Linux Netfilter / IP Tables Devel
[Prev Page][Next Page]
- Re: [PATCH v2 net-next] dissector: Use 64bits for used_keys, (continued)
- [syzbot] [netfilter?] WARNING in __nf_conntrack_confirm, syzbot
- Netfilter -stable patches for 6.1.y,
Pablo Neira Ayuso
- [PATCH 10/14] netfilter: Update to register_net_sysctl_sz,
Joel Granados
- [PATCH -next] nf_conntrack: fix -Wunused-const-variable=,
Zhu Wang
- [PATCH nft] netlink: delinearize: copy set keytype if needed, Florian Westphal
- ulogd2 patch ping,
Jeremy Sowden
- [PATCH 5.4 185/313] netfilter: nf_tables: add NFT_TRANS_PREPARE_ERROR to deal with bound set/chain, Greg Kroah-Hartman
- [PATCH 5.4 188/313] netfilter: nf_tables: fix scheduling-while-atomic splat, Greg Kroah-Hartman
- [PATCH 5.4 187/313] netfilter: nf_tables: unbind non-anonymous set if rule construction fails, Greg Kroah-Hartman
- [PATCH 5.4 186/313] netfilter: nf_tables: reject unbound anonymous set before commit phase, Greg Kroah-Hartman
- [PATCH 5.4 181/313] netfilter: add helper function to set up the nfnetlink header and use it, Greg Kroah-Hartman
- [PATCH 5.4 179/313] netfilter: nf_tables: fix nat hook table deletion, Greg Kroah-Hartman
- [PATCH 5.4 182/313] netfilter: nf_tables: use net_generic infra for transaction data, Greg Kroah-Hartman
- [PATCH 5.4 183/313] netfilter: nf_tables: add rescheduling points during loop detection walks, Greg Kroah-Hartman
- [PATCH 5.4 180/313] netfilter: nftables: add helper function to set the base sequence number, Greg Kroah-Hartman
- [PATCH 5.4 184/313] netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE, Greg Kroah-Hartman
- [PATCH 5.10 315/509] netfilter: nf_tables: fix chain binding transaction logic, Greg Kroah-Hartman
- [PATCH 5.10 320/509] netfilter: nf_tables: drop map element references from preparation phase, Greg Kroah-Hartman
- [PATCH 5.10 312/509] netfilter: nf_tables: use net_generic infra for transaction data, Greg Kroah-Hartman
- [PATCH 5.10 321/509] netfilter: nf_tables: unbind non-anonymous set if rule construction fails, Greg Kroah-Hartman
- [PATCH 5.10 317/509] netfilter: nf_tables: reject unbound anonymous set before commit phase, Greg Kroah-Hartman
- [PATCH 5.10 322/509] netfilter: nf_tables: fix scheduling-while-atomic splat, Greg Kroah-Hartman
- [PATCH 5.10 318/509] netfilter: nf_tables: reject unbound chain set before commit phase, Greg Kroah-Hartman
- [PATCH 5.10 319/509] netfilter: nftables: rename set element data activation/deactivation functions, Greg Kroah-Hartman
- [PATCH 5.10 316/509] netfilter: nf_tables: add NFT_TRANS_PREPARE_ERROR to deal with bound set/chain, Greg Kroah-Hartman
- [PATCH 5.10 313/509] netfilter: nf_tables: add rescheduling points during loop detection walks, Greg Kroah-Hartman
- [PATCH 5.10 314/509] netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE, Greg Kroah-Hartman
- [PATCH netfilter] netfilter: nfnetlink_log: always add a timestamp,
Maciej Żenczykowski
- Re: Kernel oops with 6.4.4 - flow offloads - NULL pointer deref,
Jakub Kicinski
- [PATCH v3 net-next] ipvs: make ip_vs_svc_table and ip_vs_svc_fwm_table per netns,
Dust Li
- [PATCH v2 net-next] ipvs: make ip_vs_svc_table and ip_vs_svc_fwm_table per netns,
Dust Li
- [PATCH nf] netfilter: nf_tables: disallow rule addition to bound chain via NFTA_RULE_CHAIN_ID, Pablo Neira Ayuso
- [PATCH nf,v2] netfilter: nf_tables: skip immediate deactivate in _PREPARE_ERROR, Pablo Neira Ayuso
- [PATCH ipset] bash-completion: fix syntax error,
Jeremy Sowden
- [PATCH bpf-next v6 0/5] Support defragmenting IPv(4|6) packets in BPF,
Daniel Xu
- [iptables PATCH 1/2] nft: Special casing for among match in compare_matches(),
