Linux Netfilter / IP Tables Devel

Date Index

[Prev Page][Next Page]

[nft PATCH v4 5/6] py: extract flags helper functions for set_debug()/get_debug(), (continued)
- [nft PATCH v4 5/6] py: extract flags helper functions for set_debug()/get_debug(), Thomas Haller
  - Re: [nft PATCH v4 5/6] py: extract flags helper functions for set_debug()/get_debug(), Phil Sutter
- [nft PATCH v4 6/6] py: add Nftables.{get,set}_input() API, Thomas Haller
  - Re: [nft PATCH v4 6/6] py: add Nftables.{get,set}_input() API, Phil Sutter
    - Re: [nft PATCH v4 6/6] py: add Nftables.{get,set}_input() API, Thomas Haller
  - Re: [nft PATCH v4 6/6] py: add Nftables.{get,set}_input() API, Phil Sutter
    - Re: [nft PATCH v4 6/6] py: add Nftables.{get,set}_input() API, Thomas Haller
[PATCH iptables] nft-ruleparse: parse meta mark set as MARK target, Florian Westphal
- Re: [PATCH iptables] nft-ruleparse: parse meta mark set as MARK target, Phil Sutter
  - Re: [PATCH iptables] nft-ruleparse: parse meta mark set as MARK target, Florian Westphal
Solution Bugzilla Issue 1659 - iptables-nft v1.8.9 Error: meta sreg key not supported, Robert
- Re: Solution Bugzilla Issue 1659 - iptables-nft v1.8.9 Error: meta sreg key not supported, Florian Westphal
[iptables PATCH] Revert "libiptc: fix wrong maptype of base chain counters on restore", Phil Sutter
[iptables PATCH] extensions: libip6t_icmp: Add names for mld-listener types, Phil Sutter
- Re: [iptables PATCH] extensions: libip6t_icmp: Add names for mld-listener types, Phil Sutter
[iptables PATCH] nft: move processing logic out of asserts, Phil Sutter
- Re: [iptables PATCH] nft: move processing logic out of asserts, Phil Sutter
[nft PATCH v2] tests: shell: Review test-cases for destroy command, Phil Sutter
- Re: [nft PATCH v2] tests: shell: Review test-cases for destroy command, Fernando F. Mancera
  - Re: [nft PATCH v2] tests: shell: Review test-cases for destroy command, Phil Sutter
[nft PATCH] doc: document add chain device parameter, Brennan Paciorek
- Re: [nft PATCH] doc: document add chain device parameter, Pablo Neira Ayuso
[iptables PATCH v2 00/15] Man pages review, Phil Sutter
- [iptables PATCH v2 07/15] man: iptables-restore.8: Fix --modprobe description, Phil Sutter
- [iptables PATCH v2 11/15] man: iptables-restore.8: Start paragraphs in upper-case, Phil Sutter
- [iptables PATCH v2 12/15] man: Trivial: Missing space after comma, Phil Sutter
- [iptables PATCH v2 14/15] man: iptables-save.8: Fix --modprobe description, Phil Sutter
- [iptables PATCH v2 02/15] man: iptables.8: Trivial spelling fixes, Phil Sutter
- [iptables PATCH v2 10/15] man: iptables-restore.8: Put 'file' in italics in synopsis, Phil Sutter
- [iptables PATCH v2 09/15] man: iptables-restore.8: Drop -W option from synopsis, Phil Sutter
- [iptables PATCH v2 03/15] man: iptables.8: Fix intra page reference, Phil Sutter
- [iptables PATCH v2 01/15] man: iptables.8: Extend exit code description, Phil Sutter
- [iptables PATCH v2 05/15] man: Use HTTPS for links to netfilter.org, Phil Sutter
- [iptables PATCH v2 08/15] man: iptables-restore.8: Consistently document -w option, Phil Sutter
- [iptables PATCH v2 04/15] man: iptables.8: Clarify --goto description, Phil Sutter
- [iptables PATCH v2 13/15] man: iptables-save.8: Clarify 'available tables', Phil Sutter
- [iptables PATCH v2 15/15] man: iptables-save.8: Start paragraphs in upper-case, Phil Sutter
- [iptables PATCH v2 06/15] man: iptables.8: Trivial font fixes, Phil Sutter
- Re: [iptables PATCH v2 00/15] Man pages review, Phil Sutter
[PATCH nft] parser: deduplicate map with data interval, Florian Westphal
[PATCH nft] parser: allow ct timeouts to use time_spec values, Florian Westphal
[PATCH nft] tests: fix inet nat prio tests, Florian Westphal
[PATCH nft] tests: add dynmap datapath add/delete test case, Florian Westphal
[PATCH net-next] netfilter: helper: Remove unused function declarations, Yue Haibing
- Re: [PATCH net-next] netfilter: helper: Remove unused function declarations, Simon Horman
[PATCH net-next] netfilter: gre: Remove unused function declaration nf_ct_gre_keymap_flush(), Yue Haibing
[iptables PATCH 1/3] extensions: libipt_icmp: Fix confusion between 255/255 and any, Phil Sutter
- [iptables PATCH 2/3] extensions: libipt_icmp: --icmp-type is not mandatory, Phil Sutter
- [iptables PATCH 3/3] tests: libipt_icmp.t: Enable tests with numeric output, Phil Sutter
- Re: [iptables PATCH 1/3] extensions: libipt_icmp: Fix confusion between 255/255 and any, Jan Engelhardt
  - Re: [iptables PATCH 1/3] extensions: libipt_icmp: Fix confusion between 255/255 and any, Phil Sutter
    - Re: [iptables PATCH 1/3] extensions: libipt_icmp: Fix confusion between 255/255 and any, Jan Engelhardt
      - Re: [iptables PATCH 1/3] extensions: libipt_icmp: Fix confusion between 255/255 and any, Phil Sutter
[iptables PATCH 00/16] Man pages review, Phil Sutter
- [iptables PATCH 06/16] man: iptables.8: Trivial font fixes, Phil Sutter
  - Re: [iptables PATCH 06/16] man: iptables.8: Trivial font fixes, Jan Engelhardt
    - Re: [iptables PATCH 06/16] man: iptables.8: Trivial font fixes, Phil Sutter
      - Re: [iptables PATCH 06/16] man: iptables.8: Trivial font fixes, Jan Engelhardt
- [iptables PATCH 03/16] man: iptables.8: Fix intra page reference, Phil Sutter
- [iptables PATCH 01/16] man: iptables.8: Extend exit code description, Phil Sutter
- [iptables PATCH 10/16] man: iptables-restore.8: Put 'file' in italics in synopsis, Phil Sutter
- [iptables PATCH 16/16] man: iptables-save.8: Trivial: Missing space in enumeration, Phil Sutter
- [iptables PATCH 07/16] man: iptables-restore.8: Fix --modprobe description, Phil Sutter
  - Re: [iptables PATCH 07/16] man: iptables-restore.8: Fix --modprobe description, Jan Engelhardt
- [iptables PATCH 11/16] man: iptables-restore.8: Start paragraphs in upper-case, Phil Sutter
- [iptables PATCH 09/16] man: iptables-restore.8: Drop -W option from synopsis, Phil Sutter
- [iptables PATCH 15/16] man: iptables-save.8: Start paragraphs in upper-case, Phil Sutter
- [iptables PATCH 13/16] man: iptables-save.8: Clarify 'available tables', Phil Sutter
- [iptables PATCH 14/16] man: iptables-save.8: Fix --modprobe description, Phil Sutter
  - Re: [iptables PATCH 14/16] man: iptables-save.8: Fix --modprobe description, Jan Engelhardt
- [iptables PATCH 05/16] man: Use HTTPS for links to netfilter.org, Phil Sutter
- [iptables PATCH 04/16] man: iptables.8: Clarify --goto description, Phil Sutter
- [iptables PATCH 08/16] man: iptables-restore.8: Consistently document -w option, Phil Sutter
- [iptables PATCH 12/16] man: iptables-restore.8: Trivial: Missing space after comma, Phil Sutter
- [iptables PATCH 02/16] man: iptables.8: Trivial spelling fixes, Phil Sutter
[iptables PATCH] Makefile: Support 'make tags' and 'make cscope', Phil Sutter
- Re: [iptables PATCH] Makefile: Support 'make tags' and 'make cscope', Phil Sutter
[iptables PATCH 1/2] iptables-restore: Drop dead code, Phil Sutter
- [iptables PATCH 2/2] iptables-apply: Eliminate shellcheck warnings, Phil Sutter
- Re: [iptables PATCH 1/2] iptables-restore: Drop dead code, Phil Sutter
[PATCH] netfilter: bpf_link: avoid unused-function warning, Arnd Bergmann
- Re: [PATCH] netfilter: bpf_link: avoid unused-function warning, Daniel Xu
  - Re: [PATCH] netfilter: bpf_link: avoid unused-function warning, Arnd Bergmann
    - Re: [PATCH] netfilter: bpf_link: avoid unused-function warning, Daniel Xu
[nft PATCH] tests: shell: Review test-cases for destroy command, Phil Sutter
- Re: [nft PATCH] tests: shell: Review test-cases for destroy command, Fernando F. Mancera
  - Re: [nft PATCH] tests: shell: Review test-cases for destroy command, Phil Sutter
[PATCH] netfilter: bpf: Only define get_proto_defrag_hook() if necessary, Daniel Xu
- Re: [PATCH] netfilter: bpf: Only define get_proto_defrag_hook() if necessary, Alexei Starovoitov
- Re: [PATCH] netfilter: bpf: Only define get_proto_defrag_hook() if necessary, patchwork-bot+netdevbpf
[PATCH nft 0/3] Python Build Modernization, Jeremy Sowden
- [PATCH nft 1/3] py: move package source into src directory, Jeremy Sowden
- [PATCH nft 2/3] py: use setup.cfg to configure setuptools, Jeremy Sowden
- [PATCH nft 3/3] py: add pyproject.toml to support PEP-517-compatible build-systems, Jeremy Sowden
- Re: [PATCH nft 0/3] Python Build Modernization, Pablo Neira Ayuso
[PATCH nft] libnftables: Drop cache in -c/--check mode, Pablo Neira Ayuso
[PATCH v2 00/14] sysctl: Add a size argument to register functions in sysctl, Joel Granados
- [PATCH v2 01/14] sysctl: Prefer ctl_table_header in proc_sysctl, Joel Granados
- [PATCH v2 08/14] sysctl: Add size to register_net_sysctl function, Joel Granados
- [PATCH v2 10/14] netfilter: Update to register_net_sysctl_sz, Joel Granados
  - Re: [PATCH v2 10/14] netfilter: Update to register_net_sysctl_sz, Julian Anastasov
- [PATCH v2 07/14] sysctl: Add size arg to __register_sysctl_init, Joel Granados
- [PATCH v2 03/14] sysctl: Add ctl_table_size to ctl_table_header, Joel Granados
  - Re: [PATCH v2 03/14] sysctl: Add ctl_table_size to ctl_table_header, Simon Horman
    - Re: [PATCH v2 03/14] sysctl: Add ctl_table_size to ctl_table_header, Simon Horman
      - Re: [PATCH v2 03/14] sysctl: Add ctl_table_size to ctl_table_header, Joel Granados
- [PATCH v2 11/14] networking: Update to register_net_sysctl_sz, Joel Granados
  - Re: [PATCH v2 11/14] networking: Update to register_net_sysctl_sz, Przemek Kitszel
    - Re: [PATCH v2 11/14] networking: Update to register_net_sysctl_sz, Joel Granados
    - Re: [PATCH v2 11/14] networking: Update to register_net_sysctl_sz, Joel Granados
- [PATCH v2 05/14] sysctl: Add a size arg to __register_sysctl_table, Joel Granados
- [PATCH v2 12/14] vrf: Update to register_net_sysctl_sz, Joel Granados
- [PATCH v2 02/14] sysctl: Use ctl_table_header in list_for_each_table_entry, Joel Granados
- [PATCH v2 06/14] sysctl: Add size to register_sysctl, Joel Granados
- [PATCH v2 04/14] sysctl: Add size argument to init_header, Joel Granados
- [PATCH v2 09/14] ax.25: Update to register_net_sysctl_sz, Joel Granados
- [PATCH v2 14/14] sysctl: Use ctl_table_size as stopping criteria for list macro, Joel Granados
- [PATCH v2 13/14] sysctl: SIZE_MAX->ARRAY_SIZE in register_net_sysctl, Joel Granados
- Re: [PATCH v2 00/14] sysctl: Add a size argument to register functions in sysctl, Luis Chamberlain
  - Re: [PATCH v2 00/14] sysctl: Add a size argument to register functions in sysctl, Joel Granados
- Re: [PATCH v2 00/14] sysctl: Add a size argument to register functions in sysctl, Luis Chamberlain
  - Re: [PATCH v2 00/14] sysctl: Add a size argument to register functions in sysctl, Joel Granados
  - Re: [PATCH v2 00/14] sysctl: Add a size argument to register functions in sysctl, Luis Chamberlain
    - Message not available
      - Re: [PATCH v2 00/14] sysctl: Add a size argument to register functions in sysctl, Luis Chamberlain
        
