sock_orphan()? [worse with new TYPESAFE_BY_RCU file lifetime?]
- From: Christian Brauner <brauner@xxxxxxxxxx>
Re: Is xt_owner's owner_mt() racy with sock_orphan()? [worse with new TYPESAFE_BY_RCU file lifetime?]
- From: Christian Brauner <brauner@xxxxxxxxxx>
Re: Is xt_owner's owner_mt() racy with sock_orphan()? [worse with new TYPESAFE_BY_RCU file lifetime?]
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nft] evaluate: reset statement length context for relational expressions
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: Is xt_owner's owner_mt() racy with sock_orphan()? [worse with new TYPESAFE_BY_RCU file lifetime?]
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: Is xt_owner's owner_mt() racy with sock_orphan()? [worse with new TYPESAFE_BY_RCU file lifetime?]
- From: Jann Horn <jannh@xxxxxxxxxx>
Re: [PATCH nft v3] parser: tcpopt: fix tcp option parsing with NUM + length field
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH libnetfilter_queue v5 1/1] src: Add nfq_nlmsg_put2() - user specifies header flags
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH v2 nft] parser: tcpopt: fix tcp option parsing with NUM + length field
- From: Thomas Haller <thaller@xxxxxxxxxx>
Re: [PATCH v2 nft] parser: tcpopt: fix tcp option parsing with NUM + length field
- From: Thomas Haller <thaller@xxxxxxxxxx>
Re: Is xt_owner's owner_mt() racy with sock_orphan()? [worse with new TYPESAFE_BY_RCU file lifetime?]
- From: Jann Horn <jannh@xxxxxxxxxx>
Re: [PATCH v2 nft] parser: tcpopt: fix tcp option parsing with NUM + length field
- From: Phil Sutter <phil@xxxxxx>
Re: Is xt_owner's owner_mt() racy with sock_orphan()? [worse with new TYPESAFE_BY_RCU file lifetime?]
- From: Christian Brauner <brauner@xxxxxxxxxx>
Re: [PATCH nft] initial support for the afl++ (american fuzzy lop++) fuzzer
- From: Phil Sutter <phil@xxxxxx>
Re: [PATCH v2 nft] parser: tcpopt: fix tcp option parsing with NUM + length field
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH v2 nft] parser: tcpopt: fix tcp option parsing with NUM + length field
- From: Thomas Haller <thaller@xxxxxxxxxx>
Re: [PATCH nft] initial support for the afl++ (american fuzzy lop++) fuzzer
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH nft] tests: shell: flush ruleset with -U after feature probing
- From: Thomas Haller <thaller@xxxxxxxxxx>
[PATCH nft] evaluate: reset statement length context for relational expressions
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH nft] initial support for the afl++ (american fuzzy lop++) fuzzer
- From: Phil Sutter <phil@xxxxxx>
[PATCH nft,v2] evaluate: reject set definition with no key
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nft] tests: shell: flush ruleset with -U after feature probing
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nft] tests: shell: flush ruleset with -U after feature probing
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH nft] tests: shell: flush ruleset with -U after feature probing
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nft] evaluate: reject set definition with no key
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH nft] tests: shell: flush ruleset with -U after feature probing
- From: Thomas Haller <thaller@xxxxxxxxxx>
[PATCH nft] evaluate: reject set definition with no key
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH] ipvs: add a stateless type of service and a stateless Maglev hashing scheduler
- From: Julian Anastasov <ja@xxxxxx>
Re: [PATCH nft] tests: shell: flush ruleset with -U after feature probing
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nft] tests: shell: flush ruleset with -U after feature probing
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nft] tests: shell: flush ruleset with -U after feature probing
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH v2 nft] parser: tcpopt: fix tcp option parsing with NUM + length field
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH nft] tests: shell: flush ruleset with -U after feature probing
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH v2 nft] parser: tcpopt: fix tcp option parsing with NUM + length field
- From: Thomas Haller <thaller@xxxxxxxxxx>
Re: [PATCH v2 nft] parser: tcpopt: fix tcp option parsing with NUM + length field
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH v2 nft] parser: tcpopt: fix tcp option parsing with NUM + length field
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH nft v3] parser: tcpopt: fix tcp option parsing with NUM + length field
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH v2 nft] parser: tcpopt: fix tcp option parsing with NUM + length field
- From: Thomas Haller <thaller@xxxxxxxxxx>
Re: [PATCH v2 nft] parser: tcpopt: fix tcp option parsing with NUM + length field
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH] ipvs: add a stateless type of service and a stateless Maglev hashing scheduler
- From: kernel test robot <lkp@xxxxxxxxx>
Re: [PATCH v2 nft] parser: tcpopt: fix tcp option parsing with NUM + length field
- From: Thomas Haller <thaller@xxxxxxxxxx>
Re: [PATCH nft v2 0/5] add infrastructure for unit tests
- From: Thomas Haller <thaller@xxxxxxxxxx>
Re: [PATCH nft] initial support for the afl++ (american fuzzy lop++) fuzzer
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH nft] tests: shell: flush ruleset with -U after feature probing
- From: Thomas Haller <thaller@xxxxxxxxxx>
Re: [PATCH nft] initial support for the afl++ (american fuzzy lop++) fuzzer
- From: Phil Sutter <phil@xxxxxx>
Re: Is xt_owner's owner_mt() racy with sock_orphan()? [worse with new TYPESAFE_BY_RCU file lifetime?]
- From: Phil Sutter <phil@xxxxxx>
Re: [PATCH] ipvs: add a stateless type of service and a stateless Maglev hashing scheduler
- From: Julian Anastasov <ja@xxxxxx>
Re: [PATCH nft] tests: shell: flush ruleset with -U after feature probing
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH nft] monitor: add support for concatenated set ranges
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nft] evaluate: fix double free on dtype release
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: Is xt_owner's owner_mt() racy with sock_orphan()? [worse with new TYPESAFE_BY_RCU file lifetime?]
- From: Jann Horn <jannh@xxxxxxxxxx>
Re: [PATCH nft] evaluate: fix double free on dtype release
- From: Thomas Haller <thaller@xxxxxxxxxx>
Is xt_owner's owner_mt() racy with sock_orphan()? [worse with new TYPESAFE_BY_RCU file lifetime?]
- From: Jann Horn <jannh@xxxxxxxxxx>
Re: [iptables PATCH 00/13] ebtables: Use the shared commandline parser
- From: Phil Sutter <phil@xxxxxx>
[PATCH nft] tests: shell: flush ruleset with -U after feature probing
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nft] evaluate: fix double free on dtype release
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nft] intervals: don't assert when symbolic expression is to be split into a range
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nf] netfilter: nf_tables: validate family when identifying table via handle
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH v2 nft] parser: tcpopt: fix tcp option parsing with NUM + length field
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH v2 nft] parser: tcpopt: fix tcp option parsing with NUM + length field
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH nf] netfilter: nf_tables: validate family when identifying table via handle
- From: Phil Sutter <phil@xxxxxx>
[PATCH nft] intervals: don't assert when symbolic expression is to be split into a range
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH v2 nft] parser: tcpopt: fix tcp option parsing with NUM + length field
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH v2 nft] parser: tcpopt: fix tcp option parsing with NUM + length field
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH nft] evaluate: fix double free on dtype release
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH v2 nft] parser: tcpopt: fix tcp option parsing with NUM + length field
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH v2 nft] parser: tcpopt: fix tcp option parsing with NUM + length field
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH nft] evaluate: turn assert into real error check
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nft] parser: tcpopt: fix tcp option parsing with NUM + length field
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH net-next v2] net: ctnetlink: support filtering by zone
- From: Felix Huettner <felix.huettner@mail.schwarz>
[PATCH libnetfilter_conntrack 2/2] flush: support filtering
- From: Felix Huettner <felix.huettner@mail.schwarz>
[PATCH libnetfilter_conntrack 1/2] dump: support filtering by zone
- From: Felix Huettner <felix.huettner@mail.schwarz>
[PATCH libnetfilter_conntrack 0/2] dump/flush support filtering by zone
- From: Felix Huettner <felix.huettner@mail.schwarz>
Re: [PATCH net] net/netfilter: bpf: fix bad registration on nf_defrag
- From: Simon Horman <horms@xxxxxxxxxx>
[PATCH nft] parser: tcpopt: fix tcp option parsing with NUM + length field
- From: Florian Westphal <fw@xxxxxxxxx>
Re: does nft 'tcp option ... exists' work?
- From: Maciej Żenczykowski <zenczykowski@xxxxxxxxx>
[PATCH nft] evaluate: catch implicit map expressions without known datatype
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH nft] evaluate: reject attempt to update a set
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH nft] evaluate: disable meta set with ranges
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH nft] evaluate: error out if basetypes are different
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH nft] evaluate: guard against NULL basetype
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH nft] evaluate: handle invalid mapping expressions gracefully
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH nft] evaluate: turn assert into real error check
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH] ipvs: add a stateless type of service and a stateless Maglev hashing scheduler
- From: Lev Pantiukhin <kndrvt@xxxxxxxxxxxxxx>
Re: [PATCH nf] netfilter: nf_tables: fix 'exist' matching on bigendian arches
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nf] netfilter: nf_tables: validate family when identifying table via handle
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nf] netfilter: nf_tables: validate family when identifying table via handle
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH nf] netfilter: nf_tables: fix 'exist' matching on bigendian arches
- From: Phil Sutter <phil@xxxxxx>
[PATCH nf] netfilter: nf_tables: validate family when identifying table via handle
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nf] netfilter: nf_tables: bail out on mismatching dynset and set expressions
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: does nft 'tcp option ... exists' work?