Phil Sutter
- [PATCH bpf-next v5 0/5] Support defragmenting IPv(4|6) packets in BPF,
Daniel Xu
- [PATCH nf] netfilter: nft_set_rbtree: fix overlap expiration walk, Florian Westphal
- [PATCH net 1/5] netfilter: nf_tables: fix spurious set element insertion failure, Florian Westphal
- [PATCH net 0/5] Netfilter fixes for net:,
Florian Westphal
- [nft v3 PATCH 0/4] add input flags and "no-dns"/"json" flags,
Thomas Haller
- [PATCH nft] tests: shell: auto-run kmemleak if its available, Florian Westphal
- [nft PATCH] tests: monitor: Summarize failures per test case,
Phil Sutter
- [PATCH nf] netfilter: nf_tables: skip bound chain on rule flush, Pablo Neira Ayuso
- [PATCH nf] netfilter: nf_tables: skip immediate deactivate in _PREPARE_ERROR and _COMMIT,
Pablo Neira Ayuso
- [PATCH nf] netfilter: nf_tables: fix spurious set element insertion failure, Florian Westphal
- [PATCH nf] netfilter: nft_set_pipapo: fix improper element removal,
Florian Westphal
- [PATCH nf] netfilter: nf_tables: skip bound chain in netns release path, Pablo Neira Ayuso
- [iptables PATCH] tests: shell: Sanitize nft-only/0009-needless-bitwise_0,
Phil Sutter
- Re: [syzbot] [btrfs?] [netfilter?] BUG: MAX_LOCKDEP_CHAIN_HLOCKS too low! (2),
syzbot
- [PATCH nft] meta: stash context statement length when generating payload/meta dependency, Pablo Neira Ayuso
- libnftnl adding element to a set of type ipv4_addr or ipv6_addr,
Easynet
- [PATCH nft 1/2] update INSTALL file,
Pablo Neira Ayuso
- [nft PATCH] py: return boolean value from Nftables.__[gs]et_output_flag(),
Thomas Haller
- [PATCH nf-next 0/2] netfilter: nf_tables: use NLA_POLICY_MASK instead of manual checks,
Florian Westphal
- [PATCH nf] netfilter: nf_tables: can't schedule in nft_chain_validate, Florian Westphal
- [nft PATCH] tests/build/run-tests.sh: fix issues reported by shellcheck,
Arturo Borrero Gonzalez
- [iptables PATCH 0/3] Follow-up on dangling set fix,
Phil Sutter
- [PATCH nft] exthdr: prefer raw_type instead of desc->type, Florian Westphal
- [ANNOUNCE] nftables 1.0.8 release,
Pablo Neira Ayuso
- [PATCH -stable,5.10 v3 00/11] Netfilter stable fixes for 5.10,
Pablo Neira Ayuso
- [PATCH -stable,5.10 v3 04/11] netfilter: nf_tables: fix chain binding transaction logic, Pablo Neira Ayuso
- [PATCH -stable,5.10 v3 01/11] netfilter: nf_tables: use net_generic infra for transaction data, Pablo Neira Ayuso
- [PATCH -stable,5.10 v3 02/11] netfilter: nf_tables: add rescheduling points during loop detection walks, Pablo Neira Ayuso
- [PATCH -stable,5.10 v3 03/11] netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE, Pablo Neira Ayuso
- [PATCH -stable,5.10 v3 07/11] netfilter: nf_tables: reject unbound chain set before commit phase, Pablo Neira Ayuso
- [PATCH -stable,5.10 v3 05/11] netfilter: nf_tables: add NFT_TRANS_PREPARE_ERROR to deal with bound set/chain, Pablo Neira Ayuso
- [PATCH -stable,5.10 v3 06/11] netfilter: nf_tables: reject unbound anonymous set before commit phase, Pablo Neira Ayuso
- [PATCH -stable,5.10 v3 08/11] netfilter: nftables: rename set element data activation/deactivation functions, Pablo Neira Ayuso
- [PATCH -stable,5.10 v3 09/11] netfilter: nf_tables: drop map element references from preparation phase, Pablo Neira Ayuso
- [PATCH -stable,5.10 v3 11/11] netfilter: nf_tables: fix scheduling-while-atomic splat, Pablo Neira Ayuso
- [PATCH -stable,5.10 v3 10/11] netfilter: nf_tables: unbind non-anonymous set if rule construction fails, Pablo Neira Ayuso
- [PATCH -stable,5.15 v2 0/2] netfilter stable fixes for 5.15,
Pablo Neira Ayuso
- [PATCH bpf-next v4 0/6] Support defragmenting IPv(4|6) packets in BPF,
Daniel Xu