        Re: [PATCH v2 00/14] sysctl: Add a size argument to register functions in sysctl, Chris Maness
        
        Re: [PATCH v2 00/14] sysctl: Add a size argument to register functions in sysctl, Luis Chamberlain
        
        Re: [PATCH v2 00/14] sysctl: Add a size argument to register functions in sysctl, Chris Maness
        
        Re: [PATCH v2 00/14] sysctl: Add a size argument to register functions in sysctl, Joel Granados
        
        Re: [PATCH v2 00/14] sysctl: Add a size argument to register functions in sysctl, Joel Granados
    - Re: [PATCH v2 00/14] sysctl: Add a size argument to register functions in sysctl, Jakub Kicinski
      - Re: [PATCH v2 00/14] sysctl: Add a size argument to register functions in sysctl, Luis Chamberlain
[PATCH v3 net-next] net: flow_dissector: Use 64bits for used_keys, Ratheesh Kannoth
- Re: [PATCH v3 net-next] net: flow_dissector: Use 64bits for used_keys, Vladimir Oltean
- Re: [PATCH v3 net-next] net: flow_dissector: Use 64bits for used_keys, patchwork-bot+netdevbpf
- Re: [Intel-wired-lan] [PATCH v3 net-next] net: flow_dissector: Use 64bits for used_keys, Alexander Lobakin
nftables: syntax ambiguity with objref map and ct helper objects, Florian Westphal
- Re: nftables: syntax ambiguity with objref map and ct helper objects, Pablo Neira Ayuso
  - Re: nftables: syntax ambiguity with objref map and ct helper objects, Florian Westphal
    - Re: nftables: syntax ambiguity with objref map and ct helper objects, Pablo Neira Ayuso
      - Re: nftables: syntax ambiguity with objref map and ct helper objects, Florian Westphal
[PATCH nft] ct expectation: fix 'list object x' vs. 'list objects in table' confusion, Florian Westphal
[PATCH nft] rule: allow src/dstnat prios in input and output, Florian Westphal
[iptables PATCH 1/4] *tables-restore: Enforce correct counters syntax if present, Phil Sutter
- [iptables PATCH 4/4] tests: shell: Fix and extend chain rename test, Phil Sutter
- [iptables PATCH 2/4] *tables: Reject invalid chain names when renaming, Phil Sutter
- [iptables PATCH 3/4] ebtables: Improve invalid chain name detection, Phil Sutter
- Re: [iptables PATCH 1/4] *tables-restore: Enforce correct counters syntax if present, Phil Sutter
[PATCH v2 net-next] dissector: Use 64bits for used_keys, Ratheesh Kannoth
- Re: [PATCH v2 net-next] dissector: Use 64bits for used_keys, Martin Habets
- Re: [PATCH v2 net-next] dissector: Use 64bits for used_keys, Simon Horman
[syzbot] [netfilter?] WARNING in __nf_conntrack_confirm, syzbot
Netfilter -stable patches for 6.1.y, Pablo Neira Ayuso
- Re: Netfilter -stable patches for 6.1.y, Pablo Neira Ayuso
  - Re: Netfilter -stable patches for 6.1.y, Greg Kroah-Hartman
[PATCH 10/14] netfilter: Update to register_net_sysctl_sz, Joel Granados
- Re: [PATCH 10/14] netfilter: Update to register_net_sysctl_sz, Luis Chamberlain
[PATCH -next] nf_conntrack: fix -Wunused-const-variable=, Zhu Wang
- Re: [PATCH -next] nf_conntrack: fix -Wunused-const-variable=, Simon Horman
[PATCH nft] netlink: delinearize: copy set keytype if needed, Florian Westphal
ulogd2 patch ping, Jeremy Sowden
- Re: ulogd2 patch ping, Pablo Neira Ayuso
  - Re: ulogd2 patch ping, Jeremy Sowden
- Re: ulogd2 patch ping, Florian Westphal
  - Re: ulogd2 patch ping, Florian Westphal
    - Re: ulogd2 patch ping, Jeremy Sowden
[PATCH 5.4 185/313] netfilter: nf_tables: add NFT_TRANS_PREPARE_ERROR to deal with bound set/chain, Greg Kroah-Hartman
[PATCH 5.4 188/313] netfilter: nf_tables: fix scheduling-while-atomic splat, Greg Kroah-Hartman
[PATCH 5.4 187/313] netfilter: nf_tables: unbind non-anonymous set if rule construction fails, Greg Kroah-Hartman
[PATCH 5.4 186/313] netfilter: nf_tables: reject unbound anonymous set before commit phase, Greg Kroah-Hartman
[PATCH 5.4 181/313] netfilter: add helper function to set up the nfnetlink header and use it, Greg Kroah-Hartman
[PATCH 5.4 179/313] netfilter: nf_tables: fix nat hook table deletion, Greg Kroah-Hartman
[PATCH 5.4 182/313] netfilter: nf_tables: use net_generic infra for transaction data, Greg Kroah-Hartman
[PATCH 5.4 183/313] netfilter: nf_tables: add rescheduling points during loop detection walks, Greg Kroah-Hartman
[PATCH 5.4 180/313] netfilter: nftables: add helper function to set the base sequence number, Greg Kroah-Hartman
[PATCH 5.4 184/313] netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE, Greg Kroah-Hartman
[PATCH 5.10 315/509] netfilter: nf_tables: fix chain binding transaction logic, Greg Kroah-Hartman
[PATCH 5.10 320/509] netfilter: nf_tables: drop map element references from preparation phase, Greg Kroah-Hartman
[PATCH 5.10 312/509] netfilter: nf_tables: use net_generic infra for transaction data, Greg Kroah-Hartman
[PATCH 5.10 321/509] netfilter: nf_tables: unbind non-anonymous set if rule construction fails, Greg Kroah-Hartman
[PATCH 5.10 317/509] netfilter: nf_tables: reject unbound anonymous set before commit phase, Greg Kroah-Hartman
[PATCH 5.10 322/509] netfilter: nf_tables: fix scheduling-while-atomic splat, Greg Kroah-Hartman
[PATCH 5.10 318/509] netfilter: nf_tables: reject unbound chain set before commit phase, Greg Kroah-Hartman
[PATCH 5.10 319/509] netfilter: nftables: rename set element data activation/deactivation functions, Greg Kroah-Hartman
[PATCH 5.10 316/509] netfilter: nf_tables: add NFT_TRANS_PREPARE_ERROR to deal with bound set/chain, Greg Kroah-Hartman
[PATCH 5.10 313/509] netfilter: nf_tables: add rescheduling points during loop detection walks, Greg Kroah-Hartman
[PATCH 5.10 314/509] netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE, Greg Kroah-Hartman
[PATCH netfilter] netfilter: nfnetlink_log: always add a timestamp, Maciej Żenczykowski
- Re: [PATCH netfilter] netfilter: nfnetlink_log: always add a timestamp, Florian Westphal
  - Re: [PATCH netfilter] netfilter: nfnetlink_log: always add a timestamp, Maciej Żenczykowski
    - Re: [PATCH netfilter] netfilter: nfnetlink_log: always add a timestamp, Florian Westphal
Re: Kernel oops with 6.4.4 - flow offloads - NULL pointer deref, Jakub Kicinski
- Re: Kernel oops with 6.4.4 - flow offloads - NULL pointer deref, Pablo Neira Ayuso
  - Re: Kernel oops with 6.4.4 - flow offloads - NULL pointer deref, Ian Kumlien
    - Re: Kernel oops with 6.4.4 - flow offloads - NULL pointer deref, Ian Kumlien