- From: Florian Westphal <fw@xxxxxxxxx>
Re: does nft 'tcp option ... exists' work?
- From: Maciej Żenczykowski <zenczykowski@xxxxxxxxx>
Re: does nft 'tcp option ... exists' work?
- From: Florian Westphal <fw@xxxxxxxxx>
Re: does nft 'tcp option ... exists' work?
- From: Maciej Żenczykowski <zenczykowski@xxxxxxxxx>
[PATCH nf] netfilter: nf_tables: fix 'exist' matching on bigendian arches
- From: Florian Westphal <fw@xxxxxxxxx>
Re: does nft 'tcp option ... exists' work?
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: does nft 'tcp option ... exists' work?
- From: Florian Westphal <fw@xxxxxxxxx>
Re: does nft 'tcp option ... exists' work?
- From: Florian Westphal <fw@xxxxxxxxx>
Re: does nft 'tcp option ... exists' work?
- From: Maciej Żenczykowski <zenczykowski@xxxxxxxxx>
does nft 'tcp option ... exists' work?
- From: Maciej Żenczykowski <zenczykowski@xxxxxxxxx>
[nft PATCH 2/2] main: Refer to nft_options in nft_options_check()
- From: Phil Sutter <phil@xxxxxx>
[nft PATCH 1/2] main: Reduce indenting in nft_options_check()
- From: Phil Sutter <phil@xxxxxx>
[nft PATCH 0/2] Review nft_options_check()
- From: Phil Sutter <phil@xxxxxx>
Re: [PATCH nft] initial support for the afl++ (american fuzzy lop++) fuzzer
- From: Phil Sutter <phil@xxxxxx>
[PATCH nft] initial support for the afl++ (american fuzzy lop++) fuzzer
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH nf] netfilter: nft_set_pipapo: skip inactive elements during set walk
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH nft] evaluate: prevent assert when evaluating very large shift values
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH nft] evaluate: reject sets with no key
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH net] net/netfilter: bpf: fix bad registration on nf_defrag
- From: Daniel Xu <dxu@xxxxxxxxx>
Re: [PATCH nf-next 7/8] netfilter: nf_tables: add flowtable map for xdp offload
- From: Toke Høiland-Jørgensen <toke@xxxxxxx>
Re: [PATCH nf-next 7/8] netfilter: nf_tables: add flowtable map for xdp offload
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH net] net/netfilter: bpf: fix bad registration on nf_defrag
- From: "D. Wythe" <alibuda@xxxxxxxxxxxxxxxxx>
Re: [PATCH nft 0/2] tests/shell: workaround for bash
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH net] net/netfilter: bpf: avoid leakage of skb
- From: "D. Wythe" <alibuda@xxxxxxxxxxxxxxxxx>
Re: [PATCH net] net/netfilter: bpf: avoid leakage of skb
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH net] net/netfilter: bpf: avoid leakage of skb
- From: "D. Wythe" <alibuda@xxxxxxxxxxxxxxxxx>
Re: [PATCH net] net/netfilter: bpf: avoid leakage of skb
- From: Florian Westphal <fw@xxxxxxxxx>
[iptables PATCH 13/13] ebtables: Use do_parse() from xshared
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH 01/13] xshared: do_parse: Skip option checking for CMD_DELETE_NUM
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH 08/13] ebtables: Change option values to avoid clashes
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH 03/13] xshared: Turn command_default() into a callback
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH 11/13] ebtables: Use struct xt_cmd_parse
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH 05/13] xshared: Support rule range deletion in do_parse()
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH 12/13] xshared: Introduce option_test_and_reject()
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH 04/13] xshared: Introduce print_help callback (again)
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH 06/13] xshared: Support for ebtables' --change-counters command
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH 09/13] ebtables: Pass struct iptables_command_state to print_help()
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH 00/13] ebtables: Use the shared commandline parser
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH 10/13] ebtables: Make 'h' case just a call to print_help()
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH 02/13] xshared: Perform protocol value parsing in callback
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH 07/13] ebtables{,-translate}: Convert if-clause to switch()
- From: Phil Sutter <phil@xxxxxx>
[PATCH net] net/netfilter: bpf: avoid leakage of skb
- From: "D. Wythe" <alibuda@xxxxxxxxxxxxxxxxx>
Re: [iptables PATCH 0/2] libxtables: Fix two xtoptions bugs
- From: Phil Sutter <phil@xxxxxx>
Re: [iptables PATCH] man: Do not escape exclamation marks
- From: Phil Sutter <phil@xxxxxx>
Re: [iptables PATCH 0/3] Review interface parsing and printing
- From: Phil Sutter <phil@xxxxxx>
Re: [iptables PATCH 0/3] xshared: Review option parsing
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH 1/2] libxtables: xtoptions: Fix for garbage access in xtables_options_xfrm()
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH 0/2] libxtables: Fix two xtoptions bugs
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH 2/2] libxtables: xtoptions: Fix for non-CIDR-compatible hostmasks
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH] man: Do not escape exclamation marks
- From: Phil Sutter <phil@xxxxxx>
Re: [PATCH] man: proper roff encoding for ~ and ^
- From: Jan Engelhardt <jengelh@xxxxxxx>
Re: [PATCH] man: proper roff encoding for ~ and ^
- From: Phil Sutter <phil@xxxxxx>
Re: ipset hash:net,iface - can not add more than 64 interfaces
- From: Марк Коренберг <socketpair@xxxxxxxxx>
Re: ipset hash:net,iface - can not add more than 64 interfaces
- From: Jozsef Kadlecsik <kadlec@xxxxxxxxxxxxx>
Re: ipset hash:net,iface - can not add more than 64 interfaces
- From: Jozsef Kadlecsik <kadlec@xxxxxxxxxxxxx>
Re: ipset hash:net,iface - can not add more than 64 interfaces
- From: Марк Коренберг <socketpair@xxxxxxxxx>
Re: ipset hash:net,iface - can not add more than 64 interfaces
- From: Марк Коренберг <socketpair@xxxxxxxxx>
Re: ipset hash:net,iface - can not add more than 64 interfaces
- From: Jozsef Kadlecsik <kadlec@xxxxxxxxxxxxx>
ipset hash:net,iface - can not add more than 64 interfaces
- From: Марк Коренберг <socketpair@xxxxxxxxx>
Re: [PATCH nf-next] netfilter: nf_tables: mark newset as dead on transaction abort
- From: kernel test robot <lkp@xxxxxxxxx>
Re: [PATCH nf-next] netfilter: nf_tables: mark newset as dead on transaction abort
- From: kernel test robot <lkp@xxxxxxxxx>
Re: [PATCH libnetfilter_queue v3 0/1] New example program nfq6
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
[PATCH nft 2/2] tests/shell: workaround lack of $SRANDOM before bash 5.1
- From: Thomas Haller <thaller@xxxxxxxxxx>
[PATCH nft 0/2] tests/shell: workaround for bash
- From: Thomas Haller <thaller@xxxxxxxxxx>
[PATCH nft 1/2] tests/shell: workaround lack of `wait -p` before bash 5.1
- From: Thomas Haller <thaller@xxxxxxxxxx>
Re: [PATCH libnetfilter_queue v3 0/1] New example program nfq6
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH net-next v2] net: ctnetlink: support filtering by zone
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH] net: make config lines follow common pattern
- From: Paolo Abeni <pabeni@xxxxxxxxxx>
[PATCH nf-next] netfilter: nf_tables: mark newset as dead on transaction abort
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH libnetfilter_queue v3 1/1] examples: add an example which uses more functions
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
[PATCH libnetfilter_queue v3 0/1] New example program nfq6
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
[PATCH libnetfilter_queue v3 1/1] examples: add an example which uses more functions
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
[PATCH libnetfilter_queue v3 0/1] New example program nfq6
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
[PATCH libnetfilter_queue v5 1/1] src: Add nfq_nlmsg_put2() - user specifies header flags
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
[PATCH libnetfilter_queue v5 0/1] src: Add nfq_nlmsg_put2() - user specifies header flags
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
[PATCH] man: proper roff encoding for ~ and ^
- From: Jan Engelhardt <jengelh@xxxxxxx>
[PATCH] man: proper roff encoding for ^
- From: Jan Engelhardt <jengelh@xxxxxxx>
Re: [PATCH nf-next 1/8] netfilter: flowtable: move nf_flowtable out of container structures
- From: Simon Horman <horms@xxxxxxxxxx>
Re: [PATCH nf-next 1/8] netfilter: flowtable: move nf_flowtable out of container structures
- From: Simon Horman <horms@xxxxxxxxxx>
[PATCH 5.4 154/159] netfilter: nf_tables: unregister flowtable hooks on netns exit
- From: Greg Kroah-Hartman <gregkh@xxxxxxxxxxxxxxxxxxx>
[PATCH 5.4 145/159] netfilter: nf_tables: fix GC transaction races with netns and netlink event exit path
- From: Greg Kroah-Hartman <gregkh@xxxxxxxxxxxxxxxxxxx>
[PATCH 5.4 153/159] netfilter: nf_tables: fix memleak when more than 255 elements expired
- From: Greg Kroah-Hartman <gregkh@xxxxxxxxxxxxxxxxxxx>
[PATCH 5.4 152/159] netfilter: nft_set_hash: try later when GC hits EAGAIN on iteration
- From: Greg Kroah-Hartman <gregkh@xxxxxxxxxxxxxxxxxxx>
[PATCH 5.4 151/159] netfilter: nft_set_rbtree: use read spinlock to avoid datapath contention
- From: Greg Kroah-Hartman <gregkh@xxxxxxxxxxxxxxxxxxx>
[PATCH 5.4 150/159] netfilter: nft_set_rbtree: skip sync GC for new elements in this transaction
- From: Greg Kroah-Hartman <gregkh@xxxxxxxxxxxxxxxxxxx>
[PATCH 5.4 149/159] netfilter: nf_tables: defer gc run if previous batch is still pending
- From: Greg Kroah-Hartman <gregkh@xxxxxxxxxxxxxxxxxxx>
[PATCH 5.4 148/159] netfilter: nf_tables: use correct lock to protect gc_list