- [PATCH v2] netfilter: conntrack: validate cta_ip via parsing,
Lin Ma
- [PATCH iptables] nft-bridge: pass context structure to ops->add() to improve anonymous set support,
Pablo Neira Ayuso
- [PATCH 1/1] xt_asn: add matching dump [query] utility, Philip Prindeville
- [ANNOUNCE] libnftnl 1.2.6 release,
Pablo Neira Ayuso
- [PATCH v1] netfilter: conntrack: validate cta_ip via parsing,
Lin Ma
- [nft PATCH] nftables: add flag for nft context to avoid blocking getaddrinfo(),
Thomas Haller
- ebtables-nft can't delete complex rules by specifying complete rule with kernel 6.3+,
Igor Raits
- [nft PATCH 0/4] libnftables: minor cleanups initalizing nf_sock instance of nft_ctx,
Thomas Haller
- linux-next: branches to be removed,
Stephen Rothwell
- [PATCH 1/1] xt_asn: fix download script, Philip Prindeville
- [PATCH 1/1] xt_asn: support quiet mode,
Philip Prindeville
- [PATCH nft] evaluate: place byteorder conversion before rshift, Pablo Neira Ayuso
- [PATCH bpf-next v3 0/6] Support defragmenting IPv(4|6) packets in BPF,
Daniel Xu
- [PATCH net-next] ipvs: make ip_vs_svc_table and ip_vs_svc_fwm_table per netns,
Dust Li
- [PATCH bpf-next v2 0/6] Support defragmenting IPv(4|6) packets in BPF,
Daniel Xu
- [PATCH nft] netlink_linearize: use div_round_up in byteorder length,
Pablo Neira Ayuso
- [PATCH -stable,4.14 0/3] stable fixes for 4.14,
Pablo Neira Ayuso
- [PATCH -stable,4.19 00/10] stable fixes for 4.19,
Pablo Neira Ayuso
- [PATCH -stable,4.19 01/10] netfilter: nf_tables: fix nat hook table deletion, Pablo Neira Ayuso
- [PATCH -stable,4.19 02/10] netfilter: nf_tables: add rescheduling points during loop detection walks, Pablo Neira Ayuso
- [PATCH -stable,4.19 03/10] netfilter: nftables: add helper function to set the base sequence number, Pablo Neira Ayuso
- [PATCH -stable,4.19 04/10] netfilter: add helper function to set up the nfnetlink header and use it, Pablo Neira Ayuso
- [PATCH -stable,4.19 06/10] netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE, Pablo Neira Ayuso
- [PATCH -stable,4.19 07/10] netfilter: nf_tables: add NFT_TRANS_PREPARE_ERROR to deal with bound set/chain, Pablo Neira Ayuso
- [PATCH -stable,4.19 08/10] netfilter: nf_tables: reject unbound anonymous set before commit phase, Pablo Neira Ayuso
- [PATCH -stable,4.19 10/10] netfilter: nf_tables: fix scheduling-while-atomic splat, Pablo Neira Ayuso
- [PATCH -stable,4.19 05/10] netfilter: nf_tables: use net_generic infra for transaction data, Pablo Neira Ayuso
- [PATCH -stable,4.19 09/10] netfilter: nf_tables: unbind non-anonymous set if rule construction fails, Pablo Neira Ayuso
- Re: [PATCH -stable,4.19 00/10] stable fixes for 4.19, Greg KH
- [PATCH -stable,5.4 00/10] stable fixes for 5.4,
Pablo Neira Ayuso
- [PATCH -stable,5.4 02/10] netfilter: nftables: add helper function to set the base sequence number, Pablo Neira Ayuso
- [PATCH -stable,5.4 01/10] netfilter: nf_tables: fix nat hook table deletion, Pablo Neira Ayuso
- [PATCH -stable,5.4 03/10] netfilter: add helper function to set up the nfnetlink header and use it, Pablo Neira Ayuso
- [PATCH -stable,5.4 05/10] netfilter: nf_tables: add rescheduling points during loop detection walks, Pablo Neira Ayuso
- [PATCH -stable,5.4 04/10] netfilter: nf_tables: use net_generic infra for transaction data, Pablo Neira Ayuso
- [PATCH -stable,5.4 06/10] netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE, Pablo Neira Ayuso
- [PATCH -stable,5.4 09/10] netfilter: nf_tables: unbind non-anonymous set if rule construction fails, Pablo Neira Ayuso
- [PATCH -stable,5.4 08/10] netfilter: nf_tables: reject unbound anonymous set before commit phase, Pablo Neira Ayuso