[PATCH v3 net-next] ipvs: make ip_vs_svc_table and ip_vs_svc_fwm_table per netns, Dust Li
- Re: [PATCH v3 net-next] ipvs: make ip_vs_svc_table and ip_vs_svc_fwm_table per netns, Julian Anastasov
[PATCH v2 net-next] ipvs: make ip_vs_svc_table and ip_vs_svc_fwm_table per netns, Dust Li
- Re: [PATCH v2 net-next] ipvs: make ip_vs_svc_table and ip_vs_svc_fwm_table per netns, Julian Anastasov
  - Re: [PATCH v2 net-next] ipvs: make ip_vs_svc_table and ip_vs_svc_fwm_table per netns, Dust Li
    - Re: [PATCH v2 net-next] ipvs: make ip_vs_svc_table and ip_vs_svc_fwm_table per netns, Julian Anastasov
[PATCH nf] netfilter: nf_tables: disallow rule addition to bound chain via NFTA_RULE_CHAIN_ID, Pablo Neira Ayuso
[PATCH nf,v2] netfilter: nf_tables: skip immediate deactivate in _PREPARE_ERROR, Pablo Neira Ayuso
[PATCH ipset] bash-completion: fix syntax error, Jeremy Sowden
- Re: [PATCH ipset] bash-completion: fix syntax error, Pablo Neira Ayuso
[PATCH bpf-next v6 0/5] Support defragmenting IPv(4|6) packets in BPF, Daniel Xu
- [PATCH bpf-next v6 1/5] netfilter: defrag: Add glue hooks for enabling/disabling defrag, Daniel Xu
  - Re: [PATCH bpf-next v6 1/5] netfilter: defrag: Add glue hooks for enabling/disabling defrag, Florian Westphal
- [PATCH bpf-next v6 5/5] bpf: selftests: Add defrag selftests, Daniel Xu
- [PATCH bpf-next v6 2/5] netfilter: bpf: Support BPF_F_NETFILTER_IP_DEFRAG in netfilter link, Daniel Xu
  - Re: [PATCH bpf-next v6 2/5] netfilter: bpf: Support BPF_F_NETFILTER_IP_DEFRAG in netfilter link, Alexei Starovoitov
    - Re: [PATCH bpf-next v6 2/5] netfilter: bpf: Support BPF_F_NETFILTER_IP_DEFRAG in netfilter link, Daniel Xu
  - Re: [PATCH bpf-next v6 2/5] netfilter: bpf: Support BPF_F_NETFILTER_IP_DEFRAG in netfilter link, Florian Westphal
- [PATCH bpf-next v6 3/5] bpf: selftests: Support not connecting client socket, Daniel Xu
- [PATCH bpf-next v6 4/5] bpf: selftests: Support custom type and proto for client sockets, Daniel Xu
- Re: [PATCH bpf-next v6 0/5] Support defragmenting IPv(4|6) packets in BPF, patchwork-bot+netdevbpf
[iptables PATCH 1/2] nft: Special casing for among match in compare_matches(), Phil Sutter
- [iptables PATCH 2/2] nft: More verbose extension comparison debugging, Phil Sutter
- Re: [iptables PATCH 1/2] nft: Special casing for among match in compare_matches(), Phil Sutter
[PATCH bpf-next v5 0/5] Support defragmenting IPv(4|6) packets in BPF, Daniel Xu
- [PATCH bpf-next v5 1/5] netfilter: defrag: Add glue hooks for enabling/disabling defrag, Daniel Xu
- [PATCH bpf-next v5 2/5] netfilter: bpf: Support BPF_F_NETFILTER_IP_DEFRAG in netfilter link, Daniel Xu
  - Re: [PATCH bpf-next v5 2/5] netfilter: bpf: Support BPF_F_NETFILTER_IP_DEFRAG in netfilter link, Florian Westphal
    - Re: [PATCH bpf-next v5 2/5] netfilter: bpf: Support BPF_F_NETFILTER_IP_DEFRAG in netfilter link, Daniel Xu
- [PATCH bpf-next v5 3/5] bpf: selftests: Support not connecting client socket, Daniel Xu
- [PATCH bpf-next v5 4/5] bpf: selftests: Support custom type and proto for client sockets, Daniel Xu
- [PATCH bpf-next v5 5/5] bpf: selftests: Add defrag selftests, Daniel Xu
[PATCH nf] netfilter: nft_set_rbtree: fix overlap expiration walk, Florian Westphal
[PATCH net 1/5] netfilter: nf_tables: fix spurious set element insertion failure, Florian Westphal
[PATCH net 0/5] Netfilter fixes for net:, Florian Westphal
- [PATCH net 1/5] netfilter: nf_tables: fix spurious set element insertion failure, Florian Westphal
  - Re: [PATCH net 1/5] netfilter: nf_tables: fix spurious set element insertion failure, patchwork-bot+netdevbpf
- [PATCH net 2/5] netfilter: nf_tables: can't schedule in nft_chain_validate, Florian Westphal
- [PATCH net 3/5] netfilter: nft_set_pipapo: fix improper element removal, Florian Westphal
- [PATCH net 4/5] netfilter: nf_tables: skip bound chain in netns release path, Florian Westphal
- [PATCH net 5/5] netfilter: nf_tables: skip bound chain on rule flush, Florian Westphal
[nft v3 PATCH 0/4] add input flags and "no-dns"/"json" flags, Thomas Haller
- [nft v3 PATCH 1/4] src: add input flags for nft_ctx, Thomas Haller
- [nft v3 PATCH 3/4] src: add input flag NFT_CTX_INPUT_JSON to enable JSON parsing, Thomas Haller
  - Re: [nft v3 PATCH 3/4] src: add input flag NFT_CTX_INPUT_JSON to enable JSON parsing, Phil Sutter
- [nft v3 PATCH 4/4] py: add Nftables.input_{set,get}_flags() API, Thomas Haller
  - Re: [nft v3 PATCH 4/4] py: add Nftables.input_{set,get}_flags() API, Phil Sutter
- [nvt v3 PATCH 2/4] src: add input flag NFT_CTX_INPUT_NO_DNS to avoid blocking, Thomas Haller
  - Re: [nvt v3 PATCH 2/4] src: add input flag NFT_CTX_INPUT_NO_DNS to avoid blocking, Phil Sutter
[PATCH nft] tests: shell: auto-run kmemleak if its available, Florian Westphal
[nft PATCH] tests: monitor: Summarize failures per test case, Phil Sutter
- Re: [nft PATCH] tests: monitor: Summarize failures per test case, Phil Sutter
[PATCH nf] netfilter: nf_tables: skip bound chain on rule flush, Pablo Neira Ayuso
[PATCH nf] netfilter: nf_tables: skip immediate deactivate in _PREPARE_ERROR and _COMMIT, Pablo Neira Ayuso
- Re: [PATCH nf] netfilter: nf_tables: skip immediate deactivate in _PREPARE_ERROR and _COMMIT, Florian Westphal
[PATCH nf] netfilter: nf_tables: fix spurious set element insertion failure, Florian Westphal
[PATCH nf] netfilter: nft_set_pipapo: fix improper element removal, Florian Westphal
- Re: [PATCH nf] netfilter: nft_set_pipapo: fix improper element removal, Stefano Brivio
[PATCH nf] netfilter: nf_tables: skip bound chain in netns release path, Pablo Neira Ayuso
[iptables PATCH] tests: shell: Sanitize nft-only/0009-needless-bitwise_0, Phil Sutter
- Re: [iptables PATCH] tests: shell: Sanitize nft-only/0009-needless-bitwise_0, Phil Sutter
Re: [syzbot] [btrfs?] [netfilter?] BUG: MAX_LOCKDEP_CHAIN_HLOCKS too low! (2), syzbot
- Re: [syzbot] [btrfs?] [netfilter?] BUG: MAX_LOCKDEP_CHAIN_HLOCKS too low! (2), David Sterba
  - Re: [syzbot] [btrfs?] [netfilter?] BUG: MAX_LOCKDEP_CHAIN_HLOCKS too low! (2), syzbot
    - Re: [syzbot] [btrfs?] [netfilter?] BUG: MAX_LOCKDEP_CHAIN_HLOCKS too low! (2), Aleksandr Nogikh
      - Re: [syzbot] [btrfs?] [netfilter?] BUG: MAX_LOCKDEP_CHAIN_HLOCKS too low! (2), Florian Westphal
        
        Re: [syzbot] [btrfs?] [netfilter?] BUG: MAX_LOCKDEP_CHAIN_HLOCKS too low! (2), Jakub Kicinski
        