- From: Greg Kroah-Hartman <gregkh@xxxxxxxxxxxxxxxxxxx>
[PATCH 5.4 147/159] netfilter: nf_tables: GC transaction race with abort path
- From: Greg Kroah-Hartman <gregkh@xxxxxxxxxxxxxxxxxxx>
[PATCH 5.4 159/159] netfilter: nf_tables: bogus EBUSY when deleting flowtable after flush (for 5.4)
- From: Greg Kroah-Hartman <gregkh@xxxxxxxxxxxxxxxxxxx>
[PATCH 5.4 158/159] netfilter: nf_tables: disable toggling dormant table state more than once
- From: Greg Kroah-Hartman <gregkh@xxxxxxxxxxxxxxxxxxx>
[PATCH 5.4 157/159] netfilter: nf_tables: fix table flag updates
- From: Greg Kroah-Hartman <gregkh@xxxxxxxxxxxxxxxxxxx>
[PATCH 5.4 156/159] netfilter: nftables: update table flags from the commit phase
- From: Greg Kroah-Hartman <gregkh@xxxxxxxxxxxxxxxxxxx>
[PATCH 5.4 155/159] netfilter: nf_tables: double hook unregistration in netns path
- From: Greg Kroah-Hartman <gregkh@xxxxxxxxxxxxxxxxxxx>
[PATCH 5.4 146/159] netfilter: nf_tables: GC transaction race with netns dismantle
- From: Greg Kroah-Hartman <gregkh@xxxxxxxxxxxxxxxxxxx>
[PATCH 5.4 144/159] netfilter: nf_tables: remove busy mark and gc batch API
- From: Greg Kroah-Hartman <gregkh@xxxxxxxxxxxxxxxxxxx>
[PATCH 5.4 143/159] netfilter: nft_set_hash: mark set element as dead when deleting from packet path
- From: Greg Kroah-Hartman <gregkh@xxxxxxxxxxxxxxxxxxx>
[PATCH 5.4 141/159] netfilter: nf_tables: GC transaction API to avoid race with control plane
- From: Greg Kroah-Hartman <gregkh@xxxxxxxxxxxxxxxxxxx>
[PATCH 5.4 142/159] netfilter: nf_tables: adapt set backend to use GC transaction API
- From: Greg Kroah-Hartman <gregkh@xxxxxxxxxxxxxxxxxxx>
[PATCH 5.4 139/159] netfilter: nft_set_rbtree: fix overlap expiration walk
- From: Greg Kroah-Hartman <gregkh@xxxxxxxxxxxxxxxxxxx>
[PATCH 5.4 140/159] netfilter: nf_tables: dont skip expired elements during walk
- From: Greg Kroah-Hartman <gregkh@xxxxxxxxxxxxxxxxxxx>
[PATCH 5.4 138/159] netfilter: nft_set_rbtree: fix null deref on element insertion
- From: Greg Kroah-Hartman <gregkh@xxxxxxxxxxxxxxxxxxx>
[PATCH 5.4 137/159] netfilter: nft_set_rbtree: Switch to node list walk for overlap detection
- From: Greg Kroah-Hartman <gregkh@xxxxxxxxxxxxxxxxxxx>
[PATCH 5.4 136/159] netfilter: nf_tables: drop map element references from preparation phase
- From: Greg Kroah-Hartman <gregkh@xxxxxxxxxxxxxxxxxxx>
[PATCH 5.4 135/159] netfilter: nftables: rename set element data activation/deactivation functions
- From: Greg Kroah-Hartman <gregkh@xxxxxxxxxxxxxxxxxxx>
[PATCH 5.4 134/159] netfilter: nf_tables: pass context to nft_set_destroy()
- From: Greg Kroah-Hartman <gregkh@xxxxxxxxxxxxxxxxxxx>
[PATCH 5.10 193/193] netfilter: nf_tables: disable toggling dormant table state more than once
- From: Greg Kroah-Hartman <gregkh@xxxxxxxxxxxxxxxxxxx>
[PATCH 5.10 192/193] netfilter: nf_tables: fix table flag updates
- From: Greg Kroah-Hartman <gregkh@xxxxxxxxxxxxxxxxxxx>
[PATCH 5.10 191/193] netfilter: nftables: update table flags from the commit phase
- From: Greg Kroah-Hartman <gregkh@xxxxxxxxxxxxxxxxxxx>
Re: [PATCH -stable,5.4 23/26] netfilter: nftables: update table flags from the commit phase
- From: Greg KH <gregkh@xxxxxxxxxxxxxxxxxxx>
[PATCH nft 2/2] tests/shell: have .json-nft dumps prettified to wrap lines
- From: Thomas Haller <thaller@xxxxxxxxxx>
[PATCH nft 1/2] tests/shell: use generated ruleset for `nft --check`
- From: Thomas Haller <thaller@xxxxxxxxxx>
[PATCH nft 0/2] pretty print .json-nft files
- From: Thomas Haller <thaller@xxxxxxxxxx>
[iptables PATCH 1/3] xshared: Entirely ignore interface masks when saving rules
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH 3/3] nft: Leave interface masks alone when parsing from kernel
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH 2/3] xshared: Do not populate interface masks per default
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH 0/3] Review interface parsing and printing
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH 1/3] xshared: Introduce xt_cmd_parse_ops::option_name
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH 2/3] xshared: Introduce xt_cmd_parse_ops::option_invert
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH 3/3] xshared: Simplify generic_opt_check()
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH 0/3] xshared: Review option parsing
- From: Phil Sutter <phil@xxxxxx>
Re: [PATCH nf-next 7/8] netfilter: nf_tables: add flowtable map for xdp offload
- From: Toke Høiland-Jørgensen <toke@xxxxxxx>
Re: [PATCH nf-next 0/8] netfilter: make nf_flowtable lifetime differ from container struct
- From: Toke Høiland-Jørgensen <toke@xxxxxxx>
Re: [nft PATCH] tests/shell: Treat json-nft dumps as binary in git
- From: Thomas Haller <thaller@xxxxxxxxxx>
Re: [PATCH nf-next 0/8] netfilter: make nf_flowtable lifetime differ from container struct
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH nf-next 0/8] netfilter: make nf_flowtable lifetime differ from container struct
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [nft PATCH] tests/shell: Treat json-nft dumps as binary in git
- From: Phil Sutter <phil@xxxxxx>
Re: [PATCH nf-next 0/8] netfilter: make nf_flowtable lifetime differ from container struct
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH nf-next 0/8] netfilter: make nf_flowtable lifetime differ from container struct
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [nft PATCH] tests/shell: Treat json-nft dumps as binary in git
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [nft PATCH] tests/shell: Treat json-nft dumps as binary in git
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH libnetfilter_queue v4] src: Add nfq_nlmsg_put2() - user specifies header flags
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH libnetfilter_queue v4 1/1] src: Add nfq_nlmsg_put2() - user specifies header flags
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH libnetfilter_queue v4 1/1] src: Add nfq_nlmsg_put2() - user specifies header flags
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
Re: [iptables PATCH 0/6] Extend guided option parser for use by arptables
- From: Phil Sutter <phil@xxxxxx>
Re: [iptables PATCH 00/12] Misc fixes (more or less)
- From: Phil Sutter <phil@xxxxxx>
[nft PATCH] tests/shell: Treat json-nft dumps as binary in git
- From: Phil Sutter <phil@xxxxxx>
Re: [PATCH nf-next 1/8] netfilter: flowtable: move nf_flowtable out of container structures
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH nf-next 1/8] netfilter: flowtable: move nf_flowtable out of container structures
- From: Simon Horman <horms@xxxxxxxxxx>
Re: [PATCH nft 1/1] tests/shell: accept name of dump files in place of test names
- From: Thomas Haller <thaller@xxxxxxxxxx>
[PATCH] net: make config lines follow common pattern
- From: Lukas Bulwahn <lukas.bulwahn@xxxxxxxxx>
[PATCH nft] json: deal appropriately with multidevice in chain
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nft 1/1] tests/shell: accept name of dump files in place of test names
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH -stable,5.4 23/26] netfilter: nftables: update table flags from the commit phase
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
PSA: this list has moved to new vger infra (no action required)
- From: Konstantin Ryabitsev <konstantin@xxxxxxxxxxxxxxxxxxx>
[iptables PATCH 5/6] extensions: libarpt_mangle: Use guided option parser
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH 2/6] libxtables: Fix guided option parser for use with arptables
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH 3/6] libxtables: Introduce xtables_strtoul_base()
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH 1/6] libxtables: Combine the two extension option mergers
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH 6/6] extensions: MARK: arptables: Use guided option parser
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH 4/6] libxtables: Introduce struct xt_option_entry::base
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH 0/6] Extend guided option parser for use by arptables
- From: Phil Sutter <phil@xxxxxx>
Re: [PATCH 6.6.y 0/2] netfilter: fix catchall element double-free
- From: Sasha Levin <sashal@xxxxxxxxxx>
[PATCH nft] evaluate: clone unary expression datatype to deal with dynamic datatype
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nft 1/1] tests: prettify JSON in test output and add helper
- From: Thomas Haller <thaller@xxxxxxxxxx>
[PATCH nft 1/1] tests/shell: accept name of dump files in place of test names
- From: Thomas Haller <thaller@xxxxxxxxxx>
Re: [nft PATCH v2] tests: shell: Fix sets/reset_command_0 for current kernels
- From: Phil Sutter <phil@xxxxxx>
Re: [nft PATCH] tests: shell: Fix sets/reset_command_0 for current kernels
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nft 1/1] tests: prettify JSON in test output and add helper
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH -stable,5.4 23/26] netfilter: nftables: update table flags from the commit phase
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH -stable,5.4 23/26] netfilter: nftables: update table flags from the commit phase
- From: Sasha Levin <sashal@xxxxxxxxxx>
[PATCH AUTOSEL 4.19 2/6] netfilter: ipset: fix race condition between swap/destroy and kernel side add/del/test
- From: Sasha Levin <sashal@xxxxxxxxxx>
[PATCH AUTOSEL 5.4 2/6] netfilter: ipset: fix race condition between swap/destroy and kernel side add/del/test
- From: Sasha Levin <sashal@xxxxxxxxxx>
[PATCH AUTOSEL 5.10 3/7] netfilter: ipset: fix race condition between swap/destroy and kernel side add/del/test
