Linux Netfilter / IP Tables Devel

• Date Index

• Re: [PATCH v11.1] selftests/landlock: Add 11 new test suites dedicated to network, (continued)
  • Re: [PATCH v11.1] selftests/landlock: Add 11 new test suites dedicated to network, Konstantin Meskhidze (A)
  • Re: [PATCH v11.1] selftests/landlock: Add 11 new test suites dedicated to network, Konstantin Meskhidze (A)
    • Re: [PATCH v11.1] selftests/landlock: Add 11 new test suites dedicated to network, Mickaël Salaün
      • Re: [PATCH v11.1] selftests/landlock: Add 11 new test suites dedicated to network, Konstantin Meskhidze (A)
        • Re: [PATCH v11.1] selftests/landlock: Add 11 new test suites dedicated to network, Mickaël Salaün
          • Re: [PATCH v11.1] selftests/landlock: Add 11 new test suites dedicated to network, Konstantin Meskhidze (A)
            • Re: [PATCH v11.1] selftests/landlock: Add 11 new test suites dedicated to network, Mickaël Salaün
              • Re: [PATCH v11.1] selftests/landlock: Add 11 new test suites dedicated to network, Konstantin Meskhidze (A)
  • Re: [PATCH v11.1] selftests/landlock: Add 11 new test suites dedicated to network, Konstantin Meskhidze (A)
    • Re: [PATCH v11.1] selftests/landlock: Add 11 new test suites dedicated to network, Mickaël Salaün
      • Re: [PATCH v11.1] selftests/landlock: Add 11 new test suites dedicated to network, Konstantin Meskhidze (A)
        • Re: [PATCH v11.1] selftests/landlock: Add 11 new test suites dedicated to network, Mickaël Salaün
          • Re: [PATCH v11.1] selftests/landlock: Add 11 new test suites dedicated to network, Konstantin Meskhidze (A)
  • Re: [PATCH v11.1] selftests/landlock: Add 11 new test suites dedicated to network, Konstantin Meskhidze (A)
    • Re: [PATCH v11.1] selftests/landlock: Add 11 new test suites dedicated to network, Mickaël Salaün
      • [PATCH] landlock: Fix and test network AF inconsistencies, Mickaël Salaün
        • Re: [PATCH] landlock: Fix and test network AF inconsistencies, Konstantin Meskhidze (A)
          • Re: [PATCH] landlock: Fix and test network AF inconsistencies, Mickaël Salaün
            • Re: [PATCH] landlock: Fix and test network AF inconsistencies, Konstantin Meskhidze (A)
  • [PATCH v11 08/12] landlock: Add network rules and TCP hooks support, Konstantin Meskhidze
    • Re: [PATCH v11 08/12] landlock: Add network rules and TCP hooks support, Mickaël Salaün
      • Re: [PATCH v11 08/12] landlock: Add network rules and TCP hooks support, Konstantin Meskhidze (A)
    • Re: [PATCH v11 08/12] landlock: Add network rules and TCP hooks support, Mickaël Salaün
      • Re: [PATCH v11 08/12] landlock: Add network rules and TCP hooks support, Konstantin Meskhidze (A)
        • Re: [PATCH v11 08/12] landlock: Add network rules and TCP hooks support, Mickaël Salaün
          • Re: [PATCH v11 08/12] landlock: Add network rules and TCP hooks support, Konstantin Meskhidze (A)
    • Re: [PATCH v11 08/12] landlock: Add network rules and TCP hooks support, Mickaël Salaün
      • Re: [PATCH v11 08/12] landlock: Add network rules and TCP hooks support, Mickaël Salaün
        • Re: [PATCH v11 08/12] landlock: Add network rules and TCP hooks support, Konstantin Meskhidze (A)
      • Re: [PATCH v11 08/12] landlock: Add network rules and TCP hooks support, Konstantin Meskhidze (A)
    • Re: [PATCH v11 08/12] landlock: Add network rules and TCP hooks support, Günther Noack
      • Re: [PATCH v11 08/12] landlock: Add network rules and TCP hooks support, Konstantin Meskhidze (A)
    • Re: [PATCH v11 08/12] landlock: Add network rules and TCP hooks support, Mickaël Salaün
      • Re: [PATCH v11 08/12] landlock: Add network rules and TCP hooks support, Konstantin Meskhidze (A)
  • [PATCH v11 11/12] samples/landlock: Add network demo, Konstantin Meskhidze
    • Re: [PATCH v11 11/12] samples/landlock: Add network demo, Günther Noack
      • Re: [PATCH v11 11/12] samples/landlock: Add network demo, Konstantin Meskhidze (A)
        • Re: [PATCH v11 11/12] samples/landlock: Add network demo, Mickaël Salaün
          • Re: [PATCH v11 11/12] samples/landlock: Add network demo, Konstantin Meskhidze (A)
            • Re: [PATCH v11 11/12] samples/landlock: Add network demo, Mickaël Salaün
              • Re: [PATCH v11 11/12] samples/landlock: Add network demo, Konstantin Meskhidze (A)
                • Re: [PATCH v11 11/12] samples/landlock: Add network demo, Mickaël Salaün
                  • Re: [PATCH v11 11/12] samples/landlock: Add network demo, Konstantin Meskhidze (A)