- [PATCH -stable,5.4 10/10] netfilter: nf_tables: fix scheduling-while-atomic splat, Pablo Neira Ayuso
- [PATCH -stable,5.4 07/10] netfilter: nf_tables: add NFT_TRANS_PREPARE_ERROR to deal with bound set/chain, Pablo Neira Ayuso
- Re: [PATCH -stable,5.4 00/10] stable fixes for 5.4, Greg KH
- [PATCH -stable,5.10,v2 00/11] stable fixes for 5.10,
Pablo Neira Ayuso
- [PATCH -stable,5.10,v2 03/11] netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE, Pablo Neira Ayuso
- [PATCH -stable,5.10,v2 04/11] netfilter: nf_tables: fix chain binding transaction logic, Pablo Neira Ayuso
- [PATCH -stable,5.10,v2 01/11] netfilter: nf_tables: use net_generic infra for transaction data, Pablo Neira Ayuso
- [PATCH -stable,5.10,v2 02/11] netfilter: nf_tables: add rescheduling points during loop detection walks, Pablo Neira Ayuso
- [PATCH -stable,5.10,v2 06/11] netfilter: nf_tables: reject unbound anonymous set before commit phase, Pablo Neira Ayuso
- [PATCH -stable,5.10,v2 05/11] netfilter: nf_tables: add NFT_TRANS_PREPARE_ERROR to deal with bound set/chain, Pablo Neira Ayuso
- [PATCH -stable,5.10,v2 07/11] netfilter: nf_tables: reject unbound chain set before commit phase, Pablo Neira Ayuso
- [PATCH -stable,5.10,v2 08/11] netfilter: nftables: rename set element data activation/deactivation functions, Pablo Neira Ayuso
- [PATCH -stable,5.10,v2 10/11] netfilter: nf_tables: unbind non-anonymous set if rule construction fails, Pablo Neira Ayuso
- [PATCH -stable,5.10,v2 09/11] netfilter: nf_tables: drop map element references from preparation phase, Pablo Neira Ayuso
- [PATCH -stable,5.10,v2 11/11] netfilter: nf_tables: fix scheduling-while-atomic splat, Pablo Neira Ayuso
- Re: [PATCH -stable,5.10,v2 00/11] stable fixes for 5.10, Pablo Neira Ayuso
- [PATCH -stable,5.10 00/10] stable fixes for 5.10,
Pablo Neira Ayuso
- [PATCH -stable,5.10 03/10] netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE, Pablo Neira Ayuso
- [PATCH -stable,5.10 04/10] netfilter: nf_tables: fix chain binding transaction logic, Pablo Neira Ayuso
- [PATCH -stable,5.10 02/10] netfilter: nf_tables: add rescheduling points during loop detection walks, Pablo Neira Ayuso
- [PATCH -stable,5.10 01/10] netfilter: nf_tables: use net_generic infra for transaction data, Pablo Neira Ayuso
- [PATCH -stable,5.10 05/10] netfilter: nf_tables: add NFT_TRANS_PREPARE_ERROR to deal with bound set/chain, Pablo Neira Ayuso
- [PATCH -stable,5.10 07/10] netfilter: nf_tables: reject unbound chain set before commit phase, Pablo Neira Ayuso
- [PATCH -stable,5.10 06/10] netfilter: nf_tables: reject unbound anonymous set before commit phase, Pablo Neira Ayuso
- [PATCH -stable,5.10 08/10] netfilter: nftables: rename set element data activation/deactivation functions, Pablo Neira Ayuso
- [PATCH -stable,5.10 09/10] netfilter: nf_tables: drop map element references from preparation phase, Pablo Neira Ayuso
- [PATCH -stable,5.10 10/10] netfilter: nf_tables: unbind non-anonymous set if rule construction fails, Pablo Neira Ayuso
- [PATCH -stable,5.15 0/2] stable fixes for 5.15,
Pablo Neira Ayuso
- [PATCH] netfilter: nf_tables: prevent OOB access in nft_byteorder_eval,
Thadeu Lima de Souza Cascardo
- [PATCH] netfilter: nf_tables: do not ignore genmask when looking up chain by id,
Thadeu Lima de Souza Cascardo
- [PATCH nf,v2] netfilter: nf_tables: report use refcount overflow, Pablo Neira Ayuso
- [PATCH nf] netfilter: conntrack: don't fold port numbers into addresses before hashing, Florian Westphal
- [PATCH nf v2] netfilter: conntrack: Avoid nf_ct_helper_hash uses after free,
Florent Revest
- [PATCH nf] netfilter: nf_tables: report use refcount overflow, Pablo Neira Ayuso