- From: Sasha Levin <sashal@xxxxxxxxxx>
[PATCH AUTOSEL 5.15 3/7] netfilter: ipset: fix race condition between swap/destroy and kernel side add/del/test
- From: Sasha Levin <sashal@xxxxxxxxxx>
[PATCH AUTOSEL 6.1 4/9] netfilter: ipset: fix race condition between swap/destroy and kernel side add/del/test
- From: Sasha Levin <sashal@xxxxxxxxxx>
[PATCH AUTOSEL 6.5 05/15] netfilter: ipset: fix race condition between swap/destroy and kernel side add/del/test
- From: Sasha Levin <sashal@xxxxxxxxxx>
[PATCH AUTOSEL 6.6 06/17] netfilter: ipset: fix race condition between swap/destroy and kernel side add/del/test
- From: Sasha Levin <sashal@xxxxxxxxxx>
Re: [PATCH v6 05/13] x86/bugs: Rename RETPOLINE to MITIGATION_RETPOLINE
- From: Ariel Miculas <amiculas@xxxxxxxxx>
Re: [nft PATCH] tests: shell: Fix sets/reset_command_0 for current kernels
- From: Phil Sutter <phil@xxxxxx>
Re: [PATCH nft 1/1] tests: prettify JSON in test output and add helper
- From: Thomas Haller <thaller@xxxxxxxxxx>
[iptables PATCH 12/12] ebtables: Implement --change-counters command
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH 11/12] xshared: do_parse: Ignore '-j CONTINUE'
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH 02/12] nft-bridge: nft_bridge_add() uses wrong flags
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH 04/12] xshared: All variants support -v
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH 03/12] xshared: struct xt_cmd_parse::xlate is unused
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH 01/12] Makefile: Install arptables-translate link and man page
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH 05/12] xshared: Drop needless assignment in --help case
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH 07/12] tests: xlate: Print failing command line
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH 08/12] ebtables: Drop append_entry() wrapper
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH 09/12] ebtables: Make ebt_load_match_extensions() static
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH 00/12] Misc fixes (more or less)
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH 06/12] xshared: Drop pointless CMD_REPLACE check
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH 10/12] ebtables: Align line number formatting with legacy
- From: Phil Sutter <phil@xxxxxx>
Re: [PATCH nft 1/1] tests: prettify JSON in test output and add helper
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nft v3 1/1] tests/shell: sanitize "handle" in JSON output
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nft v3 1/1] tests/shell: sanitize "handle" in JSON output
- From: Thomas Haller <thaller@xxxxxxxxxx>
Re: [nft PATCH] tests: shell: Fix sets/reset_command_0 for current kernels
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nft v3 1/1] tests/shell: sanitize "handle" in JSON output
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft 1/1] tests: prettify JSON in test output and add helper
- From: Thomas Haller <thaller@xxxxxxxxxx>
Re: [PATCH nft v3 1/1] tests/shell: sanitize "handle" in JSON output
- From: Thomas Haller <thaller@xxxxxxxxxx>
Re: [PATCH nft v3 1/1] tests/shell: sanitize "handle" in JSON output
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft 6/8] tests: shell: split nat inet tests
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft 7/8] tests: shell: skip secmark tests if kernel does not support it
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft 8/8] tests: shell: skip if kernel does not allow to restore set element expiration
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft 5/8] tests: shell: skip nat inet if kernel does not support it
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft 3/8] tests: shell: detach synproxy test
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft 4/8] tests: shell: skip synproxy test if kernel does not support it
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft 2/8] tests: shell: skip stateful object updates if unsupported
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft 1/8] tests: shell: connlimit tests requires set expression support
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft] evaluate: bogus error when adding devices to flowtable
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH 6.6.y 0/2] netfilter: fix catchall element double-free
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH v6 05/13] x86/bugs: Rename RETPOLINE to MITIGATION_RETPOLINE
- From: Breno Leitao <leitao@xxxxxxxxxx>
[PATCH nft] tests: shell: flush connlimit sets
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nft 1/1] tests/shell: sanitize "handle" in JSON output
- From: Phil Sutter <phil@xxxxxx>
Re: [PATCH nft 1/1] tests/shell: sanitize "handle" in JSON output
- From: Thomas Haller <thaller@xxxxxxxxxx>
Re: [PATCH nf-next 7/8] netfilter: nf_tables: add flowtable map for xdp offload
- From: Lorenzo Bianconi <lorenzo@xxxxxxxxxx>
Re: [PATCH nft 1/1] tests/shell: sanitize "handle" in JSON output
- From: Phil Sutter <phil@xxxxxx>
Re: [PATCH nft 1/1] tests/shell: sanitize "handle" in JSON output
- From: Thomas Haller <thaller@xxxxxxxxxx>
Re: [PATCH nft 1/1] tests/shell: sanitize "handle" in JSON output
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nft 1/1] tests/shell: sanitize "handle" in JSON output
- From: Phil Sutter <phil@xxxxxx>
Re: [PATCH nft v2 0/5] add infrastructure for unit tests
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nft v2 0/5] add infrastructure for unit tests
- From: Thomas Haller <thaller@xxxxxxxxxx>
[PATCH nf-next 8/8] netfilter: nf_tables: permit duplicate flowtable mappings
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH nf-next 7/8] netfilter: nf_tables: add flowtable map for xdp offload
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH nf-next 6/8] netfilter: nf_tables: add xdp offload flag
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH nf-next 5/8] netfilter: nf_tables: reject flowtable hw offload for same device
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH nf-next 4/8] netfilter: nf_flowtable: delay flowtable release a second time
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH nf-next 3/8] netfilter: nf_flowtable: make free a real free function
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH nf-next 1/8] netfilter: flowtable: move nf_flowtable out of container structures
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH nf-next 0/8] netfilter: make nf_flowtable lifetime differ from container struct
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH nf-next 2/8] netfilter: nf_flowtable: replace init callback with a create one
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH 6.6.y 2/2] netfilter: nf_tables: split async and sync catchall in two functions
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH 6.6.y 1/2] netfilter: nf_tables: remove catchall element in GC sync path
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH 6.6.y 0/2] netfilter: fix catchall element double-free
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH -stable,5.4 26/26] netfilter: nf_tables: bogus EBUSY when deleting flowtable after flush (for 5.4)
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH -stable,5.4 07/26] netfilter: nf_tables: don't skip expired elements during walk
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH -stable,5.4 09/26] netfilter: nf_tables: adapt set backend to use GC transaction API
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH -stable,5.4 13/26] netfilter: nf_tables: GC transaction race with netns dismantle
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH -stable,5.4 19/26] netfilter: nft_set_hash: try later when GC hits EAGAIN on iteration
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH -stable,5.4 00/26] Netfilter stable fixes for 5.4
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH -stable,5.4 20/26] netfilter: nf_tables: fix memleak when more than 255 elements expired
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH -stable,5.4 21/26] netfilter: nf_tables: unregister flowtable hooks on netns exit
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH -stable,5.4 04/26] netfilter: nft_set_rbtree: Switch to node list walk for overlap detection
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH -stable,5.4 06/26] netfilter: nft_set_rbtree: fix overlap expiration walk
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH -stable,5.4 08/26] netfilter: nf_tables: GC transaction API to avoid race with control plane
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH -stable,5.4 17/26] netfilter: nft_set_rbtree: skip sync GC for new elements in this transaction
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH -stable,5.4 22/26] netfilter: nf_tables: double hook unregistration in netns path
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH -stable,5.4 24/26] netfilter: nf_tables: fix table flag updates
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH -stable,5.4 18/26] netfilter: nft_set_rbtree: use read spinlock to avoid datapath contention
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH -stable,5.4 12/26] netfilter: nf_tables: fix GC transaction races with netns and netlink event exit path
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH -stable,5.4 14/26] netfilter: nf_tables: GC transaction race with abort path
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH -stable,5.4 16/26] netfilter: nf_tables: defer gc run if previous batch is still pending