                    • Re: [PATCH v11 11/12] samples/landlock: Add network demo, Mickaël Salaün
                      • Re: [PATCH v11 11/12] samples/landlock: Add network demo, Konstantin Meskhidze (A)
                        • Re: [PATCH v11 11/12] samples/landlock: Add network demo, Mickaël Salaün
                          • Re: [PATCH v11 11/12] samples/landlock: Add network demo, Konstantin Meskhidze (A)
  • Re: [PATCH v11 00/12] Network support for Landlock, Mickaël Salaün
    • Re: [PATCH v11 00/12] Network support for Landlock, Konstantin Meskhidze (A)
      • Re: [PATCH v11 00/12] Network support for Landlock, Mickaël Salaün
        • Re: [PATCH v11 00/12] Network support for Landlock, Konstantin Meskhidze (A)
          • Re: [PATCH v11 00/12] Network support for Landlock, Mickaël Salaün
• [PATCH v2] ipvs: increase ip_vs_conn_tab_bits range for 64BIT, Abhijeet Rastogi
  • Re: [PATCH v2] ipvs: increase ip_vs_conn_tab_bits range for 64BIT, Julian Anastasov
    • Re: [PATCH v2] ipvs: increase ip_vs_conn_tab_bits range for 64BIT, Abhijeet Rastogi
      • Re: [PATCH v2] ipvs: increase ip_vs_conn_tab_bits range for 64BIT, Julian Anastasov
        • Re: [PATCH v2] ipvs: increase ip_vs_conn_tab_bits range for 64BIT, Abhijeet Rastogi
• [PATCH] netfilter: conntrack: define variables exp_nat_nla_policy and any_addr with CONFIG_NF_NAT, Tom Rix
  • Re: [PATCH] netfilter: conntrack: define variables exp_nat_nla_policy and any_addr with CONFIG_NF_NAT, Simon Horman
• [PATCH nf-next] netfilter: nf_tables: relax set/map validation checks, Florian Westphal
• [PATCH nf-next] netfilter: nf_tables: always increment set element count, Florian Westphal
• [PATCH nf] netfilter: nft_set_rbtree: fix null deref on element insertion, Florian Westphal
• [PATCH AUTOSEL 5.15 4/5] netfilter: nf_tables: deactivate anonymous set from preparation phase, Sasha Levin
• [PATCH AUTOSEL 4.19 2/2] netfilter: nf_tables: deactivate anonymous set from preparation phase, Sasha Levin
• [PATCH AUTOSEL 5.4 2/2] netfilter: nf_tables: deactivate anonymous set from preparation phase, Sasha Levin
• [PATCH AUTOSEL 5.10 3/3] netfilter: nf_tables: deactivate anonymous set from preparation phase, Sasha Levin
• [PATCH AUTOSEL 6.1 7/9] netfilter: nf_tables: deactivate anonymous set from preparation phase, Sasha Levin
• [PATCH AUTOSEL 6.2 08/10] netfilter: nf_tables: deactivate anonymous set from preparation phase, Sasha Levin
• [PATCH AUTOSEL 6.3 09/11] netfilter: nf_tables: deactivate anonymous set from preparation phase, Sasha Levin
• [PATCH netfilter -stable,4.14 0/6] stable fixes for 4.14, Pablo Neira Ayuso
  • [PATCH -stable,4.14 1/6] netfilter: nf_tables: split set destruction in deactivate and destroy phase, Pablo Neira Ayuso
  • [PATCH -stable,4.14 4/6] netfilter: nf_tables: use-after-free in failing rule with bound set, Pablo Neira Ayuso
  • [PATCH -stable,4.14 6/6] netfilter: nf_tables: deactivate anonymous set from preparation phase, Pablo Neira Ayuso
  • [PATCH -stable,4.14 2/6] netfilter: nf_tables: unbind set in rule from commit path, Pablo Neira Ayuso
  • [PATCH -stable,4.14 3/6] netfilter: nft_hash: fix nft_hash_deactivate, Pablo Neira Ayuso
  • [PATCH -stable,4.14 5/6] netfilter: nf_tables: bogus EBUSY when deleting set after flush, Pablo Neira Ayuso
  • Re: [PATCH netfilter -stable,4.14 0/6] stable fixes for 4.14, Sasha Levin
  • Re: [PATCH netfilter -stable,4.14 0/6] stable fixes for 4.14, luwei (O)
    • Re: [PATCH netfilter -stable,4.14 0/6] stable fixes for 4.14, Greg KH
• [PATCH nf] netfilter: nf_tables: fix nft_trans type confusion, Florian Westphal
• [PATCH nf-next,v2 1/3] netfilter: flowtable: simplify route logic, Pablo Neira Ayuso
  • [PATCH nf-next,v2 3/3] netfilter: flowtable: split IPv6 datapath in helper functions, Pablo Neira Ayuso
  • [PATCH nf-next,v2 2/3] netfilter: flowtable: split IPv4 datapath in helper functions, Pablo Neira Ayuso
• [PATCH RESEND 0/4] Fix oops about sleeping in led_trigger_blink(), Hans de Goede
  • [PATCH RESEND 2/4] leds: Fix set_brightness_delayed() race, Hans de Goede
    • Re: [PATCH RESEND 2/4] leds: Fix set_brightness_delayed() race, Lee Jones
  • [PATCH RESEND 3/4] leds: Fix oops about sleeping in led_trigger_blink(), Hans de Goede
    • Re: [PATCH RESEND 3/4] leds: Fix oops about sleeping in led_trigger_blink(), Lee Jones
  • [PATCH RESEND 1/4] leds: Change led_trigger_blink[_oneshot]() delay parameters to pass-by-value, Hans de Goede