- [PATCH nf] netfilter: conntrack: gre: don't set assured flag for clash entries,
Florian Westphal
- [PATCH nft] expression: define .clone for catchall set element,
Pablo Neira Ayuso
- [PATCH AUTOSEL 6.1 10/12] netfilter: nf_tables: disallow timeout for anonymous sets, Sasha Levin
- [PATCH AUTOSEL 5.15 4/5] netfilter: nf_tables: disallow timeout for anonymous sets, Sasha Levin
- [PATCH AUTOSEL 6.3 13/17] netfilter: nf_tables: disallow timeout for anonymous sets, Sasha Levin
- [PATCH AUTOSEL 6.3 14/17] netfilter: nf_tables: drop module reference after updating chain, Sasha Levin
- [nft PATCH] tests: py: Document JSON mode in README,
Phil Sutter
- [PATCH bpf-next 0/7] Support defragmenting IPv(4|6) packets in BPF,
Daniel Xu
- [PATCH -stable,5.10 0/3] stable fixes for 5.10,
Pablo Neira Ayuso
- [PATCH net-next 0/8] Netfilter/IPVS updates for net-next,
Pablo Neira Ayuso
- Re: Kernel oops with netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE,
Pablo Neira Ayuso
- [PATCH nf 1/2] netfilter: nf_tables: unbind non-anonymous set if rule construction fails,
Pablo Neira Ayuso
- Linux netfilter / iptables : How to enable iptables TRACE chain handling with nf_log_syslog on RHEL8+?,
Jason Vas Dias
- [ulogd2 PATCH] Makefile: Create LZMA-compressed dist-files,
Phil Sutter
- [PATCH net] netfilter: nf_conntrack_sip: fix the ct_sip_parse_numerical_param() return value.,
Gavrilov Ilia
- [PATCH net-next] linux/netfilter.h: fix kernel-doc warnings,
Randy Dunlap
- Fwd: High cpu usage caused by kernel process when upgraded to linux 5.19.17 or later,
Bagas Sanjaya
Re: Fwd: High cpu usage caused by kernel process when upgraded to linux 5.19.17 or later, Linux regression tracking #update (Thorsten Leemhuis)
[nft PATCH 0/4] cli: Make valgrind (kind of) happy,
Phil Sutter
ipset hash:net:port:net,
Марк Коренберг
[PATCH nf-next] netfilter: nf_tables: limit allowed range via nla_policy, Florian Westphal
vs conntrack changes TCP ports mid-stream,
Sven Bartscher
[PATCH nf v2] netfilter: conntrack: dccp: copy entire header to stack buffer, not just basic one,
Florian Westphal
[PATCH nf] netfilter: conntrack: dccp: copy entire header to stack buffer, not just basic one,
Florian Westphal
[PATCH net,v3 00/14] Netfilter/IPVS fixes for net,
Pablo Neira Ayuso
- [PATCH net 03/14] netfilter: nf_tables: add NFT_TRANS_PREPARE_ERROR to deal with bound set/chain, Pablo Neira Ayuso
- [PATCH net 01/14] ipvs: align inner_mac_header for encapsulation, Pablo Neira Ayuso
- [PATCH net 11/14] netfilter: nf_tables: disallow timeout for anonymous sets, Pablo Neira Ayuso
- [PATCH net 05/14] netfilter: nft_set_pipapo: .walk does not deal with generations, Pablo Neira Ayuso
- [PATCH net 02/14] netfilter: nf_tables: fix chain binding transaction logic, Pablo Neira Ayuso
- [PATCH net 06/14] netfilter: nf_tables: fix underflow in object reference counter, Pablo Neira Ayuso
- [PATCH net 08/14] netfilter: nf_tables: reject unbound anonymous set before commit phase, Pablo Neira Ayuso
- [PATCH net 10/14] netfilter: nf_tables: disallow updates of anonymous sets, Pablo Neira Ayuso
- [PATCH net 09/14] netfilter: nf_tables: reject unbound chain set before commit phase, Pablo Neira Ayuso
- [PATCH net 14/14] netfilter: nf_tables: Fix for deleting base chains with payload, Pablo Neira Ayuso
- [PATCH net 07/14] netfilter: nf_tables: disallow element updates of bound anonymous sets, Pablo Neira Ayuso
- [PATCH net 12/14] netfilter: nf_tables: drop module reference after updating chain, Pablo Neira Ayuso
- [PATCH net 04/14] netfilter: nf_tables: drop map element references from preparation phase, Pablo Neira Ayuso