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH -stable,5.4 02/26] netfilter: nftables: rename set element data activation/deactivation functions
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH -stable,5.4 15/26] netfilter: nf_tables: use correct lock to protect gc_list
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH -stable,5.4 25/26] netfilter: nf_tables: disable toggling dormant table state more than once
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH -stable,5.4 10/26] netfilter: nft_set_hash: mark set element as dead when deleting from packet path
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH -stable,5.4 05/26] netfilter: nft_set_rbtree: fix null deref on element insertion
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH -stable,5.4 03/26] netfilter: nf_tables: drop map element references from preparation phase
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH -stable,5.4 11/26] netfilter: nf_tables: remove busy mark and gc batch API
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH -stable,5.4 23/26] netfilter: nftables: update table flags from the commit phase
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH -stable,5.4 01/26] netfilter: nf_tables: pass context to nft_set_destroy()
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nft 1/1] tests/shell: sanitize "handle" in JSON output
- From: Thomas Haller <thaller@xxxxxxxxxx>
[PATCH nft v2 1/1] tests/shell: sanitize "handle" in JSON output
- From: Thomas Haller <thaller@xxxxxxxxxx>
[PATCH nft] tests: shell: quote reference to array to iterate over empty string
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH libnetfilter_queue v3 1/1] src: Add nfq_nlmsg_put2() - user specifies header flags
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
[PATCH nf-next] netfilter: flowtable: reorder nf_flowtable struct members
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH nf-next] netfilter: nft_set_pipapo: prefer gfp_kernel allocation
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH nft] tests: shell: adjust add-after-delete flowtable for older kernels
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft] tests: shell: skip meta time test meta expression lacks support
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH nft] tests: shell: skip maps delete test if dynset lacks delete op
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH nft] tests: shell: skip ct expectation test if feature is missing
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH libnetfilter_queue v4] src: Add nfq_nlmsg_put2() - user specifies header flags
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
[PATCH libnetfilter_queue 0/1] libnfnetlink dependency elimination
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
[PATCH nft] evaluate: fix rule replacement with anon sets
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH libnetfilter_queue v3 1/1] src: Add nfq_nlmsg_put2() - user specifies header flags
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH libnetfilter_queue v3 1/1] src: Add nfq_nlmsg_put2() - user specifies header flags
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
Re: [PATCH nft 1/1] tests/shell: sanitize "handle" in JSON output
- From: Phil Sutter <phil@xxxxxx>
[PATCH libnetfilter_queue 1/1] Convert nfq_create_queue(), nfq_bind_pf() & nfq_unbind_pf() to use libmnl
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
[PATCH libnetfilter_queue 0/1] libnfnetlink dependency elimination
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
Re: [PATCH nft v3 2/6] tests/shell: check and generate JSON dump files
- From: Phil Sutter <phil@xxxxxx>
Re: [PATCH nft v3 2/6] tests/shell: check and generate JSON dump files
- From: Thomas Haller <thaller@xxxxxxxxxx>
[PATCH nft 1/1] tests/shell: sanitize "handle" in JSON output
- From: Thomas Haller <thaller@xxxxxxxxxx>
Re: [PATCH nft v3 2/6] tests/shell: check and generate JSON dump files
- From: Phil Sutter <phil@xxxxxx>
Re: [PATCH nft v3 2/6] tests/shell: check and generate JSON dump files
- From: Thomas Haller <thaller@xxxxxxxxxx>
Re: [PATCH nft v3 2/6] tests/shell: check and generate JSON dump files
- From: Phil Sutter <phil@xxxxxx>
Re: [PATCH nft v3 2/6] tests/shell: check and generate JSON dump files
- From: Thomas Haller <thaller@xxxxxxxxxx>
Re: [PATCH nft v3 2/6] tests/shell: check and generate JSON dump files
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nft v3 2/6] tests/shell: check and generate JSON dump files
- From: Thomas Haller <thaller@xxxxxxxxxx>
[PATCH net-next] net: ctnetlink: support filtering by zone
- From: Felix Huettner <felix.huettner@mail.schwarz>
[ANNOUNCE] Coreteam updates: Eric Leblond and Arturo Borrero enter emeritus status
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nft v3 2/6] tests/shell: check and generate JSON dump files
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nft v3 2/6] tests/shell: check and generate JSON dump files
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH nft v3 2/6] tests/shell: check and generate JSON dump files
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH nft v3 2/6] tests/shell: check and generate JSON dump files
- From: Thomas Haller <thaller@xxxxxxxxxx>
Re: [PATCH nft v3 2/6] tests/shell: check and generate JSON dump files
- From: Thomas Haller <thaller@xxxxxxxxxx>
Re: [PATCH nft v3 2/6] tests/shell: check and generate JSON dump files
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH net 1/6] netfilter: nft_set_rbtree: Remove unused variable nft_net
- From: patchwork-bot+netdevbpf@xxxxxxxxxx
[PATCH net 5/6] netfilter: ipset: fix race condition between swap/destroy and kernel side add/del/test
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH net 3/6] netfilter: nf_tables: fix pointer math issue in nft_byteorder_eval()
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH net 6/6] netfilter: nf_tables: split async and sync catchall in two functions
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH net 1/6] netfilter: nft_set_rbtree: Remove unused variable nft_net
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH net 2/6] netfilter: nf_conntrack_bridge: initialize err to 0
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH net 4/6] netfilter: nf_tables: bogus ENOENT when destroying element which does not exist
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH net 0/6] Netfilter fixes for net
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nft v3 2/6] tests/shell: check and generate JSON dump files
- From: Thomas Haller <thaller@xxxxxxxxxx>
Re: [PATCH nft v3 2/6] tests/shell: check and generate JSON dump files
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nft v3 2/6] tests/shell: check and generate JSON dump files
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH libnetfilter_queue v3 1/1] src: Add nfq_nlmsg_put2() - user specifies header flags
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
Re: libnfnetlink dependency elimination (doc)
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: libnfnetlink dependency elimination (doc)
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
Re: [PATCH libnetfilter_queue v3 1/1] src: Add nfq_nlmsg_put2() - user specifies header flags
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH libnetfilter_queue v3 1/1] src: Add nfq_nlmsg_put2() - user specifies header flags
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
Re: [PATCH libnetfilter_queue v2 1/1] src: Add nfq_nlmsg_put2() - user specifies header flags
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH libnetfilter_queue v2 1/1] src: Add nfq_nlmsg_put2() - user specifies header flags
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
Re: [PATCH nft v3 2/6] tests/shell: check and generate JSON dump files
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nft v3 2/6] tests/shell: check and generate JSON dump files
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nft 3/4] tests: shell: skip pipapo set backend in transactions/30s-stress
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft 5/4] tests: shell: skip sets/sets_with_ifnames if no pipapo backend is available
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nft v3 2/6] tests/shell: check and generate JSON dump files
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH nft v3 2/6] tests/shell: check and generate JSON dump files
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nft 3/4] tests: shell: skip pipapo set backend in transactions/30s-stress
- From: Thomas Haller <thaller@xxxxxxxxxx>
Re: [PATCH libnetfilter_queue v2 1/1] src: Add nfq_nlmsg_put2() - user specifies header flags
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nft v3 2/6] tests/shell: check and generate JSON dump files
- From: Thomas Haller <thaller@xxxxxxxxxx>
Re: [PATCH nft v3 2/6] tests/shell: check and generate JSON dump files
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH libnetfilter_queue v2 1/1] src: Add nfq_nlmsg_put2() - user specifies header flags
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
Re: [PATCH nft v3 2/6] tests/shell: check and generate JSON dump files
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nft v3 2/6] tests/shell: check and generate JSON dump files
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH nft v3 1/6] json: fix use after free in table_flags_json()
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nft v3 2/6] tests/shell: check and generate JSON dump files