    • Re: [PATCH RESEND 1/4] leds: Change led_trigger_blink[_oneshot]() delay parameters to pass-by-value, Sebastian Reichel
    • Re: [PATCH RESEND 1/4] leds: Change led_trigger_blink[_oneshot]() delay parameters to pass-by-value, Florian Westphal
    • Re: [PATCH RESEND 1/4] leds: Change led_trigger_blink[_oneshot]() delay parameters to pass-by-value, Greg Kroah-Hartman
    • Re: [PATCH RESEND 1/4] leds: Change led_trigger_blink[_oneshot]() delay parameters to pass-by-value, Lee Jones
  • [PATCH RESEND 4/4] leds: Clear LED_INIT_DEFAULT_TRIGGER when clearing current trigger, Hans de Goede
    • Re: [PATCH RESEND 4/4] leds: Clear LED_INIT_DEFAULT_TRIGGER when clearing current trigger, Lee Jones
• Anouncement: Netdevconf 0x17, Jamal Hadi Salim
• [PATCH net 0/7] Netfilter updates for net, Pablo Neira Ayuso
  • [PATCH net 6/7] selftests: nft_flowtable.sh: monitor result file sizes, Pablo Neira Ayuso
  • [PATCH net 2/7] netfilter: conntrack: fix possible bug_on with enable_hooks=1, Pablo Neira Ayuso
  • [PATCH net 3/7] selftests: nft_flowtable.sh: use /proc for pid checking, Pablo Neira Ayuso
  • [PATCH net 7/7] selftests: nft_flowtable.sh: check ingress/egress chain too, Pablo Neira Ayuso
  • [PATCH net 4/7] selftests: nft_flowtable.sh: no need for ps -x option, Pablo Neira Ayuso
  • [PATCH net 5/7] selftests: nft_flowtable.sh: wait for specific nc pids, Pablo Neira Ayuso
  • [PATCH net 1/7] netfilter: nf_tables: always release netdev hooks from notifier, Pablo Neira Ayuso
    • Re: [PATCH net 1/7] netfilter: nf_tables: always release netdev hooks from notifier, patchwork-bot+netdevbpf
  • <Possible follow-ups>
  • [PATCH net 0/7] netfilter updates for net, Florian Westphal
    • [PATCH net 1/7] netfilter: nf_tables: do not remove elements if set backend implements .abort, Florian Westphal
      • Re: [PATCH net 1/7] netfilter: nf_tables: do not remove elements if set backend implements .abort, patchwork-bot+netdevbpf
    • [PATCH net 3/7] netfilter: nf_tables: Annotate struct nft_pipapo_match with __counted_by, Florian Westphal
    • [PATCH net 5/7] nf_tables: fix NULL pointer dereference in nft_inner_init(), Florian Westphal
    • [PATCH net 4/7] netfilter: nf_tables: do not refresh timeout when resetting element, Florian Westphal
    • [PATCH net 2/7] netfilter: nfnetlink_log: silence bogus compiler warning, Florian Westphal
    • [PATCH net 6/7] nf_tables: fix NULL pointer dereference in nft_expr_inner_parse(), Florian Westphal
    • [PATCH net 7/7] netfilter: nft_payload: fix wrong mac header matching, Florian Westphal
• [PATCH nf-next 1/3] netfilter: flowtable: simplify route logic, Pablo Neira Ayuso
  • [PATCH nf-next 2/3] netfilter: flowtable: split IPv4 datapath in helper functions, Pablo Neira Ayuso
  • [PATCH nf-next 3/3] netfilter: flowtable: split IPv6 datapath in helper functions, Pablo Neira Ayuso
• [PATCH nf-next v4] netfilter: nft_exthdr: add boolean DCCP option matching, Jeremy Sowden
• [PATCH nft 1/2] datatype: misspell support with symbol table parser for error reporting, Pablo Neira Ayuso
  • [PATCH nft 2/2] datatype: add hint on error handler, Pablo Neira Ayuso
• [PATCH nf] testing: selftests: nft_flowtable.sh: check ingress/egress chain too, Florian Westphal
  • Re: [PATCH nf] testing: selftests: nft_flowtable.sh: check ingress/egress chain too, Pablo Neira Ayuso
• [PATCH net-next] netfilter: Reorder fields in 'struct nf_conntrack_expect', Christophe JAILLET
  • Re: [PATCH net-next] netfilter: Reorder fields in 'struct nf_conntrack_expect', Simon Horman
• [PATCH nft 1/3] evaluate: allow stateful statements with anonymous verdict maps, Pablo Neira Ayuso
  • [PATCH nft 2/3] evaluate: skip optimization if anonymous set uses stateful statement, Pablo Neira Ayuso
  • [PATCH nft 3/3] optimize: do not remove counter in verdict maps, Pablo Neira Ayuso
• [PATCH 0/2] netfilter: nfnetlink_log & nfnetlink_queue: enable cgroup id socket info, Patryk Sondej
  • [PATCH 1/2] netfilter: nfnetlink_log: enable cgroup id socket info retrieval, Patryk Sondej
  • [PATCH 2/2] netfilter: nfnetlink_queue: enable cgroup id socket info retrieval, Patryk Sondej
    • Re: [PATCH 2/2] netfilter: nfnetlink_queue: enable cgroup id socket info retrieval, kernel test robot
  • Re: [PATCH 0/2] netfilter: nfnetlink_log & nfnetlink_queue: enable cgroup id socket info, Florian Westphal
• [PATCH net-next] netfilter: nft_set_pipapo: Use struct_size(), Christophe JAILLET
• [PATCH v2 net-next] netfilter: nft_set_pipapo: Use struct_size(), Christophe JAILLET