- [PATCH net 13/14] netfilter: nfnetlink_osf: fix module autoload, Pablo Neira Ayuso
[PATCH 09/11] sysctl: Remove the end element in sysctl table arrays,
Joel Granados
[PATCH 06/11] sysctl: Add size to register_net_sysctl function,
Joel Granados
[PATCH] netfilter: Don't parse CTCP message if shorter than minimum length,
Sohom
[PATCH nf,v3 01/14] netfilter: nf_tables: fix chain binding transaction logic, Pablo Neira Ayuso
[PATCH nft] src: avoid IPPROTO_MAX for array definitions,
Florian Westphal
[PATCH nf-next v2] lib/ts_bm: add helper to reduce indentation and improve readability, Jeremy Sowden
[lvc-project] [PATCH] netfilter: ebtables: remove unnecessary NULL check,
Igor Artemiev
[nft PATCH] cli: Make valgrind happy,
Phil Sutter
[PATCH nft] json: add inner payload support, Pablo Neira Ayuso
CFS for Netdev 0x17 open!, Jamal Hadi Salim
[PATCH nft] src: add json support for last statement, Pablo Neira Ayuso
[PATCH net 00/14,v2] Netfilter/IPVS fixes for net,
Pablo Neira Ayuso
- [PATCH net 03/14] netfilter: nf_tables: add NFT_TRANS_PREPARE_ERROR to deal with bound set/chain, Pablo Neira Ayuso
- [PATCH net 06/14] netfilter: nf_tables: fix underflow in object reference counter, Pablo Neira Ayuso
- [PATCH net 01/14] ipvs: align inner_mac_header for encapsulation, Pablo Neira Ayuso
- [PATCH net 05/14] netfilter: nft_set_pipapo: .walk does not deal with generations, Pablo Neira Ayuso
- [PATCH net 02/14] netfilter: nf_tables: fix chain binding transaction logic, Pablo Neira Ayuso
- [PATCH net 04/14] netfilter: nf_tables: drop map element references from preparation phase, Pablo Neira Ayuso
- [PATCH net 09/14] netfilter: nf_tables: reject unbound chain set before commit phase, Pablo Neira Ayuso
- [PATCH net 07/14] netfilter: nf_tables: disallow element updates of bound anonymous sets, Pablo Neira Ayuso
- [PATCH net 10/14] netfilter: nf_tables: disallow updates of anonymous sets, Pablo Neira Ayuso
- [PATCH net 12/14] netfilter: nf_tables: drop module reference after updating chain, Pablo Neira Ayuso
- [PATCH net 13/14] netfilter: nfnetlink_osf: fix module autoload, Pablo Neira Ayuso
- [PATCH net 08/14] netfilter: nf_tables: reject unbound anonymous set before commit phase, Pablo Neira Ayuso
- [PATCH net 11/14] netfilter: nf_tables: disallow timeout for anonymous sets, Pablo Neira Ayuso
- [PATCH net 14/14] netfilter: nf_tables: Fix for deleting base chains with payload, Pablo Neira Ayuso
- Re: [PATCH net 00/14,v2] Netfilter/IPVS fixes for net, Pablo Neira Ayuso
[PATCH nft 0/6] Misc parser fixes,
Florian Westphal
[PATCH nf-next] lib/ts_bm: add helper to reduce indentation and improve readability,
Jeremy Sowden
[PATCH nf v2] lib/ts_bm: reset initial match offset for every block of text,
Jeremy Sowden
[PATCH net 00/14] Netfilter/IPVS fixes for net,
Pablo Neira Ayuso
- [PATCH net 01/14] ipvs: align inner_mac_header for encapsulation, Pablo Neira Ayuso
- [PATCH net 02/14] netfilter: nf_tables: fix chain binding transaction logic, Pablo Neira Ayuso
- [PATCH net 03/14] netfilter: nf_tables: add NFT_TRANS_PREPARE_ERROR to deal with bound set/chain, Pablo Neira Ayuso
- [PATCH net 04/14] netfilter: nf_tables: drop map element references from preparation phase, Pablo Neira Ayuso
- [PATCH net 05/14] netfilter: nft_set_pipapo: .walk does not deal with generations, Pablo Neira Ayuso
- [PATCH net 07/14] netfilter: nf_tables: disallow element updates of bound anonymous sets, Pablo Neira Ayuso
- [PATCH net 06/14] netfilter: nf_tables: fix underflow in object reference counter, Pablo Neira Ayuso
- [PATCH net 09/14] netfilter: nf_tables: reject unbound chain set before commit phase, Pablo Neira Ayuso