        Re: [syzbot] [btrfs?] [netfilter?] BUG: MAX_LOCKDEP_CHAIN_HLOCKS too low! (2), Paolo Abeni
[PATCH nft] meta: stash context statement length when generating payload/meta dependency, Pablo Neira Ayuso
libnftnl adding element to a set of type ipv4_addr or ipv6_addr, Easynet
- Re: libnftnl adding element to a set of type ipv4_addr or ipv6_addr, Phil Sutter
  - Re: libnftnl adding element to a set of type ipv4_addr or ipv6_addr, Easynet
[PATCH nft 1/2] update INSTALL file, Pablo Neira Ayuso
- [PATCH nft 2/2] py: remove setup.py integration with autotools, Pablo Neira Ayuso
  - Re: [PATCH nft 2/2] py: remove setup.py integration with autotools, Arturo Borrero Gonzalez
  - Re: [PATCH nft 2/2] py: remove setup.py integration with autotools, Phil Sutter
- Re: [PATCH nft 1/2] update INSTALL file, Phil Sutter
[nft PATCH] py: return boolean value from Nftables.__[gs]et_output_flag(), Thomas Haller
- Re: [nft PATCH] py: return boolean value from Nftables.__[gs]et_output_flag(), Phil Sutter
[PATCH nf-next 0/2] netfilter: nf_tables: use NLA_POLICY_MASK instead of manual checks, Florian Westphal
- [PATCH nf-next 2/2] netfilter: nf_tables: use NLA_POLICY_MASK to test for valid flag options, Florian Westphal
- [PATCH nf-next 1/2] netlink: allow be16 and be32 types in all uint policy checks, Florian Westphal
  - Re: [PATCH nf-next 1/2] netlink: allow be16 and be32 types in all uint policy checks, Jakub Kicinski
    - Re: [PATCH nf-next 1/2] netlink: allow be16 and be32 types in all uint policy checks, Florian Westphal
      - Re: [PATCH nf-next 1/2] netlink: allow be16 and be32 types in all uint policy checks, Jakub Kicinski
      - Re: [PATCH nf-next 1/2] netlink: allow be16 and be32 types in all uint policy checks, Jozsef Kadlecsik
[PATCH nf] netfilter: nf_tables: can't schedule in nft_chain_validate, Florian Westphal
[nft PATCH] tests/build/run-tests.sh: fix issues reported by shellcheck, Arturo Borrero Gonzalez
- Re: [nft PATCH] tests/build/run-tests.sh: fix issues reported by shellcheck, Pablo Neira Ayuso
[iptables PATCH 0/3] Follow-up on dangling set fix, Phil Sutter
- [iptables PATCH 1/3] extensions: libebt_among: Fix for false positive match comparison, Phil Sutter
  - Re: [iptables PATCH 1/3] extensions: libebt_among: Fix for false positive match comparison, Pablo Neira Ayuso
    - Re: [iptables PATCH 1/3] extensions: libebt_among: Fix for false positive match comparison, Phil Sutter
    - Re: [iptables PATCH 1/3] extensions: libebt_among: Fix for false positive match comparison, Phil Sutter
      - Re: [iptables PATCH 1/3] extensions: libebt_among: Fix for false positive match comparison, Pablo Neira Ayuso
        
        Re: [iptables PATCH 1/3] extensions: libebt_among: Fix for false positive match comparison, Phil Sutter
- [iptables PATCH 2/3] nft: Do not pass nft_rule_ctx to add_nft_among(), Phil Sutter
- [iptables PATCH 3/3] nft: Include sets in debug output, Phil Sutter
- Re: [iptables PATCH 0/3] Follow-up on dangling set fix, Phil Sutter
[PATCH nft] exthdr: prefer raw_type instead of desc->type, Florian Westphal
[ANNOUNCE] nftables 1.0.8 release, Pablo Neira Ayuso
- Re: [ANNOUNCE] nftables 1.0.8 release, Arturo Borrero Gonzalez
  - Re: [ANNOUNCE] nftables 1.0.8 release, Pablo Neira Ayuso
  - Re: [ANNOUNCE] nftables 1.0.8 release, Leah Neukirchen
    - Re: [ANNOUNCE] nftables 1.0.8 release, Pablo Neira Ayuso
      - Re: [ANNOUNCE] nftables 1.0.8 release, Leah Neukirchen
[PATCH -stable,5.10 v3 00/11] Netfilter stable fixes for 5.10, Pablo Neira Ayuso
- [PATCH -stable,5.10 v3 04/11] netfilter: nf_tables: fix chain binding transaction logic, Pablo Neira Ayuso
- [PATCH -stable,5.10 v3 01/11] netfilter: nf_tables: use net_generic infra for transaction data, Pablo Neira Ayuso
  - Re: [PATCH -stable,5.10 v3 01/11] netfilter: nf_tables: use net_generic infra for transaction data, Greg KH
    - Re: [PATCH -stable,5.10 v3 01/11] netfilter: nf_tables: use net_generic infra for transaction data, Greg KH
- [PATCH -stable,5.10 v3 02/11] netfilter: nf_tables: add rescheduling points during loop detection walks, Pablo Neira Ayuso
- [PATCH -stable,5.10 v3 03/11] netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE, Pablo Neira Ayuso
- [PATCH -stable,5.10 v3 07/11] netfilter: nf_tables: reject unbound chain set before commit phase, Pablo Neira Ayuso
- [PATCH -stable,5.10 v3 05/11] netfilter: nf_tables: add NFT_TRANS_PREPARE_ERROR to deal with bound set/chain, Pablo Neira Ayuso
- [PATCH -stable,5.10 v3 06/11] netfilter: nf_tables: reject unbound anonymous set before commit phase, Pablo Neira Ayuso
- [PATCH -stable,5.10 v3 08/11] netfilter: nftables: rename set element data activation/deactivation functions, Pablo Neira Ayuso
- [PATCH -stable,5.10 v3 09/11] netfilter: nf_tables: drop map element references from preparation phase, Pablo Neira Ayuso
- [PATCH -stable,5.10 v3 11/11] netfilter: nf_tables: fix scheduling-while-atomic splat, Pablo Neira Ayuso
- [PATCH -stable,5.10 v3 10/11] netfilter: nf_tables: unbind non-anonymous set if rule construction fails, Pablo Neira Ayuso
[PATCH -stable,5.15 v2 0/2] netfilter stable fixes for 5.15, Pablo Neira Ayuso
- [PATCH -stable,5.15 v2 1/2] netfilter: nf_tables: drop map element references from preparation phase, Pablo Neira Ayuso
- [PATCH -stable,5.15 v2 2/2] netfilter: nf_tables: unbind non-anonymous set if rule construction fails, Pablo Neira Ayuso
[PATCH bpf-next v4 0/6] Support defragmenting IPv(4|6) packets in BPF, Daniel Xu
- [PATCH bpf-next v4 1/6] netfilter: defrag: Add glue hooks for enabling/disabling defrag, Daniel Xu
- [PATCH bpf-next v4 2/6] netfilter: bpf: Support BPF_F_NETFILTER_IP_DEFRAG in netfilter link, Daniel Xu
  - Re: [PATCH bpf-next v4 2/6] netfilter: bpf: Support BPF_F_NETFILTER_IP_DEFRAG in netfilter link, Alexei Starovoitov
    - Re: [PATCH bpf-next v4 2/6] netfilter: bpf: Support BPF_F_NETFILTER_IP_DEFRAG in netfilter link, Daniel Xu
      - Re: [PATCH bpf-next v4 2/6] netfilter: bpf: Support BPF_F_NETFILTER_IP_DEFRAG in netfilter link, Alexei Starovoitov
        
        Re: [PATCH bpf-next v4 2/6] netfilter: bpf: Support BPF_F_NETFILTER_IP_DEFRAG in netfilter link, Daniel Xu
        
        Re: [PATCH bpf-next v4 2/6] netfilter: bpf: Support BPF_F_NETFILTER_IP_DEFRAG in netfilter link, Alexei Starovoitov
        
        Re: [PATCH bpf-next v4 2/6] netfilter: bpf: Support BPF_F_NETFILTER_IP_DEFRAG in netfilter link, Daniel Xu
        
        Re: [PATCH bpf-next v4 2/6] netfilter: bpf: Support BPF_F_NETFILTER_IP_DEFRAG in netfilter link, Florian Westphal
        