  • Re: [PATCH v2 net-next] netfilter: nft_set_pipapo: Use struct_size(), Simon Horman
• [iptables PATCH 0/4] Implement a best-effort forward compat solution, Phil Sutter
  • [iptables PATCH 1/4] nft: Pass nft_handle to add_{target,action}(), Phil Sutter
  • [iptables PATCH 4/4] tests: Test compat mode, Phil Sutter
  • [iptables PATCH 3/4] Add --compat option to *tables-nft and *-nft-restore commands, Phil Sutter
    • Re: [iptables PATCH 3/4] Add --compat option to *tables-nft and *-nft-restore commands, Pablo Neira Ayuso
      • Re: [iptables PATCH 3/4] Add --compat option to *tables-nft and *-nft-restore commands, Phil Sutter
        • Re: [iptables PATCH 3/4] Add --compat option to *tables-nft and *-nft-restore commands, Florian Westphal
          • Re: [iptables PATCH 3/4] Add --compat option to *tables-nft and *-nft-restore commands, Phil Sutter
            • Re: [iptables PATCH 3/4] Add --compat option to *tables-nft and *-nft-restore commands, Phil Sutter
  • [iptables PATCH 2/4] nft: Introduce and use bool nft_handle::compat, Phil Sutter
• [PATCH 00/11 nf-next,v1] track, reduce and prefetch expression, Pablo Neira Ayuso
  • [PATCH nf-next,v1 01/12] netfilter: nf_tables: add nft_expr_info_setup() helper function, Pablo Neira Ayuso
  • [PATCH nf-next,v1 03/12] netfilter: nf_tables: update nft_copy_data() to take struct nft_regs, Pablo Neira Ayuso
  • [PATCH nf-next,v1 02/12] netfilter: nf_tables: add nft_reg_store_*() and use it, Pablo Neira Ayuso
  • [PATCH nf-next,v1 06/12] netfilter: nf_tables: add struct nft_reg_track and use it, Pablo Neira Ayuso
  • [PATCH nf-next,v1 04/12] netfilter: nf_tables: add nft_reg_load*() and use it, Pablo Neira Ayuso
  • [PATCH nf-next,v1 05/12] netfilter: nf_tables: check if register contains valid data before access, Pablo Neira Ayuso
  • [PATCH nf-next,v1 08/12] netfilter: nf_tables: remove bitwise register tracking, Pablo Neira Ayuso
  • [PATCH nf-next,v1 07/12] netfilter: nf_tables: split expression comparison and reduction, Pablo Neira Ayuso
  • [PATCH nf-next,v1 09/12] netfilter: nf_tables: cancel tracking when register differs from expression, Pablo Neira Ayuso
  • [PATCH nf-next,v1 11/12] netfilter: nf_tables: add expression prefetch infrastructure, Pablo Neira Ayuso
  • [PATCH nf-next,v1 12/12] netfilter: nf_tables: re-enable expression reduction, Pablo Neira Ayuso
  • [PATCH nf-next,v1 10/12] netfilter: nf_tables: add track infrastructure to prepare for expression prefetch, Pablo Neira Ayuso
  • Re: [PATCH 00/11 nf-next,v1] track, reduce and prefetch expression, Florian Westphal
• nft transaction semantics and flowtable hw offload, Florian Westphal
  • Re: nft transaction semantics and flowtable hw offload, Pablo Neira Ayuso
    • Re: nft transaction semantics and flowtable hw offload, Florian Westphal
  • Re: nft transaction semantics and flowtable hw offload, Pablo Neira Ayuso
• [PATCH nf-next 0/3] netfilter: nf_tables: reject loads from uninitialized registers, Florian Westphal
  • [PATCH nf-next 3/3] netfilter: nf_tables: don't initialize registers in nft_do_chain(), Florian Westphal
  • [PATCH nf-next 2/3] netfilter: nf_tables: validate register loads never access unitialised registers, Florian Westphal
    • Re: [PATCH nf-next 2/3] netfilter: nf_tables: validate register loads never access unitialised registers, Pablo Neira Ayuso
      • Re: [PATCH nf-next 2/3] netfilter: nf_tables: validate register loads never access unitialised registers, Florian Westphal
  • [PATCH nf-next 1/3] netfilter: nf_tables: pass context structure to nft_parse_register_load, Florian Westphal
  • Re: [PATCH nf-next 0/3] netfilter: nf_tables: reject loads from uninitialized registers, Phil Sutter
    • Re: [PATCH nf-next 0/3] netfilter: nf_tables: reject loads from uninitialized registers, Florian Westphal
      • Re: [PATCH nf-next 0/3] netfilter: nf_tables: reject loads from uninitialized registers, Phil Sutter
  • Re: [PATCH nf-next 0/3] netfilter: nf_tables: reject loads from uninitialized registers, Pablo Neira Ayuso
    • Re: [PATCH nf-next 0/3] netfilter: nf_tables: reject loads from uninitialized registers, Florian Westphal
      • Re: [PATCH nf-next 0/3] netfilter: nf_tables: reject loads from uninitialized registers, Pablo Neira Ayuso
        • Re: [PATCH nf-next 0/3] netfilter: nf_tables: reject loads from uninitialized registers, Florian Westphal
          • Re: [PATCH nf-next 0/3] netfilter: nf_tables: reject loads from uninitialized registers, Pablo Neira Ayuso