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft 3/4] tests: shell: skip pipapo set backend in transactions/30s-stress
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft 4/4] tests: shell: restore pipapo and chain binding coverage in standalone 30s-stress
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft 2/4] tests: shell: skip if kernel does not support flowtable with no devices
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft 1/4] tests: shell: skip if kernel does not support flowtable counter
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft 0/4] more tests/shell updates to run on 5.4 kernels
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nft 2/3] parser: remove "const" from argument of input_descriptor_destroy()
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH nft 3/3] parser: use size_t type for strlen() results
- From: Florian Westphal <fw@xxxxxxxxx>
Re: libnfnetlink dependency elimination (doc)
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nft 1/2] utils: add memory_allocation_check() helper
- From: Thomas Haller <thaller@xxxxxxxxxx>
Re: [PATCH nft 1/2] utils: add memory_allocation_check() helper
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH nft v3 2/6] tests/shell: check and generate JSON dump files
- From: Florian Westphal <fw@xxxxxxxxx>
Re: iptables manpage updates
- From: Florian Westphal <fw@xxxxxxxxx>
Re: ebtables documentation updates
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH libnetfilter_queue] utils: Add example of setting socket buffer size
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
Re: libnfnetlink dependency elimination (doc)
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
*** Scrub that last message
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
Re: libnfnetlink dependency elimination (doc)
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
Re: [syzbot] [batman?] INFO: rcu detected stall in worker_thread (9)
- From: syzbot <syzbot+225bfad78b079744fd5e@xxxxxxxxxxxxxxxxxxxxxxxxx>
[PATCH nft v3 5/6] tools: check more strictly for bash shebang in "check-tree.sh"
- From: Thomas Haller <thaller@xxxxxxxxxx>
[PATCH nft v3 2/6] tests/shell: check and generate JSON dump files
- From: Thomas Haller <thaller@xxxxxxxxxx>
[PATCH nft v3 4/6] tools: simplify error handling in "check-tree.sh" by adding msg_err()/msg_warn()
- From: Thomas Haller <thaller@xxxxxxxxxx>
[PATCH nft v3 6/6] tools: check for consistency of .json-nft dumps in "check-tree.sh"
- From: Thomas Haller <thaller@xxxxxxxxxx>
[RFC nf-next] netfilter: nf_tables: reject flowtable hw offload for same device
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH nft v3 0/6] add and check dump files for JSON in tests/shell
- From: Thomas Haller <thaller@xxxxxxxxxx>
[PATCH nft v3 1/6] json: fix use after free in table_flags_json()
- From: Thomas Haller <thaller@xxxxxxxxxx>
Re: [PATCH libnetfilter_queue 1/1] src: Add nfq_nlmsg_put2() - header flags include NLM_F_ACK
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: libnfnetlink dependency elimination
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH libnetfilter_queue] utils: Add example of setting socket buffer size
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH libmnl v2] nlmsg: fix false positives when validating buffer sizes
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft,v2] src: expand create commands
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH 1/1] netfilter: ipset: fix race condition between swap/destroy and kernel side add/del/test, v3
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH nf] netfilter: nf_tables: split async and sync catchall in two functions
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH libnetfilter_queue 1/1] Convert nfq_open(), nfq_bind_pf() & nfq_unbind_pf() to use libmnl
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
[PATCH libnetfilter_queue 0/1] libnfnetlink dependency elimination
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
[PATCH 0/1] ipset patch to fix race condition between swap/destroy and add/del/test, v3
- From: Jozsef Kadlecsik <kadlec@xxxxxxxxxxxxx>
[PATCH 1/1] netfilter: ipset: fix race condition between swap/destroy and kernel side add/del/test, v3
- From: Jozsef Kadlecsik <kadlec@xxxxxxxxxxxxx>
[PATCH 1/1] netfilter: ipset: fix race condition between swap/destroy and kernel side add/del/test, v2
- From: Jozsef Kadlecsik <kadlec@xxxxxxxxxxxxx>
[PATCH 0/1] ipset patch to fix race condition between swap/destroy and add/del/test, v3
- From: Jozsef Kadlecsik <kadlec@xxxxxxxxxxxxx>
[PATCH nf] netfilter: nf_tables: bogus ENOENT when destroying element which does not exist
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft] src: expand create commands
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft,v2 11/11] tests: shell: split merge nat optimization in two tests
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft,v2 09/11] tests: shell: split map test
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft,v2 08/11] tests: shell: split set NAT interval test
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft,v2 10/11] tests: shell: split single element in anonymous set
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft,v2 07/11] tests: shell: skip if kernel does not support bitshift
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft,v2 05/11] tests: shell: skip comment tests if kernel lacks support
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft,v2 04/11] tests: shell: skip NAT netmap tests if kernel lacks support
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft,v2 02/11] tests: shell: skip prerouting reject tests if kernel lacks support
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft,v2 03/11] tests: shell: skip stateful expression in sets tests if kernel lacks support
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft,v2 06/11] tests: shell: skip multidevice chain tests if kernel lacks support
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft,v2 01/11] tests: shell: skip pipapo tests if kernel lacks support
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH 5/7] man: perform backslash-encoding
- From: Jan Engelhardt <jengelh@xxxxxxx>
[PATCH 6/7] man: fix one spello
- From: Jan Engelhardt <jengelh@xxxxxxx>
[PATCH 7/7] ebtables: better error message when -j is missing
- From: Jan Engelhardt <jengelh@xxxxxxx>
[PATCH 4/7] man: display number ranges with an en dash
- From: Jan Engelhardt <jengelh@xxxxxxx>
[PATCH 3/7] man: layout and colorize synopsis similar to iptables
- From: Jan Engelhardt <jengelh@xxxxxxx>
[PATCH 2/7] man: consistent use of \(em in Name sections
- From: Jan Engelhardt <jengelh@xxxxxxx>
[PATCH 1/7] man: make TH word match Name line
- From: Jan Engelhardt <jengelh@xxxxxxx>
ebtables documentation updates
- From: Jan Engelhardt <jengelh@xxxxxxx>
[PATCH 7/7] man: more backslash-encoding of characters
- From: Jan Engelhardt <jengelh@xxxxxxx>
[PATCH 6/7] man: limit targets for -P option synopsis
- From: Jan Engelhardt <jengelh@xxxxxxx>
[PATCH 5/7] man: copy synopsis markup from iptables.8 to arptables-nft.8
- From: Jan Engelhardt <jengelh@xxxxxxx>
[PATCH 3/7] man: repeal manual hyphenation
- From: Jan Engelhardt <jengelh@xxxxxxx>
[PATCH 2/7] man: remove lone .nh command
- From: Jan Engelhardt <jengelh@xxxxxxx>
iptables manpage updates
- From: Jan Engelhardt <jengelh@xxxxxxx>
[PATCH 1/7] man: consistent use of \(em in Name sections
- From: Jan Engelhardt <jengelh@xxxxxxx>
[PATCH 4/7] man: stop putting non-terminals in italic
- From: Jan Engelhardt <jengelh@xxxxxxx>
[PATCH libnetfilter_queue 1/1] Remove libnfnetlink from the build
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
[PATCH libnetfilter_queue 0/1] libnfnetlink dependency elimination
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
[PATCH libnetfilter_queue 1/1] src: Add nfq_nlmsg_put2() - header flags include NLM_F_ACK
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
[PATCH libnetfilter_queue 0/1] libnfnetlink dependency elimination
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
[PATCH libnetfilter_queue 1/1] doc: First update for libnfnetlink-based API over libmnl
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
libnfnetlink dependency elimination
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
[PATCH libnetfilter_queue] utils: Add example of setting socket buffer size
- From: Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx>
Re: [PATCH nft 1/3] parser: don't mark "string" as const
- From: Thomas Haller <thaller@xxxxxxxxxx>
Re: [PATCH nft 00/12] update tests/shell for 5.4 kernels
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH nft 04/12] tests: shell: skip stateful expression in sets tests if kernel lacks support
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH nft 03/12] tests: shell: skip prerouting reject tests if kernel lacks support
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH nft 01/12] tests: shell: export DIFF to use it from feature scripts
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH nft 02/12] tests: shell: skip pipapo tests if kernel lacks support
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH nft 01/12] tests: shell: export DIFF to use it from feature scripts
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH nft 1/3] parser: don't mark "string" as const
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH nft 01/12] tests: shell: export DIFF to use it from feature scripts
- From: Thomas Haller <thaller@xxxxxxxxxx>
Re: [PATCH nft 1/3] parser: don't mark "string" as const
- From: Thomas Haller <thaller@xxxxxxxxxx>