        Re: [PATCH bpf-next v4 2/6] netfilter: bpf: Support BPF_F_NETFILTER_IP_DEFRAG in netfilter link, Daniel Xu
- [PATCH bpf-next v4 3/6] netfilter: bpf: Prevent defrag module unload while link active, Daniel Xu
- [PATCH bpf-next v4 4/6] bpf: selftests: Support not connecting client socket, Daniel Xu
- [PATCH bpf-next v4 5/6] bpf: selftests: Support custom type and proto for client sockets, Daniel Xu
- [PATCH bpf-next v4 6/6] bpf: selftests: Add defrag selftests, Daniel Xu
[PATCH v2] netfilter: conntrack: validate cta_ip via parsing, Lin Ma
- Re: [PATCH v2] netfilter: conntrack: validate cta_ip via parsing, Simon Horman
[PATCH iptables] nft-bridge: pass context structure to ops->add() to improve anonymous set support, Pablo Neira Ayuso
- Re: [PATCH iptables] nft-bridge: pass context structure to ops->add() to improve anonymous set support, Igor Raits
  - Re: [PATCH iptables] nft-bridge: pass context structure to ops->add() to improve anonymous set support, Pablo Neira Ayuso
- Re: [PATCH iptables] nft-bridge: pass context structure to ops->add() to improve anonymous set support, Pablo Neira Ayuso
  - Re: [PATCH iptables] nft-bridge: pass context structure to ops->add() to improve anonymous set support, Phil Sutter
    - Re: [PATCH iptables] nft-bridge: pass context structure to ops->add() to improve anonymous set support, Pablo Neira Ayuso
- Re: [PATCH iptables] nft-bridge: pass context structure to ops->add() to improve anonymous set support, Phil Sutter
[PATCH 1/1] xt_asn: add matching dump [query] utility, Philip Prindeville
[ANNOUNCE] libnftnl 1.2.6 release, Pablo Neira Ayuso
- Re: [ANNOUNCE] libnftnl 1.2.6 release, Jan Engelhardt
  - Re: [ANNOUNCE] libnftnl 1.2.6 release, Pablo Neira Ayuso
    - Re: [ANNOUNCE] libnftnl 1.2.6 release, Jan Engelhardt
[PATCH v1] netfilter: conntrack: validate cta_ip via parsing, Lin Ma
- Re: [PATCH v1] netfilter: conntrack: validate cta_ip via parsing, Simon Horman
  - Re: [PATCH v1] netfilter: conntrack: validate cta_ip via parsing, Lin Ma
    - Re: [PATCH v1] netfilter: conntrack: validate cta_ip via parsing, Simon Horman
[nft PATCH] nftables: add flag for nft context to avoid blocking getaddrinfo(), Thomas Haller
- Re: [nft PATCH] nftables: add flag for nft context to avoid blocking getaddrinfo(), Pablo Neira Ayuso
  - [nft v2 PATCH 1/3] nftables: add input flags for nft_ctx, Thomas Haller
    - [nft v2 PATCH 3/3] py: add input_{set,get}_flags() API to helpers, Thomas Haller
      - Re: [nft v2 PATCH 3/3] py: add input_{set,get}_flags() API to helpers, Phil Sutter
        
        Re: [nft v2 PATCH 3/3] py: add input_{set,get}_flags() API to helpers, Thomas Haller
    - [nft v2 PATCH 2/3] nftables: add input flag NFT_CTX_INPUT_NO_DNS to avoid blocking getaddrinfo(), Thomas Haller
      - Re: [nft v2 PATCH 2/3] nftables: add input flag NFT_CTX_INPUT_NO_DNS to avoid blocking getaddrinfo(), Phil Sutter
        
        Re: [nft v2 PATCH 2/3] nftables: add input flag NFT_CTX_INPUT_NO_DNS to avoid blocking getaddrinfo(), Thomas Haller
    - Re: [nft v2 PATCH 1/3] nftables: add input flags for nft_ctx, Phil Sutter
      - Re: [nft v2 PATCH 1/3] nftables: add input flags for nft_ctx, Thomas Haller
        
        Re: [nft v2 PATCH 1/3] nftables: add input flags for nft_ctx, Phil Sutter
        
        Re: [nft v2 PATCH 1/3] nftables: add input flags for nft_ctx, Thomas Haller
ebtables-nft can't delete complex rules by specifying complete rule with kernel 6.3+, Igor Raits
- Re: ebtables-nft can't delete complex rules by specifying complete rule with kernel 6.3+, Florian Westphal
  - Re: ebtables-nft can't delete complex rules by specifying complete rule with kernel 6.3+, Florian Westphal
    - Re: ebtables-nft can't delete complex rules by specifying complete rule with kernel 6.3+, Igor Raits
      - Re: ebtables-nft can't delete complex rules by specifying complete rule with kernel 6.3+, Pablo Neira Ayuso
        
        Re: ebtables-nft can't delete complex rules by specifying complete rule with kernel 6.3+, Pablo Neira Ayuso
        
        Re: ebtables-nft can't delete complex rules by specifying complete rule with kernel 6.3+, Igor Raits
        