            • Re: [PATCH nf-next 0/3] netfilter: nf_tables: reject loads from uninitialized registers, Florian Westphal
              • Re: [PATCH nf-next 0/3] netfilter: nf_tables: reject loads from uninitialized registers, Florian Westphal
• [PATCH AUTOSEL 5.10 22/24] ipvs: Update width of source for ip_vs_sync_conn_options, Sasha Levin
• [PATCH AUTOSEL 6.1 39/49] ipvs: Update width of source for ip_vs_sync_conn_options, Sasha Levin
• [PATCH AUTOSEL 5.15 27/30] ipvs: Update width of source for ip_vs_sync_conn_options, Sasha Levin
• [PATCH AUTOSEL 6.2 43/53] ipvs: Update width of source for ip_vs_sync_conn_options, Sasha Levin
• [PATCH AUTOSEL 6.3 49/59] ipvs: Update width of source for ip_vs_sync_conn_options, Sasha Levin
• [PATCH nf] netfilter: fix possible bug_on with enable_hooks=1, Florian Westphal
  • Re: [PATCH nf] netfilter: fix possible bug_on with enable_hooks=1, Pablo Neira Ayuso
• [PATCH nf] netfilter: nf_tables: always release netdev hooks from notifier, Florian Westphal
  • Re: [PATCH nf] netfilter: nf_tables: always release netdev hooks from notifier, Pablo Neira Ayuso
• [PATCH nf-next v2 0/4] selftest: netfilter: small test tweaks, Boris Sukholitko
  • [PATCH nf-next v2 2/4] selftest: netfilter: no need for ps -x option, Boris Sukholitko
  • [PATCH nf-next v2 4/4] selftest: netfilter: monitor result file sizes, Boris Sukholitko
  • [PATCH nf-next v2 3/4] selftest: netfilter: wait for specific nc pids, Boris Sukholitko
  • [PATCH nf-next v2 1/4] selftest: netfilter: use /proc for pid checking, Boris Sukholitko
  • Re: [PATCH nf-next v2 0/4] selftest: netfilter: small test tweaks, Pablo Neira Ayuso
• [PATCH nft] payload: add offload flag to the statements, Boris Sukholitko
• [PATCH nf-next 00/19] netfilter: nftables: dscp modification offload, Boris Sukholitko
  • [PATCH nf-next 02/19] selftest: netfilter: no need for ps -x option, Boris Sukholitko
    • Re: [PATCH nf-next 02/19] selftest: netfilter: no need for ps -x option, Florian Westphal
  • [PATCH nf-next 01/19] selftest: netfilter: use /proc for pid checking, Boris Sukholitko
    • Re: [PATCH nf-next 01/19] selftest: netfilter: use /proc for pid checking, Florian Westphal
      • Re: [PATCH nf-next 01/19] selftest: netfilter: use /proc for pid checking, Boris Sukholitko
  • [PATCH nf-next 03/19] selftest: netfilter: wait for specific nc pids, Boris Sukholitko
  • [PATCH nf-next 04/19] selftest: netfilter: monitor result file sizes, Boris Sukholitko
    • Re: [PATCH nf-next 04/19] selftest: netfilter: monitor result file sizes, Florian Westphal
  • [PATCH nf-next 06/19] netfilter: nft_payload: publish nft_payload_set, Boris Sukholitko
  • [PATCH nf-next 05/19] netfilter: nft_payload: refactor mangle operation, Boris Sukholitko
  • [PATCH nf-next 07/19] netfilter: nft_payload: export mangle, Boris Sukholitko
  • [PATCH nf-next 09/19] netfilter: nft_payload: add offload flag define, Boris Sukholitko
  • [PATCH nf-next 08/19] netfilter: nft_payload: use flag for checksum need, Boris Sukholitko
  • [PATCH nf-next 11/19] netfilter: conntrack: nft extension Kconfig, Boris Sukholitko
  • [PATCH nf-next 12/19] netfilter: nft: empty nft conntrack extension, Boris Sukholitko
  • [PATCH nf-next 10/19] netfilter: nft_payload: allow offload in the netlink, Boris Sukholitko
  • [PATCH nf-next 14/19] netfilter: nft: add payload context into extension, Boris Sukholitko
  • [PATCH nf-next 13/19] netfilter: conntrack: register nft extension, Boris Sukholitko
  • [PATCH nf-next 16/19] netfilter: nftables: fast path payload mangle, Boris Sukholitko
    • Re: [PATCH nf-next 16/19] netfilter: nftables: fast path payload mangle, kernel test robot
  • [PATCH nf-next 15/19] netfilter: nft: add payload application, Boris Sukholitko
    • Re: [PATCH nf-next 15/19] netfilter: nft: add payload application, kernel test robot
    • Re: [PATCH nf-next 15/19] netfilter: nft: add payload application, kernel test robot
  • [PATCH nf-next 17/19] netfilter: nftables: payload save mechanism, Boris Sukholitko
  • [PATCH nf-next 19/19] selftests: netfilter: dscp offload test, Boris Sukholitko
  • [PATCH nf-next 18/19] netfilter: nft_payload: save payload if needed, Boris Sukholitko
  • Re: [PATCH nf-next 00/19] netfilter: nftables: dscp modification offload, Florian Westphal
    • Re: [PATCH nf-next 00/19] netfilter: nftables: dscp modification offload, Boris Sukholitko
      • Re: [PATCH nf-next 00/19] netfilter: nftables: dscp modification offload, Florian Westphal
        • Re: [PATCH nf-next 00/19] netfilter: nftables: dscp modification offload, Boris Sukholitko