Re: [PATCH nft v2 0/4] [RESENT] remove xfree() and add free_const()+nft_gmp_free()
- From: Thomas Haller <thaller@xxxxxxxxxx>
Re: [PATCH nft 1/3] parser: don't mark "string" as const
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nft v2 0/4] [RESENT] remove xfree() and add free_const()+nft_gmp_free()
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nft 01/12] tests: shell: export DIFF to use it from feature scripts
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nft 2/2] netlink: add and use _nftnl_udata_buf_alloc() helper
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft 2/3] parser: remove "const" from argument of input_descriptor_destroy()
- From: Thomas Haller <thaller@xxxxxxxxxx>
[PATCH nft 1/3] parser: don't mark "string" as const
- From: Thomas Haller <thaller@xxxxxxxxxx>
[PATCH nft 3/3] parser: use size_t type for strlen() results
- From: Thomas Haller <thaller@xxxxxxxxxx>
Re: [PATCH nft 01/12] tests: shell: export DIFF to use it from feature scripts
- From: Thomas Haller <thaller@xxxxxxxxxx>
Re: [PATCH nft v2 0/4] [RESENT] remove xfree() and add free_const()+nft_gmp_free()
- From: Thomas Haller <thaller@xxxxxxxxxx>
Re: [PATCH nft 1/2] utils: add memory_allocation_check() helper
- From: Thomas Haller <thaller@xxxxxxxxxx>
Re: [PATCH nft 2/2] netlink: add and use _nftnl_udata_buf_alloc() helper
- From: Thomas Haller <thaller@xxxxxxxxxx>
[PATCH nft 07/12] tests: shell: skip multidevice chain tests if kernel lacks support
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft 11/12] tests: shell: split single element in anonymous set
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft 10/12] tests: shell: split map test
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft 09/12] tests: shell: split set NAT interval test
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft 05/12] tests: shell: skip NAT netmap tests if kernel lacks support
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft 12/12] tests: shell: split merge nat optimization in two tests
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft 04/12] tests: shell: skip stateful expression in sets tests if kernel lacks support
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft 08/12] tests: shell: skip if kernel does not support bitshift
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft 06/12] tests: shell: skip comment tests if kernel lacks support
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft 01/12] tests: shell: export DIFF to use it from feature scripts
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft 00/12] update tests/shell for 5.4 kernels
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft 03/12] tests: shell: skip prerouting reject tests if kernel lacks support
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft 02/12] tests: shell: skip pipapo tests if kernel lacks support
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nft] netlink: fix buffer size for user data in netlink_delinearize_chain()
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nft v2 0/4] [RESENT] remove xfree() and add free_const()+nft_gmp_free()
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nft 2/2] netlink: add and use _nftnl_udata_buf_alloc() helper
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nft 1/2] utils: add memory_allocation_check() helper
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nft 2/2] netlink: add and use _nftnl_udata_buf_alloc() helper
- From: Thomas Haller <thaller@xxxxxxxxxx>
Re: [PATCH nft 2/2] netlink: add and use _nftnl_udata_buf_alloc() helper
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [nf-next PATCH v3] netfilter: nf_tables: Add locking for NFT_MSG_GETSETELEM_RESET requests
- From: Phil Sutter <phil@xxxxxx>
[nf-next PATCH v4 3/3] netfilter: nf_tables: Add locking for NFT_MSG_GETSETELEM_RESET requests
- From: Phil Sutter <phil@xxxxxx>
[nf-next PATCH v4 0/3] Add locking for NFT_MSG_GETSETELEM_RESET
- From: Phil Sutter <phil@xxxxxx>
[nf-next PATCH v4 2/3] netfilter: nf_tables: Introduce nft_set_dump_ctx_init()
- From: Phil Sutter <phil@xxxxxx>
[nf-next PATCH v4 1/3] netfilter: nf_tables: Pass const set to nft_get_set_elem
- From: Phil Sutter <phil@xxxxxx>
Re: [iptables PATCH 1/3] arptables: Fix formatting of numeric --h-type output
- From: Phil Sutter <phil@xxxxxx>
Re: [PATCH RFC] netfilter: nf_tables: add flowtable map for xdp offload
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH net 1/5] netfilter: add missing module descriptions
- From: patchwork-bot+netdevbpf@xxxxxxxxxx
[PATCH nft 1/2] utils: add memory_allocation_check() helper
- From: Thomas Haller <thaller@xxxxxxxxxx>
[PATCH nft 2/2] netlink: add and use _nftnl_udata_buf_alloc() helper
- From: Thomas Haller <thaller@xxxxxxxxxx>
[PATCH nft] netlink: fix buffer size for user data in netlink_delinearize_chain()
- From: Thomas Haller <thaller@xxxxxxxxxx>
[PATCH net 5/5] netfilter: nat: fix ipv6 nat redirect with mapped and scoped addresses
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH net 3/5] ipvs: add missing module descriptions
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH net 4/5] netfilter: xt_recent: fix (increase) ipv6 literal buffer length
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH net 1/5] netfilter: add missing module descriptions
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH net 0/5] Netfilter fixes for net
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH net 2/5] netfilter: nf_tables: remove catchall element in GC sync path
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nf] netfilter: nat: fix ipv6 nat redirect with mapped and scoped addresses
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH 1/1] netfilter: ipset: fix race condition between swap/destroy and kernel side add/del/test, v2
- From: Jozsef Kadlecsik <kadlec@xxxxxxxxxxxxx>
Re: [iptables PATCH 1/3] arptables: Fix formatting of numeric --h-type output
- From: Florian Westphal <fw@xxxxxxxxx>
[iptables PATCH 1/3] arptables: Fix formatting of numeric --h-type output
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH 2/3] arptables: Fix --proto-type mask formatting
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH 3/3] extensions: libarpt_standard.t: Add a rule with builtin option masks
- From: Phil Sutter <phil@xxxxxx>
Re: [PATCH v2 iptables 0/4] xtables-nft: add arptranslate support
- From: Phil Sutter <phil@xxxxxx>
Re: [iptables PATCH] ebtables: Fix corner-case noflush restore bug
- From: Phil Sutter <phil@xxxxxx>
[iptables PATCH] ebtables: Fix corner-case noflush restore bug
- From: Phil Sutter <phil@xxxxxx>
Re: [PATCH net v2] netfilter: xt_recent: fix (increase) ipv6 literal buffer length
- From: Simon Horman <horms@xxxxxxxxxx>
Re: [PATCH nf] ipvs: add missing module descriptions
- From: Julian Anastasov <ja@xxxxxx>
Re: [PATCH nft v2 0/6] add and check dump files for JSON in tests/shell
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH v2 iptables 4/4] extensions: MARK: fix arptables support
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH v2 iptables 3/4] arptables-txlate: add test cases
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH v2 iptables 0/4] xtables-nft: add arptranslate support
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH v2 iptables 2/4] nft-arp: add arptables-translate
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH v2 iptables 1/4] nft-arp: add missing mask support
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [nft PATCH] tests: shell: Fix sets/reset_command_0 for current kernels
- From: Phil Sutter <phil@xxxxxx>
[PATCH nf] ipvs: add missing module descriptions
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH nft v2 3/6] tests/shell: add JSON dump files
- From: Thomas Haller <thaller@xxxxxxxxxx>
Re: [PATCH nft v2 3/6] tests/shell: add JSON dump files
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nft v2 3/6] tests/shell: add JSON dump files
- From: Thomas Haller <thaller@xxxxxxxxxx>
Re: [PATCH nft v2 0/4] [RESENT] remove xfree() and add free_const()+nft_gmp_free()
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft,v2 2/2] evaluate: place byteorder conversion before rshift in payload expressions
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft,v2 1/2] evaluate: reset statement length context only for set mappings
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nf,v4] netfilter: nf_tables: remove catchall element in GC sync path
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nf,v3] netfilter: nf_tables: remove catchall element in GC sync path
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nf,v3] netfilter: nf_tables: remove catchall element in GC sync path
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nf,v2] netfilter: nf_tables: remove catchall element in GC sync path
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nf] netfilter: nf_tables: remove catchall element in GC sync path
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft] evaluate: place byteorder conversion before rshift in payload expressions
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH net] net: xt_recent: fix (increase) ipv6 literal buffer length
- From: Maciej Żenczykowski <maze@xxxxxxxxxx>
[PATCH net v2] netfilter: xt_recent: fix (increase) ipv6 literal buffer length
- From: "Maciej Żenczykowski" <maze@xxxxxxxxxx>
Re: [nft PATCH] tests: shell: Fix sets/reset_command_0 for current kernels
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft] evaluate: reset statement length context only for set mappings