- [PATCH net 08/14] netfilter: nf_tables: reject unbound anonymous set before commit phase, Pablo Neira Ayuso
- [PATCH net 10/14] netfilter: nf_tables: disallow updates of anonymous sets, Pablo Neira Ayuso
- [PATCH net 12/14] netfilter: nf_tables: drop module reference after updating chain, Pablo Neira Ayuso
- [PATCH net 11/14] netfilter: nf_tables: disallow timeout for anonymous sets, Pablo Neira Ayuso
- [PATCH net 14/14] netfilter: nf_tables: Fix for deleting base chains with payload, Pablo Neira Ayuso
- [PATCH net 13/14] netfilter: nfnetlink_osf: fix module autoload, Pablo Neira Ayuso
[iptables PATCH] iptables: Fix handling of non-existent chains,
Jacek Tomasiak
[iptables PATCH] iptables: Fix setting of ipv6 counters,
Jacek Tomasiak
[PATCH nft] cache: include set elements in "nft set list",
Florian Westphal
Re: nft list sets changed behavior,
Florian Westphal
[nf PATCH] netfilter: nf_tables: Fix for deleting base chains with payload,
Phil Sutter
[PATCH nf,v4 01/10] netfilter: nf_tables: fix chain binding transaction logic,
Pablo Neira Ayuso
- [PATCH nf,v4 05/10] netfilter: nf_tables: fix underflow in object reference counter, Pablo Neira Ayuso
- [PATCH nf,v4 02/10] netfilter: nf_tables: add NFT_TRANS_PREPARE_ERROR to deal with bound set/chain, Pablo Neira Ayuso
- [PATCH nf,v4 08/10] netfilter: nf_tables: reject unbound chain set before commit phase, Pablo Neira Ayuso
- [PATCH nf,v4 07/10] netfilter: nf_tables: reject unbound anonymous set before commit phase, Pablo Neira Ayuso
- [PATCH nf,v4 06/10] netfilter: nf_tables: disallow element updates of bound anonymous sets, Pablo Neira Ayuso
- [PATCH nf,v4 04/10] netfilter: nft_set_pipapo: .walk does not deal with generations, Pablo Neira Ayuso
- [PATCH nf,v4 10/10] netfilter: nf_tables: disallow timeout for anonymous sets, Pablo Neira Ayuso
- [PATCH nf,v4 03/10] netfilter: nf_tables: drop map element references from preparation phase, Pablo Neira Ayuso
- [PATCH nf,v4 09/10] netfilter: nf_tables: disallow updates of anonymous sets, Pablo Neira Ayuso
[PATCH nf] netfilter: conntrack: Avoid nf_ct_helper_hash uses after free,
Florent Revest
[nft PATCH 0/3] Implement 'reset {set,map,element}' commands,
Phil Sutter
[nf-next PATCH] netfilter: nf_tables: Introduce NFT_MSG_GETSETELEM_RESET, Phil Sutter
[PATCH nf] netfilter: nfnetlink_osf: fix module autoload, Pablo Neira Ayuso
[PATCH nf] netfilter: nf_tables: drop module reference after updating chain, Pablo Neira Ayuso
[conntrack-tools PATCH] conntrack: Don't override mark in non-list mode,
Jacek Tomasiak
[PATCH nf,v3 01/10] netfilter: nf_tables: fix chain binding transaction logic,
Pablo Neira Ayuso
- [PATCH nf,v3 04/10] netfilter: nf_tables: reject unbound chain set before commit phase, Pablo Neira Ayuso
- [PATCH nf,v3 07/10] netfilter: nf_tables: add NFT_TRANS_PREPARE_ERROR to deal with bound set/chain, Pablo Neira Ayuso
- [PATCH nf,v3 03/10] netfilter: nf_tables: reject unbound anonymous set before commit phase, Pablo Neira Ayuso
- [PATCH nf,v3 06/10] netfilter: nf_tables: disallow timeout for anonymous sets, Pablo Neira Ayuso
- [PATCH nf,v3 10/10] netfilter: nf_tables: fix underflow in object reference counter, Pablo Neira Ayuso
- [PATCH nf,v3 05/10] netfilter: nf_tables: disallow updates of anonymous sets, Pablo Neira Ayuso
- [PATCH nf,v3 09/10] netfilter: nft_set_pipapo: .walk does not deal with generations, Pablo Neira Ayuso
- [PATCH nf,v3 02/10] netfilter: nf_tables: disallow element updates of bound anonymous sets, Pablo Neira Ayuso
- [PATCH nf,v3 08/10] netfilter: nf_tables: drop map element references from preparation phase, Pablo Neira Ayuso