          • Re: [PATCH nf-next 00/19] netfilter: nftables: dscp modification offload, Pablo Neira Ayuso
            • Re: [PATCH nf-next 00/19] netfilter: nftables: dscp modification offload, Boris Sukholitko
          • Re: [PATCH nf-next 00/19] netfilter: nftables: dscp modification offload, Florian Westphal
            • Re: [PATCH nf-next 00/19] netfilter: nftables: dscp modification offload, Boris Sukholitko
              • Re: [PATCH nf-next 00/19] netfilter: nftables: dscp modification offload, Florian Westphal
                • Re: [PATCH nf-next 00/19] netfilter: nftables: dscp modification offload, Boris Sukholitko
                  • Re: [PATCH nf-next 00/19] netfilter: nftables: dscp modification offload, Florian Westphal
  • Re: [PATCH nf-next 00/19] netfilter: nftables: dscp modification offload, Pablo Neira Ayuso
  • Re: [PATCH nf-next 00/19] netfilter: nftables: dscp modification offload, Pablo Neira Ayuso
    • Re: [PATCH nf-next 00/19] netfilter: nftables: dscp modification offload, Boris Sukholitko
• [nft PATCH] evaluate: Reject set stmt refs to sets without dynamic flag, Phil Sutter
  • Re: [nft PATCH] evaluate: Reject set stmt refs to sets without dynamic flag, Pablo Neira Ayuso
    • Re: [nft PATCH] evaluate: Reject set stmt refs to sets without dynamic flag, Phil Sutter
      • Re: [nft PATCH] evaluate: Reject set stmt refs to sets without dynamic flag, Pablo Neira Ayuso
        • Re: [nft PATCH] evaluate: Reject set stmt refs to sets without dynamic flag, Phil Sutter
        • Re: [nft PATCH] evaluate: Reject set stmt refs to sets without dynamic flag, Pablo Neira Ayuso
• [PATCH nf] netfilter: nf_tables: fix ct untracked match breakage, Florian Westphal
  • Re: [PATCH nf] netfilter: nf_tables: fix ct untracked match breakage, Pablo Neira Ayuso
• [PATCH nf] netfilter: nf_tables: deactivate anonymous set from preparation phase, Pablo Neira Ayuso
• [PATCH nft] netlink: restore typeof interval map data type, Florian Westphal
  • Re: [PATCH nft] netlink: restore typeof interval map data type, Pablo Neira Ayuso
• [PATCH nft] doc: list set/map flag keywords in a table, Florian Westphal
• [PATCH nft] doc: add nat examples, Florian Westphal
  • Re: [PATCH nft] doc: add nat examples, Pablo Neira Ayuso
    • Re: [PATCH nft] doc: add nat examples, Florian Westphal
• [iptables PATCH 1/3] arptables: Fix parsing of inverted 'arp operation' match, Phil Sutter
  • [iptables PATCH 2/3] arptables: Don't omit standard matches if inverted, Phil Sutter
  • [iptables PATCH 3/3] xshared: Fix parsing of option arguments in same word, Phil Sutter
  • Re: [iptables PATCH 1/3] arptables: Fix parsing of inverted 'arp operation' match, Phil Sutter
• [PATCH] netfilter: nf_conntrack_sip: fix the ct_sip_parse_numerical_param() return value., Gavrilov Ilia
  • Re: [PATCH] netfilter: nf_conntrack_sip: fix the ct_sip_parse_numerical_param() return value., Simon Horman
    • Re: [PATCH] netfilter: nf_conntrack_sip: fix the ct_sip_parse_numerical_param() return value., Gavrilov Ilia
      • Re: [PATCH] netfilter: nf_conntrack_sip: fix the ct_sip_parse_numerical_param() return value., Simon Horman
        • Re: [PATCH] netfilter: nf_conntrack_sip: fix the ct_sip_parse_numerical_param() return value., Gavrilov Ilia
          • Re: [PATCH] netfilter: nf_conntrack_sip: fix the ct_sip_parse_numerical_param() return value., Simon Horman
            • Re: [PATCH] netfilter: nf_conntrack_sip: fix the ct_sip_parse_numerical_param() return value., Gavrilov Ilia
              • Re: [PATCH] netfilter: nf_conntrack_sip: fix the ct_sip_parse_numerical_param() return value., Florian Westphal
• [PATCH nf-next v3] netfilter: nft_exthdr: add boolean DCCP option matching, Jeremy Sowden
• [PATCH nft] mnl: incomplete extended error reporting for singleton device in chain, Pablo Neira Ayuso
• [PATCH nft] mnl: handle singleton element in netdevice set, Pablo Neira Ayuso
• [PATCH nf] netfilter: nf_tables: hit ENOENT on unexisting chain/flowtable update with missing attributes, Pablo Neira Ayuso
• [PATCH nft] json: allow to specify comment on chain, Pablo Neira Ayuso
• [PATCH nft] json: allow to specify comment on table, Pablo Neira Ayuso
• [PATCH nft] meta: skip protocol context update for nfproto with same table family, Pablo Neira Ayuso
• LPC 2023 Networking and BPF Track CFP, Daniel Borkmann
  • LPC 2023 Networking and BPF Track CFP (Reminder), Daniel Borkmann
    • LPC 2023 Networking and BPF Track CFP (Reminder), Daniel Borkmann