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nft v3 1/2] json: drop handling missing json() hook in expr_print_json()
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft v2 5/5] tests/unit: add unit tests for libnftables
- From: Thomas Haller <thaller@xxxxxxxxxx>
[PATCH nft v2 1/5] build: add basic "check-{local,more,all}" and "build-all" make targets
- From: Thomas Haller <thaller@xxxxxxxxxx>
[PATCH nft v2 0/5] add infrastructure for unit tests
- From: Thomas Haller <thaller@xxxxxxxxxx>
[PATCH nft v2 2/5] build: add `make check-build` to run `./tests/build/run-tests.sh`
- From: Thomas Haller <thaller@xxxxxxxxxx>
[PATCH nft v2 3/5] build: add `make check-tree` to check consistency of source tree
- From: Thomas Haller <thaller@xxxxxxxxxx>
[PATCH nft v2 4/5] build: cleanup if-blocks for conditional compilation in "Makefile.am"
- From: Thomas Haller <thaller@xxxxxxxxxx>
Re: [PATCH nft v3 1/2] json: drop handling missing json() hook in expr_print_json()
- From: Phil Sutter <phil@xxxxxx>
Re: [PATCH net] net: xt_recent: fix (increase) ipv6 literal buffer length
- From: Jan Engelhardt <jengelh@xxxxxxx>
[PATCH libmnl v2] nlmsg: fix false positives when validating buffer sizes
- From: Jeremy Sowden <jeremy@xxxxxxxxxx>
[PATCH net] net: xt_recent: fix (increase) ipv6 literal buffer length
- From: "Maciej Żenczykowski" <maze@xxxxxxxxxx>
Re: [PATCH net-next] netfilter: nf_tables: Remove unused variable nft_net
- From: Simon Horman <horms@xxxxxxxxxx>
Re: [PATCH 1/1] netfilter: ipset: fix race condition between swap/destroy and kernel side add/del/test, v2
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH] netfilter: nat: add MODULE_DESCRIPTION
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH nf] netfilter: add missing module descriptions
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH 1/1] netfilter: ipset: fix race condition between swap/destroy and kernel side add/del/test, v2
- From: Jozsef Kadlecsik <kadlec@xxxxxxxxxxxxx>
[PATCH 0/1] ipset patch to fix race condition between swap/destroy and add/del/test, v2
- From: Jozsef Kadlecsik <kadlec@xxxxxxxxxxxxx>
Re: [PATCH nft v3 2/2] json: drop warning on stderr for missing json() hook in stmt_print_json()
- From: Thomas Haller <thaller@xxxxxxxxxx>
Re: [PATCH nft v3 1/2] json: drop handling missing json() hook in expr_print_json()
- From: Thomas Haller <thaller@xxxxxxxxxx>
[PATCH] netfilter: nat: add MODULE_DESCRIPTION
- From: Randy Dunlap <rdunlap@xxxxxxxxxxxxx>
Re: [PATCH nft v3 2/2] json: drop warning on stderr for missing json() hook in stmt_print_json()
- From: Phil Sutter <phil@xxxxxx>
Re: [PATCH nft v3 1/2] json: drop handling missing json() hook in expr_print_json()
- From: Phil Sutter <phil@xxxxxx>
Re: [PATCH iptables 2/4] nft-arp: add missing mask support
- From: Phil Sutter <phil@xxxxxx>
Re: [PATCH iptables 3/4] nft-arp: add arptables-translate
- From: Phil Sutter <phil@xxxxxx>
Re: [PATCH iptables 2/4] nft-arp: add missing mask support
- From: Phil Sutter <phil@xxxxxx>
Re: [PATCH iptables] arptables-nft: remove ARPT_INV flags usage
- From: Phil Sutter <phil@xxxxxx>
Re: [GIT PULL] Landlock updates for v6.7
- From: pr-tracker-bot@xxxxxxxxxx
[PATCH nft v2 0/6] add and check dump files for JSON in tests/shell
- From: Thomas Haller <thaller@xxxxxxxxxx>
[PATCH nft v2 6/6] tools: check for consistency of .json-nft dumps in "check-tree.sh"
- From: Thomas Haller <thaller@xxxxxxxxxx>
[PATCH nft v2 1/6] json: fix use after free in table_flags_json()
- From: Thomas Haller <thaller@xxxxxxxxxx>
[PATCH nft v2 4/6] tools: simplify error handling in "check-tree.sh" by adding msg_err()/msg_warn()
- From: Thomas Haller <thaller@xxxxxxxxxx>
[PATCH nft v2 5/6] tools: check more strictly for bash shebang in "check-tree.sh"
- From: Thomas Haller <thaller@xxxxxxxxxx>
[PATCH nft v2 2/6] tests/shell: check and generate JSON dump files
- From: Thomas Haller <thaller@xxxxxxxxxx>
Re: [PATCH nft v3 2/2] json: drop warning on stderr for missing json() hook in stmt_print_json()
- From: Thomas Haller <thaller@xxxxxxxxxx>
Re: [PATCH net-next 02/19] netfilter: nft_set_rbtree: prefer sync gc to async worker
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH net-next 02/19] netfilter: nft_set_rbtree: prefer sync gc to async worker
- From: Simon Horman <horms@xxxxxxxxxx>
Re: [PATCH nft v3 2/2] json: drop warning on stderr for missing json() hook in stmt_print_json()
- From: Thomas Haller <thaller@xxxxxxxxxx>
Re: [PATCH nft v3 2/2] json: drop warning on stderr for missing json() hook in stmt_print_json()
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH nft v3 1/2] json: drop handling missing json() hook in expr_print_json()
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH iptables 1/4] arptables-nft: use ARPT_INV flags consistently
- From: Phil Sutter <phil@xxxxxx>
Re: [PATCH nft v3 2/2] json: drop warning on stderr for missing json() hook in stmt_print_json()
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH iptables] arptables-nft: remove ARPT_INV flags usage
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH iptables 1/4] arptables-nft: use ARPT_INV flags consistently
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH nft v3 0/2] drop warning messages from stmt_print_json()/expr_print_json()
- From: Thomas Haller <thaller@xxxxxxxxxx>
[PATCH nft v3 1/2] json: drop handling missing json() hook in expr_print_json()
- From: Thomas Haller <thaller@xxxxxxxxxx>
[PATCH nft v3 2/2] json: drop warning on stderr for missing json() hook in stmt_print_json()
- From: Thomas Haller <thaller@xxxxxxxxxx>
Re: [PATCH iptables 1/4] arptables-nft: use ARPT_INV flags consistently
- From: Phil Sutter <phil@xxxxxx>
Re: [PATCH iptables 1/4] arptables-nft: use ARPT_INV flags consistently
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH nft 0/6] add infrastructure for unit tests
- From: Thomas Haller <thaller@xxxxxxxxxx>
Re: [PATCH iptables 1/4] arptables-nft: use ARPT_INV flags consistently
- From: Phil Sutter <phil@xxxxxx>
Re: [PATCH nft 0/6] add infrastructure for unit tests
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nft 2/2] json: drop handling missing json() hook for "struct expr_ops"
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [RFC] nftables 1.0.6 -stable backports
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [RFC] nftables 1.0.6 -stable backports
- From: Phil Sutter <phil@xxxxxx>
Re: [PATCH nft 0/6] add infrastructure for unit tests
- From: Thomas Haller <thaller@xxxxxxxxxx>
Re: [PATCH nft 1/6] gitignore: ignore build artifacts from top level file
- From: Thomas Haller <thaller@xxxxxxxxxx>
Re: [PATCH nft 0/6] add infrastructure for unit tests
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH nft v2 4/7] build: no recursive make for "files/**/Makefile.am"
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nft 2/2] json: drop handling missing json() hook for "struct expr_ops"
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [PATCH nft 2/2] json: drop handling missing json() hook for "struct expr_ops"
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [RFC] nftables 1.0.6 -stable backports
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nft v2 4/7] build: no recursive make for "files/**/Makefile.am"
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nft 2/2] json: drop handling missing json() hook for "struct expr_ops"
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH iptables 0/4] add arptables-translate
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nft 0/6] add infrastructure for unit tests
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH nft v2 4/7] build: no recursive make for "files/**/Makefile.am"
- From: Sam James <sam@xxxxxxxxxx>
Re: [PATCH nft 1/6] gitignore: ignore build artifacts from top level file
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [RFC] nftables 1.0.6 -stable backports
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
[PATCH nft 6/6] tests/unit: add unit tests for libnftables
- From: Thomas Haller <thaller@xxxxxxxxxx>
[PATCH nft 3/6] build: add `make check-tests-build` to add build test
- From: Thomas Haller <thaller@xxxxxxxxxx>
[PATCH nft 2/6] build: add basic "check-{local,more,all}" and "build-all" make targets
- From: Thomas Haller <thaller@xxxxxxxxxx>
[PATCH nft 5/6] build: cleanup if blocks for conditional compilation
- From: Thomas Haller <thaller@xxxxxxxxxx>
[PATCH nft 0/6] add infrastructure for unit tests
- From: Thomas Haller <thaller@xxxxxxxxxx>
[PATCH nft 1/6] gitignore: ignore build artifacts from top level file
- From: Thomas Haller <thaller@xxxxxxxxxx>
[PATCH nft 4/6] build: add check for consistency of source tree
- From: Thomas Haller <thaller@xxxxxxxxxx>
[PATCH iptables 3/4] nft-arp: add arptables-translate
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH iptables 2/4] nft-arp: add missing mask support
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [RFC] nftables 1.0.6 -stable backports
- From: Phil Sutter <phil@xxxxxx>
[PATCH iptables 4/4] arptables-txlate: add test cases
- From: Florian Westphal <fw@xxxxxxxxx>
[PATCH iptables 1/4] arptables-nft: use ARPT_INV flags consistently
- From: Florian Westphal <fw@xxxxxxxxx>
Re: [RFC] nftables 1.0.6 -stable backports
- From: Phil Sutter <phil@xxxxxx>
Re: [RFC] nftables 1.0.6 -stable backports
- From: Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx>
Re: [PATCH net] netfilter: nf_tables: fix pointer math issue in nft_byteorder_eval()
- From: Florian Westphal <fw@xxxxxxxxx>

[Index of Archives] [LARTC] [Berkeley Packet Filter] [Bugtraq] [Yosemite News] [Samba]