[PATCH nft] tests: shell: bogus EBUSY errors in transactions, Pablo Neira Ayuso
[PATCH] netfilter: ipset: Replace strlcpy with strscpy,
Azeem Shaikh
[PATCH xtables-addons] xt_ipp2p: change text-search algo to KMP,
Jeremy Sowden
[PATCH nf,v2 1/7] netfilter: nf_tables: fix chain binding transaction logic,
Pablo Neira Ayuso
- [PATCH nf,v2 5/7] netfilter: nf_tables: disallow updates of anonymous sets, Pablo Neira Ayuso
- [PATCH nf,v2 4/7] netfilter: nf_tables: reject unbound chain set before commit phase, Pablo Neira Ayuso
- [PATCH nf,v2 3/7] netfilter: nf_tables: reject unbound anonymous set before commit phase, Pablo Neira Ayuso
- [PATCH nf,v2 2/7] netfilter: nf_tables: disallow element updates of bound anonymous sets, Pablo Neira Ayuso
- [PATCH nf,v2 7/7] netfilter: nf_tables: add NFT_TRANS_PREPARE_ERROR to deal with bound set/chain, Pablo Neira Ayuso
- [PATCH nf,v2 6/7] netfilter: nf_tables: disallow timeout for anonymous sets, Pablo Neira Ayuso
[PATCH nft] tests: shell: add test case for chain-in-use-splat, Florian Westphal
[PATCH nft] tests: shell: fix spurious errors in terse listing in json, Pablo Neira Ayuso
[PATCH nf 1/6] netfilter: nf_tables: fix chain binding transaction logic,
Pablo Neira Ayuso
[PATCH iptables] man: string: document BM false negatives,
Jeremy Sowden
[PATCH nf] lib/ts_bm: reset initial match offset for every block of text,
Jeremy Sowden
[PATCH v2] ipvs: align inner_mac_header for encapsulation,
Terin Stock
[PATCH net 1/1] net/sched: act_ct: Fix promotion of offloaded unreplied tuple,
Paul Blakey
[PATCH nf 1/3] netfilter: nf_tables: fix chain binding transaction logic,
Pablo Neira Ayuso
[PATCH iptables] nft: use payload matching for layer 4 protocol,
Pablo Neira Ayuso
[PATCH nf] netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE,
Pablo Neira Ayuso
[PATCH nf] netfilter: nfnetlink: skip error delivery on batch in case of ENOMEM, Pablo Neira Ayuso
[PATCH nf,v3] netfilter: nf_tables: integrate pipapo into commit protocol,
Pablo Neira Ayuso
[PATCH nf,v2] netfilter: nf_tables: integrate pipapo into commit protocol,
Pablo Neira Ayuso
xtables-addons passes through an IP from RU, Oláh Ambrus Sándor
[PATCH nf-next v2] netfilter: snat: evict closing tcp entries on reply tuple collision, Florian Westphal
[PATCH nf] netfilter: nf_tables: out-of-bound check in chain blob, Pablo Neira Ayuso
[PATCH nf-next,v2 0/7] nf_tables combo match,
Pablo Neira Ayuso
- [PATCH nf-next,v2 4/7] netfilter: nf_tables: add payload + cmp combo match, Pablo Neira Ayuso
- [PATCH nf-next,v2 2/7] netfilter: nf_tables: remove fast bitwise and fast cmp16, Pablo Neira Ayuso
- [PATCH nf-next,v2 7/7] netfilter: nf_tables: skip comment match when building blob, Pablo Neira Ayuso
- [PATCH nf-next,v2 3/7] netfilter: nf_tables: track register store and load operations, Pablo Neira Ayuso
- [PATCH nf-next,v2 6/7] netfilter: nf_tables: add payload + bitwise + cmp combo match, Pablo Neira Ayuso
- [PATCH nf-next,v2 5/7] netfilter: nf_tables: add meta + cmp combo match, Pablo Neira Ayuso
- [PATCH nf-next,v2 1/7] netfilter: nf_tables: remove expression reduce infrastructure, Pablo Neira Ayuso
[PATCH nf-next] netfilter: snat: evict closing tcp entries on reply tuple collision,
Florian Westphal
[PATCH nf-next] netfilter: nf_tables: permit update of set size, Florian Westphal
[PATCH nf-next] netfilter: ipset: remove rcu_read_lock_bh pair from ip_set_test, Florian Westphal
[PATCH nf-next] nft_payload: rebuild vlan header when needed, Pablo Neira Ayuso
[PATCH xtables-addons v2 0/7] xt_ipp2p: support for non-linear packets,
Jeremy Sowden
[Index of Archives]
[LARTC]
[Berkeley Packet Filter]
[Bugtraq]
[Yosemite Discussion]