      • LPC 2023 Networking and BPF Track CFP (Final Reminder), Daniel Borkmann
• [PATCH nf] netfilter: nf_tables: integrate pipapo into commit protocol, Pablo Neira Ayuso
  • Re: [PATCH nf] netfilter: nf_tables: integrate pipapo into commit protocol, Stefano Brivio
• [PATCH] netfilter: conntrack: allow insertion clash of gre protocol, Faicker Mo
• [PATCH net-next 00/19] Netfilter/IPVS updates for net-next, Pablo Neira Ayuso
  • [PATCH net-next 12/19] ipvs: Remove {Enter,Leave}Function, Pablo Neira Ayuso
  • [PATCH net-next 14/19] netfilter: nf_tables: extended netlink error reporting for netdevice, Pablo Neira Ayuso
  • [PATCH net-next 04/19] netfilter: nf_tables: don't write table validation state without mutex, Pablo Neira Ayuso
  • [PATCH net-next 07/19] netfilter: nf_tables: do not store pktinfo in traceinfo structure, Pablo Neira Ayuso
  • [PATCH net-next 03/19] netfilter: nf_tables: don't store chain address on jump, Pablo Neira Ayuso
  • [PATCH net-next 05/19] netfilter: nf_tables: make validation state per table, Pablo Neira Ayuso
  • [PATCH net-next 19/19] netfilter: nf_tables: allow to create netdev chain without device, Pablo Neira Ayuso
  • [PATCH net-next 09/19] netfilter: nf_tables: do not store rule in traceinfo structure, Pablo Neira Ayuso
  • [PATCH net-next 02/19] netfilter: nf_tables: don't store address of last rule on jump, Pablo Neira Ayuso
  • [PATCH net-next 16/19] netfilter: nf_tables: rename function to destroy hook list, Pablo Neira Ayuso
  • [PATCH net-next 13/19] ipvs: Correct spelling in comments, Pablo Neira Ayuso
  • [PATCH net-next 06/19] netfilter: nf_tables: remove unneeded conditional, Pablo Neira Ayuso
  • [PATCH net-next 15/19] netfilter: nf_tables: do not send complete notification of deletions, Pablo Neira Ayuso
  • [PATCH net-next 11/19] ipvs: Consistently use array_size() in ip_vs_conn_init(), Pablo Neira Ayuso
  • [PATCH net-next 01/19] netfilter: nf_tables: merge nft_rules_old structure and end of ruleblob marker, Pablo Neira Ayuso
    • Re: [PATCH net-next 01/19] netfilter: nf_tables: merge nft_rules_old structure and end of ruleblob marker, patchwork-bot+netdevbpf
  • [PATCH net-next 10/19] ipvs: Update width of source for ip_vs_sync_conn_options, Pablo Neira Ayuso
  • [PATCH net-next 08/19] netfilter: nf_tables: do not store verdict in traceinfo structure, Pablo Neira Ayuso
  • [PATCH net-next 18/19] netfilter: nf_tables: support for deleting devices in an existing netdev chain, Pablo Neira Ayuso
  • [PATCH net-next 17/19] netfilter: nf_tables: support for adding new devices to an existing netdev chain, Pablo Neira Ayuso
• [PATCH net-next 00/20] Netfilter/IPVS updates for net-next, Pablo Neira Ayuso
  • [PATCH net-next 03/20] netfilter: nf_tables: don't store address of last rule on jump, Pablo Neira Ayuso
  • [PATCH net-next 13/20] ipvs: Remove {Enter,Leave}Function, Pablo Neira Ayuso
  • [PATCH net-next 19/20] netfilter: nf_tables: support for deleting devices in an existing netdev chain, Pablo Neira Ayuso
  • [PATCH net-next 12/20] ipvs: Consistently use array_size() in ip_vs_conn_init(), Pablo Neira Ayuso
  • [PATCH net-next 18/20] netfilter: nf_tables: support for adding new devices to an existing netdev chain, Pablo Neira Ayuso
  • [PATCH net-next 05/20] netfilter: nf_tables: don't write table validation state without mutex, Pablo Neira Ayuso
  • [PATCH net-next 01/20] netfilter: nft_exthdr: add boolean DCCP option matching, Pablo Neira Ayuso
  • [PATCH net-next 14/20] ipvs: Correct spelling in comments, Pablo Neira Ayuso
  • [PATCH net-next 10/20] netfilter: nf_tables: do not store rule in traceinfo structure, Pablo Neira Ayuso
  • [PATCH net-next 07/20] netfilter: nf_tables: remove unneeded conditional, Pablo Neira Ayuso
  • [PATCH net-next 06/20] netfilter: nf_tables: make validation state per table, Pablo Neira Ayuso
  • [PATCH net-next 04/20] netfilter: nf_tables: don't store chain address on jump, Pablo Neira Ayuso
  • [PATCH net-next 11/20] ipvs: Update width of source for ip_vs_sync_conn_options, Pablo Neira Ayuso
  • [PATCH net-next 17/20] netfilter: nf_tables: rename function to destroy hook list, Pablo Neira Ayuso
  • [PATCH net-next 15/20] netfilter: nf_tables: extended netlink error reporting for netdevice, Pablo Neira Ayuso
  • [PATCH net-next 08/20] netfilter: nf_tables: do not store pktinfo in traceinfo structure, Pablo Neira Ayuso
  • [PATCH net-next 16/20] netfilter: nf_tables: do not send complete notification of deletions, Pablo Neira Ayuso