        Re: ebtables-nft can't delete complex rules by specifying complete rule with kernel 6.3+, Florian Westphal
[nft PATCH 0/4] libnftables: minor cleanups initalizing nf_sock instance of nft_ctx, Thomas Haller
- [nft PATCH 1/4] libnftables: always initialize netlink socket in nft_ctx_new(), Thomas Haller
- [nft PATCH 2/4] libnftables: drop unused argument nf_sock from nft_netlink(), Thomas Haller
- [nft PATCH 4/4] libnftables: drop check for nf_sock in nft_ctx_free(), Thomas Haller
- [nft PATCH 3/4] libnftables: inline creation of nf_sock in nft_ctx_new(), Thomas Haller
- Re: [nft PATCH 0/4] libnftables: minor cleanups initalizing nf_sock instance of nft_ctx, Pablo Neira Ayuso
linux-next: branches to be removed, Stephen Rothwell
- Re: linux-next: branches to be removed, Florian Westphal
  - Re: linux-next: branches to be removed, Stephen Rothwell
- Re: linux-next: branches to be removed, Miguel Ojeda
  - Re: linux-next: branches to be removed, Stephen Rothwell
    - Re: linux-next: branches to be removed, Miguel Ojeda
- Re: linux-next: branches to be removed, Gabriel Krisman Bertazi
  - Re: linux-next: branches to be removed, Stephen Rothwell
- Re: linux-next: branches to be removed, Vineet Gupta
  - Re: linux-next: branches to be removed, Stephen Rothwell
[PATCH 1/1] xt_asn: fix download script, Philip Prindeville
[PATCH 1/1] xt_asn: support quiet mode, Philip Prindeville
- Re: [PATCH 1/1] xt_asn: support quiet mode, Jan Engelhardt
  - Re: [PATCH 1/1] xt_asn: support quiet mode, Philip Prindeville
[PATCH nft] evaluate: place byteorder conversion before rshift, Pablo Neira Ayuso
[PATCH bpf-next v3 0/6] Support defragmenting IPv(4|6) packets in BPF, Daniel Xu
- [PATCH bpf-next v3 1/6] netfilter: defrag: Add glue hooks for enabling/disabling defrag, Daniel Xu
  - Re: [PATCH bpf-next v3 1/6] netfilter: defrag: Add glue hooks for enabling/disabling defrag, Florian Westphal
- [PATCH bpf-next v3 2/6] netfilter: bpf: Support BPF_F_NETFILTER_IP_DEFRAG in netfilter link, Daniel Xu
  - Re: [PATCH bpf-next v3 2/6] netfilter: bpf: Support BPF_F_NETFILTER_IP_DEFRAG in netfilter link, Florian Westphal
- [PATCH bpf-next v3 3/6] netfilter: bpf: Prevent defrag module unload while link active, Daniel Xu
  - Re: [PATCH bpf-next v3 3/6] netfilter: bpf: Prevent defrag module unload while link active, Florian Westphal
- [PATCH bpf-next v3 4/6] bpf: selftests: Support not connecting client socket, Daniel Xu
- [PATCH bpf-next v3 5/6] bpf: selftests: Support custom type and proto for client sockets, Daniel Xu
- [PATCH bpf-next v3 6/6] bpf: selftests: Add defrag selftests, Daniel Xu
  - Re: [PATCH bpf-next v3 6/6] bpf: selftests: Add defrag selftests, Alexei Starovoitov
[PATCH net-next] ipvs: make ip_vs_svc_table and ip_vs_svc_fwm_table per netns, Dust Li
- Re: [PATCH net-next] ipvs: make ip_vs_svc_table and ip_vs_svc_fwm_table per netns, Julian Anastasov
  - Re: [PATCH net-next] ipvs: make ip_vs_svc_table and ip_vs_svc_fwm_table per netns, Dust Li
    - Re: [PATCH net-next] ipvs: make ip_vs_svc_table and ip_vs_svc_fwm_table per netns, Julian Anastasov
[PATCH bpf-next v2 0/6] Support defragmenting IPv(4|6) packets in BPF, Daniel Xu
- [PATCH bpf-next v2 1/6] netfilter: defrag: Add glue hooks for enabling/disabling defrag, Daniel Xu
- [PATCH bpf-next v2 3/6] netfilter: bpf: Prevent defrag module unload while link active, Daniel Xu
  - Re: [PATCH bpf-next v2 3/6] netfilter: bpf: Prevent defrag module unload while link active, Florian Westphal
- [PATCH bpf-next v2 4/6] bpf: selftests: Support not connecting client socket, Daniel Xu
- [PATCH bpf-next v2 5/6] bpf: selftests: Support custom type and proto for client sockets, Daniel Xu
- [PATCH bpf-next v2 6/6] bpf: selftests: Add defrag selftests, Daniel Xu
  - Re: [PATCH bpf-next v2 6/6] bpf: selftests: Add defrag selftests, Alexei Starovoitov
- [PATCH bpf-next v2 2/6] netfilter: bpf: Support BPF_F_NETFILTER_IP_DEFRAG in netfilter link, Daniel Xu
[PATCH nft] netlink_linearize: use div_round_up in byteorder length, Pablo Neira Ayuso
- Re: [PATCH nft] netlink_linearize: use div_round_up in byteorder length, Florian Westphal
[PATCH -stable,4.14 0/3] stable fixes for 4.14, Pablo Neira Ayuso
- [PATCH -stable,4.14 1/3] netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE, Pablo Neira Ayuso
- [PATCH -stable,4.14 3/3] netfilter: nf_tables: unbind non-anonymous set if rule construction fails, Pablo Neira Ayuso
- [PATCH -stable,4.14 2/3] netfilter: nf_tables: add NFT_TRANS_PREPARE_ERROR to deal with bound set/chain, Pablo Neira Ayuso
- Re: [PATCH -stable,4.14 0/3] stable fixes for 4.14, Greg KH
[PATCH -stable,4.19 00/10] stable fixes for 4.19, Pablo Neira Ayuso
- [PATCH -stable,4.19 01/10] netfilter: nf_tables: fix nat hook table deletion, Pablo Neira Ayuso
- [PATCH -stable,4.19 02/10] netfilter: nf_tables: add rescheduling points during loop detection walks, Pablo Neira Ayuso
- [PATCH -stable,4.19 03/10] netfilter: nftables: add helper function to set the base sequence number, Pablo Neira Ayuso
- [PATCH -stable,4.19 04/10] netfilter: add helper function to set up the nfnetlink header and use it, Pablo Neira Ayuso
- [PATCH -stable,4.19 06/10] netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE, Pablo Neira Ayuso
- [PATCH -stable,4.19 07/10] netfilter: nf_tables: add NFT_TRANS_PREPARE_ERROR to deal with bound set/chain, Pablo Neira Ayuso
- [PATCH -stable,4.19 08/10] netfilter: nf_tables: reject unbound anonymous set before commit phase, Pablo Neira Ayuso
- [PATCH -stable,4.19 10/10] netfilter: nf_tables: fix scheduling-while-atomic splat, Pablo Neira Ayuso
- [PATCH -stable,4.19 05/10] netfilter: nf_tables: use net_generic infra for transaction data, Pablo Neira Ayuso
- [PATCH -stable,4.19 09/10] netfilter: nf_tables: unbind non-anonymous set if rule construction fails, Pablo Neira Ayuso
- Re: [PATCH -stable,4.19 00/10] stable fixes for 4.19, Greg KH
[PATCH -stable,5.4 00/10] stable fixes for 5.4, Pablo Neira Ayuso
- [PATCH -stable,5.4 02/10] netfilter: nftables: add helper function to set the base sequence number, Pablo Neira Ayuso
- [PATCH -stable,5.4 01/10] netfilter: nf_tables: fix nat hook table deletion, Pablo Neira Ayuso
- [PATCH -stable,5.4 03/10] netfilter: add helper function to set up the nfnetlink header and use it, Pablo Neira Ayuso
- [PATCH -stable,5.4 05/10] netfilter: nf_tables: add rescheduling points during loop detection walks, Pablo Neira Ayuso
- [PATCH -stable,5.4 04/10] netfilter: nf_tables: use net_generic infra for transaction data, Pablo Neira Ayuso
- [PATCH -stable,5.4 06/10] netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE, Pablo Neira Ayuso
- [PATCH -stable,5.4 09/10] netfilter: nf_tables: unbind non-anonymous set if rule construction fails, Pablo Neira Ayuso
- [PATCH -stable,5.4 08/10] netfilter: nf_tables: reject unbound anonymous set before commit phase, Pablo Neira Ayuso
- [PATCH -stable,5.4 10/10] netfilter: nf_tables: fix scheduling-while-atomic splat, Pablo Neira Ayuso
- [PATCH -stable,5.4 07/10] netfilter: nf_tables: add NFT_TRANS_PREPARE_ERROR to deal with bound set/chain, Pablo Neira Ayuso
- Re: [PATCH -stable,5.4 00/10] stable fixes for 5.4, Greg KH
[PATCH -stable,5.10,v2 00/11] stable fixes for 5.10, Pablo Neira Ayuso
- [PATCH -stable,5.10,v2 03/11] netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE, Pablo Neira Ayuso
- [PATCH -stable,5.10,v2 04/11] netfilter: nf_tables: fix chain binding transaction logic, Pablo Neira Ayuso
- [PATCH -stable,5.10,v2 01/11] netfilter: nf_tables: use net_generic infra for transaction data, Pablo Neira Ayuso
  - Re: [PATCH -stable,5.10,v2 01/11] netfilter: nf_tables: use net_generic infra for transaction data, Salvatore Bonaccorso
    - Re: [PATCH -stable,5.10,v2 01/11] netfilter: nf_tables: use net_generic infra for transaction data, Pablo Neira Ayuso
- [PATCH -stable,5.10,v2 02/11] netfilter: nf_tables: add rescheduling points during loop detection walks, Pablo Neira Ayuso
- [PATCH -stable,5.10,v2 06/11] netfilter: nf_tables: reject unbound anonymous set before commit phase, Pablo Neira Ayuso
- [PATCH -stable,5.10,v2 05/11] netfilter: nf_tables: add NFT_TRANS_PREPARE_ERROR to deal with bound set/chain, Pablo Neira Ayuso
- [PATCH -stable,5.10,v2 07/11] netfilter: nf_tables: reject unbound chain set before commit phase, Pablo Neira Ayuso
- [PATCH -stable,5.10,v2 08/11] netfilter: nftables: rename set element data activation/deactivation functions, Pablo Neira Ayuso
- [PATCH -stable,5.10,v2 10/11] netfilter: nf_tables: unbind non-anonymous set if rule construction fails, Pablo Neira Ayuso
- [PATCH -stable,5.10,v2 09/11] netfilter: nf_tables: drop map element references from preparation phase, Pablo Neira Ayuso
- [PATCH -stable,5.10,v2 11/11] netfilter: nf_tables: fix scheduling-while-atomic splat, Pablo Neira Ayuso
- Re: [PATCH -stable,5.10,v2 00/11] stable fixes for 5.10, Pablo Neira Ayuso
[PATCH -stable,5.10 00/10] stable fixes for 5.10, Pablo Neira Ayuso
- [PATCH -stable,5.10 03/10] netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE, Pablo Neira Ayuso
- [PATCH -stable,5.10 04/10] netfilter: nf_tables: fix chain binding transaction logic, Pablo Neira Ayuso
- [PATCH -stable,5.10 02/10] netfilter: nf_tables: add rescheduling points during loop detection walks, Pablo Neira Ayuso
  - Re: [PATCH -stable,5.10 02/10] netfilter: nf_tables: add rescheduling points during loop detection walks, Florian Westphal
    - Re: [PATCH -stable,5.10 02/10] netfilter: nf_tables: add rescheduling points during loop detection walks, Pablo Neira Ayuso
- [PATCH -stable,5.10 01/10] netfilter: nf_tables: use net_generic infra for transaction data, Pablo Neira Ayuso
- [PATCH -stable,5.10 05/10] netfilter: nf_tables: add NFT_TRANS_PREPARE_ERROR to deal with bound set/chain, Pablo Neira Ayuso
- [PATCH -stable,5.10 07/10] netfilter: nf_tables: reject unbound chain set before commit phase, Pablo Neira Ayuso
- [PATCH -stable,5.10 06/10] netfilter: nf_tables: reject unbound anonymous set before commit phase, Pablo Neira Ayuso
- [PATCH -stable,5.10 08/10] netfilter: nftables: rename set element data activation/deactivation functions, Pablo Neira Ayuso
- [PATCH -stable,5.10 09/10] netfilter: nf_tables: drop map element references from preparation phase, Pablo Neira Ayuso
- [PATCH -stable,5.10 10/10] netfilter: nf_tables: unbind non-anonymous set if rule construction fails, Pablo Neira Ayuso
[PATCH -stable,5.15 0/2] stable fixes for 5.15, Pablo Neira Ayuso
- [PATCH -stable,5.15 1/2] netfilter: nf_tables: drop map element references from preparation phase, Pablo Neira Ayuso
- [PATCH -stable,5.15 2/2] netfilter: nf_tables: unbind non-anonymous set if rule construction fails, Pablo Neira Ayuso
  - Re: [PATCH -stable,5.15 2/2] netfilter: nf_tables: unbind non-anonymous set if rule construction fails, Greg KH
    - Re: [PATCH -stable,5.15 2/2] netfilter: nf_tables: unbind non-anonymous set if rule construction fails, Florian Westphal
      - Re: [PATCH -stable,5.15 2/2] netfilter: nf_tables: unbind non-anonymous set if rule construction fails, Pablo Neira Ayuso
        
        Re: [PATCH -stable,5.15 2/2] netfilter: nf_tables: unbind non-anonymous set if rule construction fails, Greg KH
[PATCH] netfilter: nf_tables: prevent OOB access in nft_byteorder_eval, Thadeu Lima de Souza Cascardo
- Re: [PATCH] netfilter: nf_tables: prevent OOB access in nft_byteorder_eval, Florian Westphal
  - Re: [PATCH] netfilter: nf_tables: prevent OOB access in nft_byteorder_eval, Pablo Neira Ayuso
  - Re: [PATCH] netfilter: nf_tables: prevent OOB access in nft_byteorder_eval, Thadeu Lima de Souza Cascardo
    - Re: [PATCH] netfilter: nf_tables: prevent OOB access in nft_byteorder_eval, Florian Westphal
      - [PATCH v2] netfilter: nf_tables: prevent OOB access in nft_byteorder_eval, Thadeu Lima de Souza Cascardo
        
        Re: [PATCH v2] netfilter: nf_tables: prevent OOB access in nft_byteorder_eval, Florian Westphal
        
        Re: [PATCH v2] netfilter: nf_tables: prevent OOB access in nft_byteorder_eval, Pablo Neira Ayuso
        
        Re: [PATCH v2] netfilter: nf_tables: prevent OOB access in nft_byteorder_eval, Dan Carpenter
        
        Re: [PATCH v2] netfilter: nf_tables: prevent OOB access in nft_byteorder_eval, Florian Westphal
        
        Re: [PATCH v2] netfilter: nf_tables: prevent OOB access in nft_byteorder_eval, Dan Carpenter
[PATCH] netfilter: nf_tables: do not ignore genmask when looking up chain by id, Thadeu Lima de Souza Cascardo
- Re: [PATCH] netfilter: nf_tables: do not ignore genmask when looking up chain by id, Florian Westphal
[PATCH nf,v2] netfilter: nf_tables: report use refcount overflow, Pablo Neira Ayuso
[PATCH nf] netfilter: conntrack: don't fold port numbers into addresses before hashing, Florian Westphal
[PATCH nf v2] netfilter: conntrack: Avoid nf_ct_helper_hash uses after free, Florent Revest
- Re: [PATCH nf v2] netfilter: conntrack: Avoid nf_ct_helper_hash uses after free, Florian Westphal
[PATCH nf] netfilter: nf_tables: report use refcount overflow, Pablo Neira Ayuso
[PATCH nf] netfilter: conntrack: gre: don't set assured flag for clash entries, Florian Westphal
- Re: [PATCH nf] netfilter: conntrack: gre: don't set assured flag for clash entries, Pablo Neira Ayuso
[PATCH nft] expression: define .clone for catchall set element, Pablo Neira Ayuso
- <Possible follow-ups>
- [PATCH nft] expression: define .clone for catchall set element, Pablo Neira Ayuso
  - [PATCH nft] tests: shell: refcount memleak in map rhs with timeouts, Pablo Neira Ayuso
[PATCH AUTOSEL 6.1 10/12] netfilter: nf_tables: disallow timeout for anonymous sets, Sasha Levin
[PATCH AUTOSEL 5.15 4/5] netfilter: nf_tables: disallow timeout for anonymous sets, Sasha Levin
[PATCH AUTOSEL 6.3 13/17] netfilter: nf_tables: disallow timeout for anonymous sets, Sasha Levin
[PATCH AUTOSEL 6.3 14/17] netfilter: nf_tables: drop module reference after updating chain, Sasha Levin
[nft PATCH] tests: py: Document JSON mode in README, Phil Sutter
- Re: [nft PATCH] tests: py: Document JSON mode in README, Phil Sutter
[PATCH bpf-next 0/7] Support defragmenting IPv(4|6) packets in BPF, Daniel Xu
- [PATCH bpf-next 1/7] tools: libbpf: add netfilter link attach helper, Daniel Xu
  - Re: [PATCH bpf-next 1/7] tools: libbpf: add netfilter link attach helper, Andrii Nakryiko
- [PATCH bpf-next 2/7] selftests/bpf: Add bpf_program__attach_netfilter helper test, Daniel Xu
- [PATCH bpf-next 3/7] netfilter: defrag: Add glue hooks for enabling/disabling defrag, Daniel Xu
  - Re: [PATCH bpf-next 3/7] netfilter: defrag: Add glue hooks for enabling/disabling defrag, Florian Westphal
- [PATCH bpf-next 5/7] bpf: selftests: Support not connecting client socket, Daniel Xu
- [PATCH bpf-next 4/7] netfilter: bpf: Support BPF_F_NETFILTER_IP_DEFRAG in netfilter link, Daniel Xu
  - Re: [PATCH bpf-next 4/7] netfilter: bpf: Support BPF_F_NETFILTER_IP_DEFRAG in netfilter link, Florian Westphal
    - Re: [PATCH bpf-next 4/7] netfilter: bpf: Support BPF_F_NETFILTER_IP_DEFRAG in netfilter link, Daniel Xu
- [PATCH bpf-next 6/7] bpf: selftests: Support custom type and proto for client sockets, Daniel Xu
- [PATCH bpf-next 7/7] bpf: selftests: Add defrag selftests, Daniel Xu
- Re: [PATCH bpf-next 0/7] Support defragmenting IPv(4|6) packets in BPF, Florian Westphal
  - Re: [PATCH bpf-next 0/7] Support defragmenting IPv(4|6) packets in BPF, Daniel Xu
- Re: [PATCH bpf-next 0/7] Support defragmenting IPv(4|6) packets in BPF, Toke Høiland-Jørgensen
  - Re: [PATCH bpf-next 0/7] Support defragmenting IPv(4|6) packets in BPF, Daniel Xu
  - Re: [PATCH bpf-next 0/7] Support defragmenting IPv(4|6) packets in BPF, Florian Westphal
    - Re: [PATCH bpf-next 0/7] Support defragmenting IPv(4|6) packets in BPF, Toke Høiland-Jørgensen
      - Re: [PATCH bpf-next 0/7] Support defragmenting IPv(4|6) packets in BPF, Florian Westphal
        
        Re: [PATCH bpf-next 0/7] Support defragmenting IPv(4|6) packets in BPF, Toke Høiland-Jørgensen
        
        Re: [PATCH bpf-next 0/7] Support defragmenting IPv(4|6) packets in BPF, Florian Westphal
        
        Re: [PATCH bpf-next 0/7] Support defragmenting IPv(4|6) packets in BPF, Daniel Xu
[PATCH -stable,5.10 0/3] stable fixes for 5.10, Pablo Neira Ayuso
- [PATCH -stable,5.10 1/3] netfilter: nftables: statify nft_parse_register(), Pablo Neira Ayuso
- [PATCH -stable,5.10 2/3] netfilter: nf_tables: validate registers coming from userspace., Pablo Neira Ayuso
- [PATCH -stable,5.10 3/3] netfilter: nf_tables: hold mutex on netns pre_exit path, Pablo Neira Ayuso
- Re: [PATCH -stable,5.10 0/3] stable fixes for 5.10, Greg KH
[PATCH net-next 0/8] Netfilter/IPVS updates for net-next, Pablo Neira Ayuso
- [PATCH net-next 2/8] ipvs: dynamically limit the connection hash table, Pablo Neira Ayuso
- [PATCH net-next 4/8] netfilter: ipset: remove rcu_read_lock_bh pair from ip_set_test, Pablo Neira Ayuso
- [PATCH net-next 5/8] netfilter: nf_tables: permit update of set size, Pablo Neira Ayuso
- [PATCH net-next 7/8] netfilter: nf_tables: Introduce NFT_MSG_GETSETELEM_RESET, Pablo Neira Ayuso
- [PATCH net-next 6/8] netfilter: snat: evict closing tcp entries on reply tuple collision, Pablo Neira Ayuso
- [PATCH net-next 3/8] netfilter: nft_payload: rebuild vlan header when needed, Pablo Neira Ayuso
- [PATCH net-next 1/8] ipvs: increase ip_vs_conn_tab_bits range for 64BIT, Pablo Neira Ayuso
  - Re: [PATCH net-next 1/8] ipvs: increase ip_vs_conn_tab_bits range for 64BIT, patchwork-bot+netdevbpf
- [PATCH net-next 8/8] netfilter: nf_tables: limit allowed range via nla_policy, Pablo Neira Ayuso
Re: Kernel oops with netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE, Pablo Neira Ayuso
- Re: Kernel oops with netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE, Matthias Maier
[PATCH nf 1/2] netfilter: nf_tables: unbind non-anonymous set if rule construction fails, Pablo Neira Ayuso
- [PATCH nf 2/2] netfilter: nf_tables: fix underflow in chain reference counter, Pablo Neira Ayuso
Linux netfilter / iptables : How to enable iptables TRACE chain handling with nf_log_syslog on RHEL8+?, Jason Vas Dias
- Re: Linux netfilter / iptables : How to enable iptables TRACE chain handling with nf_log_syslog on RHEL8+?, Florian Westphal
  - RE: Linux netfilter / iptables : How to enable iptables TRACE chain handling with nf_log_syslog on RHEL8+?, Jason Vas Dias
    - Re: Linux netfilter / iptables : How to enable iptables TRACE chain handling with nf_log_syslog on RHEL8+?, Florian Westphal
[ulogd2 PATCH] Makefile: Create LZMA-compressed dist-files, Phil Sutter
- Re: [ulogd2 PATCH] Makefile: Create LZMA-compressed dist-files, Phil Sutter
[PATCH net] netfilter: nf_conntrack_sip: fix the ct_sip_parse_numerical_param() return value., Gavrilov Ilia
- Re: [PATCH net] netfilter: nf_conntrack_sip: fix the ct_sip_parse_numerical_param() return value., Florian Westphal
- Re: [PATCH net] netfilter: nf_conntrack_sip: fix the ct_sip_parse_numerical_param() return value., Pablo Neira Ayuso
[PATCH net-next] linux/netfilter.h: fix kernel-doc warnings, Randy Dunlap
- Re: [PATCH net-next] linux/netfilter.h: fix kernel-doc warnings, Simon Horman
- Re: [PATCH net-next] linux/netfilter.h: fix kernel-doc warnings, Pablo Neira Ayuso
Fwd: High cpu usage caused by kernel process when upgraded to linux 5.19.17 or later, Bagas Sanjaya
- Re: High cpu usage caused by kernel process when upgraded to linux 5.19.17 or later, Steven Rostedt
- Re: Fwd: High cpu usage caused by kernel process when upgraded to linux 5.19.17 or later, Bagas Sanjaya
  - Re: Fwd: High cpu usage caused by kernel process when upgraded to linux 5.19.17 or later, Peter Zijlstra
    - Re: Fwd: High cpu usage caused by kernel process when upgraded to linux 5.19.17 or later, Bagas Sanjaya
      - Re: Fwd: High cpu usage caused by kernel process when upgraded to linux 5.19.17 or later, Peter Zijlstra
        
        Message not available
        
        Re: Fwd: High cpu usage caused by kernel process when upgraded to linux 5.19.17 or later, Thomas Gleixner
        
        Message not available
        
        Re: High cpu usage caused by kernel process when upgraded to linux 5.19.17 or later, Steven Rostedt
- Re: Fwd: High cpu usage caused by kernel process when upgraded to linux 5.19.17 or later, Linux regression tracking #update (Thorsten Leemhuis)
[nft PATCH 0/4] cli: Make valgrind (kind of) happy, Phil Sutter
- [nft PATCH 3/4] cli: Make cli_init() return to caller, Phil Sutter
- [nft PATCH 2/4] main: Call nft_ctx_free() before exiting, Phil Sutter
- [nft PATCH 1/4] main: Make 'buf' variable branch-local, Phil Sutter
- [nft PATCH 4/4] tests: shell: Introduce valgrind mode, Phil Sutter
- Re: [nft PATCH 0/4] cli: Make valgrind (kind of) happy, Phil Sutter
ipset hash:net:port:net, Марк Коренберг
- Re: ipset hash:net:port:net, Jozsef Kadlecsik
[PATCH nf-next] netfilter: nf_tables: limit allowed range via nla_policy, Florian Westphal
vs conntrack changes TCP ports mid-stream, Sven Bartscher
- Re: vs conntrack changes TCP ports mid-stream, Julian Anastasov
[PATCH nf v2] netfilter: conntrack: dccp: copy entire header to stack buffer, not just basic one, Florian Westphal
- Re: [PATCH nf v2] netfilter: conntrack: dccp: copy entire header to stack buffer, not just basic one, Eric Dumazet
- Re: [PATCH nf v2] netfilter: conntrack: dccp: copy entire header to stack buffer, not just basic one, Pablo Neira Ayuso
[PATCH nf] netfilter: conntrack: dccp: copy entire header to stack buffer, not just basic one, Florian Westphal
- Re: [PATCH nf] netfilter: conntrack: dccp: copy entire header to stack buffer, not just basic one, Eric Dumazet
  - Re: [PATCH nf] netfilter: conntrack: dccp: copy entire header to stack buffer, not just basic one, Florian Westphal
[PATCH net,v3 00/14] Netfilter/IPVS fixes for net, Pablo Neira Ayuso
- [PATCH net 03/14] netfilter: nf_tables: add NFT_TRANS_PREPARE_ERROR to deal with bound set/chain, Pablo Neira Ayuso
- [PATCH net 01/14] ipvs: align inner_mac_header for encapsulation, Pablo Neira Ayuso
  - Re: [PATCH net 01/14] ipvs: align inner_mac_header for encapsulation, patchwork-bot+netdevbpf
- [PATCH net 11/14] netfilter: nf_tables: disallow timeout for anonymous sets, Pablo Neira Ayuso
- [PATCH net 05/14] netfilter: nft_set_pipapo: .walk does not deal with generations, Pablo Neira Ayuso
- [PATCH net 02/14] netfilter: nf_tables: fix chain binding transaction logic, Pablo Neira Ayuso
- [PATCH net 06/14] netfilter: nf_tables: fix underflow in object reference counter, Pablo Neira Ayuso
- [PATCH net 08/14] netfilter: nf_tables: reject unbound anonymous set before commit phase, Pablo Neira Ayuso
- [PATCH net 10/14] netfilter: nf_tables: disallow updates of anonymous sets, Pablo Neira Ayuso
- [PATCH net 09/14] netfilter: nf_tables: reject unbound chain set before commit phase, Pablo Neira Ayuso
- [PATCH net 14/14] netfilter: nf_tables: Fix for deleting base chains with payload, Pablo Neira Ayuso
- [PATCH net 07/14] netfilter: nf_tables: disallow element updates of bound anonymous sets, Pablo Neira Ayuso
- [PATCH net 12/14] netfilter: nf_tables: drop module reference after updating chain, Pablo Neira Ayuso
- [PATCH net 04/14] netfilter: nf_tables: drop map element references from preparation phase, Pablo Neira Ayuso
- [PATCH net 13/14] netfilter: nfnetlink_osf: fix module autoload, Pablo Neira Ayuso
[PATCH 09/11] sysctl: Remove the end element in sysctl table arrays, Joel Granados
- Re: [PATCH 09/11] sysctl: Remove the end element in sysctl table arrays, Jani Nikula
[PATCH 06/11] sysctl: Add size to register_net_sysctl function, Joel Granados
- Re: [PATCH 06/11] sysctl: Add size to register_net_sysctl function, Dan Carpenter
  - Re: [PATCH 06/11] sysctl: Add size to register_net_sysctl function, Dan Carpenter
    - Re: [PATCH 06/11] sysctl: Add size to register_net_sysctl function, Joel Granados
    - Re: [PATCH 06/11] sysctl: Add size to register_net_sysctl function, Joel Granados
  - Re: [PATCH 06/11] sysctl: Add size to register_net_sysctl function, Dan Carpenter
    - Re: [PATCH 06/11] sysctl: Add size to register_net_sysctl function, Joel Granados
  - Re: [PATCH 06/11] sysctl: Add size to register_net_sysctl function, Joel Granados
[PATCH] netfilter: Don't parse CTCP message if shorter than minimum length, Sohom
- Re: [PATCH] netfilter: Don't parse CTCP message if shorter than minimum length, Florian Westphal
[PATCH nf,v3 01/14] netfilter: nf_tables: fix chain binding transaction logic, Pablo Neira Ayuso
[PATCH nft] src: avoid IPPROTO_MAX for array definitions, Florian Westphal
- Re: [PATCH nft] src: avoid IPPROTO_MAX for array definitions, Pablo Neira Ayuso
  - Re: [PATCH nft] src: avoid IPPROTO_MAX for array definitions, Florian Westphal
    - Re: [PATCH nft] src: avoid IPPROTO_MAX for array definitions, Pablo Neira Ayuso
[PATCH nf-next v2] lib/ts_bm: add helper to reduce indentation and improve readability, Jeremy Sowden
[lvc-project] [PATCH] netfilter: ebtables: remove unnecessary NULL check, Igor Artemiev
- Re: [lvc-project] [PATCH] netfilter: ebtables: remove unnecessary NULL check, Florian Westphal
  - Re: [lvc-project] [PATCH] netfilter: ebtables: remove unnecessary NULL check, Igor A. Artemiev
    - Re: [lvc-project] [PATCH] netfilter: ebtables: remove unnecessary NULL check, Florian Westphal
[nft PATCH] cli: Make valgrind happy, Phil Sutter
- Re: [nft PATCH] cli: Make valgrind happy, Pablo Neira Ayuso
  - Re: [nft PATCH] cli: Make valgrind happy, Phil Sutter
    - Re: [nft PATCH] cli: Make valgrind happy, Pablo Neira Ayuso
[PATCH nft] json: add inner payload support, Pablo Neira Ayuso
CFS for Netdev 0x17 open!, Jamal Hadi Salim
[PATCH nft] src: add json support for last statement, Pablo Neira Ayuso
[PATCH net 00/14,v2] Netfilter/IPVS fixes for net, Pablo Neira Ayuso
- [PATCH net 03/14] netfilter: nf_tables: add NFT_TRANS_PREPARE_ERROR to deal with bound set/chain, Pablo Neira Ayuso
- [PATCH net 06/14] netfilter: nf_tables: fix underflow in object reference counter, Pablo Neira Ayuso
- [PATCH net 01/14] ipvs: align inner_mac_header for encapsulation, Pablo Neira Ayuso
- [PATCH net 05/14] netfilter: nft_set_pipapo: .walk does not deal with generations, Pablo Neira Ayuso
- [PATCH net 02/14] netfilter: nf_tables: fix chain binding transaction logic, Pablo Neira Ayuso
- [PATCH net 04/14] netfilter: nf_tables: drop map element references from preparation phase, Pablo Neira Ayuso
- [PATCH net 09/14] netfilter: nf_tables: reject unbound chain set before commit phase, Pablo Neira Ayuso
- [PATCH net 07/14] netfilter: nf_tables: disallow element updates of bound anonymous sets, Pablo Neira Ayuso
- [PATCH net 10/14] netfilter: nf_tables: disallow updates of anonymous sets, Pablo Neira Ayuso
- [PATCH net 12/14] netfilter: nf_tables: drop module reference after updating chain, Pablo Neira Ayuso
- [PATCH net 13/14] netfilter: nfnetlink_osf: fix module autoload, Pablo Neira Ayuso
- [PATCH net 08/14] netfilter: nf_tables: reject unbound anonymous set before commit phase, Pablo Neira Ayuso
- [PATCH net 11/14] netfilter: nf_tables: disallow timeout for anonymous sets, Pablo Neira Ayuso
- [PATCH net 14/14] netfilter: nf_tables: Fix for deleting base chains with payload, Pablo Neira Ayuso
- Re: [PATCH net 00/14,v2] Netfilter/IPVS fixes for net, Pablo Neira Ayuso
[PATCH nft 0/6] Misc parser fixes, Florian Westphal
- [PATCH nft 1/6] json: dccp: remove erroneous const qualifier, Florian Westphal
- [PATCH nft 2/6] evaluate: do not abort when prefix map has non-map element, Florian Westphal
- [PATCH nft 3/6] parser: don't assert on scope underflows, Florian Westphal
- [PATCH nft 4/6] parser: reject zero-length interface names, Florian Westphal
  - Re: [PATCH nft 4/6] parser: reject zero-length interface names, Pablo Neira Ayuso
- [PATCH nft 5/6] parser: reject zero-length interface names in flowtables, Florian Westphal
- [PATCH nft 6/6] ct timeout: fix 'list object x' vs. 'list objects in table' confusion, Florian Westphal
[PATCH nf-next] lib/ts_bm: add helper to reduce indentation and improve readability, Jeremy Sowden
- Re: [PATCH nf-next] lib/ts_bm: add helper to reduce indentation and improve readability, kernel test robot
  - Re: [PATCH nf-next] lib/ts_bm: add helper to reduce indentation and improve readability, Jeremy Sowden
- <Possible follow-ups>
- [PATCH nf-next] lib/ts_bm: add helper to reduce indentation and improve readability, Jeremy Sowden
  - Re: [PATCH nf-next] lib/ts_bm: add helper to reduce indentation and improve readability, Jeremy Sowden
[PATCH nf v2] lib/ts_bm: reset initial match offset for every block of text, Jeremy Sowden
- Re: [PATCH nf v2] lib/ts_bm: reset initial match offset for every block of text, Pablo Neira Ayuso

[Index of Archives] [LARTC] [Berkeley Packet Filter] [Bugtraq] [Yosemite Discussion]