  • [PATCH net-next 20/20] netfilter: nf_tables: allow to create netdev chain without device, Pablo Neira Ayuso
  • [PATCH net-next 09/20] netfilter: nf_tables: do not store verdict in traceinfo structure, Pablo Neira Ayuso
  • [PATCH net-next 02/20] netfilter: nf_tables: merge nft_rules_old structure and end of ruleblob marker, Pablo Neira Ayuso
  • Re: [PATCH net-next 00/20] Netfilter/IPVS updates for net-next, Pablo Neira Ayuso
• [iptables PATCH 0/3] Extract nftnl_rule parsing code, Phil Sutter
  • [iptables PATCH 1/3] nft: Introduce nft-ruleparse.{c,h}, Phil Sutter
  • [iptables PATCH 3/3] nft: ruleparse: Create family-specific source files, Phil Sutter
  • [iptables PATCH 2/3] nft: Extract rule parsing callbacks from nft_family_ops, Phil Sutter
  • Re: [iptables PATCH 0/3] Extract nftnl_rule parsing code, Phil Sutter
• [PATCH bpf-next v5 0/7] bpf: add netfilter program type, Florian Westphal
  • [PATCH bpf-next v5 4/7] netfilter: disallow bpf hook attachment at same priority, Florian Westphal
  • [PATCH bpf-next v5 3/7] netfilter: nfnetlink hook: dump bpf prog id, Florian Westphal
  • [PATCH bpf-next v5 5/7] tools: bpftool: print netfilter link info, Florian Westphal
  • [PATCH bpf-next v5 1/7] bpf: add bpf_link support for BPF_NETFILTER programs, Florian Westphal
    • Re: [PATCH bpf-next v5 1/7] bpf: add bpf_link support for BPF_NETFILTER programs, Andrii Nakryiko
      • Re: [PATCH bpf-next v5 1/7] bpf: add bpf_link support for BPF_NETFILTER programs, Florian Westphal
        • Re: [PATCH bpf-next v5 1/7] bpf: add bpf_link support for BPF_NETFILTER programs, Andrii Nakryiko
          • Re: [PATCH bpf-next v5 1/7] bpf: add bpf_link support for BPF_NETFILTER programs, Quentin Deslandes
            • Re: [PATCH bpf-next v5 1/7] bpf: add bpf_link support for BPF_NETFILTER programs, Andrii Nakryiko
  • [PATCH bpf-next v5 6/7] bpf: add test_run support for netfilter program type, Florian Westphal
  • [PATCH bpf-next v5 2/7] bpf: minimal support for programs hooked into netfilter framework, Florian Westphal
  • [PATCH bpf-next v5 7/7] selftests/bpf: add missing netfilter return value and ctx access tests, Florian Westphal
  • Re: [PATCH bpf-next v5 0/7] bpf: add netfilter program type, patchwork-bot+netdevbpf
    • Re: [PATCH bpf-next v5 0/7] bpf: add netfilter program type, Daniel Xu
• [iptables PATCH 1/2] utils: nfbpf_compile: Replace pcap_compile_nopcap(), Phil Sutter
  • [iptables PATCH 2/2] nft-shared: Drop unused include, Phil Sutter
  • Re: [iptables PATCH 1/2] utils: nfbpf_compile: Replace pcap_compile_nopcap(), Phil Sutter
• [PATCH nft] evaluate: bail out if new flowtable does not specify hook and priority, Pablo Neira Ayuso
  • <Possible follow-ups>
  • [PATCH nft] evaluate: bail out if new flowtable does not specify hook and priority, Pablo Neira Ayuso
• [PATCH nft,v3 1/2] mnl: flowtable support for extended netlink error reporting, Pablo Neira Ayuso
  • [PATCH nft,v3 2/2] src: allow for updating devices on existing netdev chain, Pablo Neira Ayuso
• [PATCH nf-next,v6 1/7] netfilter: nf_tables: extended netlink error reporting for netdevice, Pablo Neira Ayuso
  • [PATCH nf-next,v6 3/7] netfilter: nf_tables: rename function to destroy hook list, Pablo Neira Ayuso
  • [PATCH nf-next,v6 4/7] netfilter: nf_tables: support for adding new devices to an existing netdev chain, Pablo Neira Ayuso
  • [PATCH nf-next,v6 7/7] netfilter: nf_tables: remove artificial cap on maximum number of netdevices, Pablo Neira Ayuso
  • [PATCH nf-next,v6 6/7] netfilter: nf_tables: allow to create netdev chain without device, Pablo Neira Ayuso
  • [PATCH nf-next,v6 5/7] netfilter: nf_tables: support for deleting devices in an existing netdev chain, Pablo Neira Ayuso
  • [PATCH nf-next,v6 2/7] netfilter: nf_tables: do not send complete notification of deletions, Pablo Neira Ayuso
• [libmnl, PATCH] examples: add rtnl-link-can, Dario Binacchi
• [PATCH nf-next,v5 1/7] netfilter: nf_tables: extended netlink error reporting for netdevice, Pablo Neira Ayuso
  • [PATCH nf-next,v5 5/7] netfilter: nf_tables: support for deleting devices in an existing netdev chain, Pablo Neira Ayuso
  • [PATCH nf-next,v5 3/7] netfilter: nf_tables: rename function to destroy hook list, Pablo Neira Ayuso
  • [PATCH nf-next,v5 6/7] netfilter: nf_tables: allow to create netdev chain without device, Pablo Neira Ayuso
  • [PATCH nf-next,v5 7/7] netfilter: nf_tables: remove artificial cap on maximum number of netdevices, Pablo Neira Ayuso
  • [PATCH nf-next,v5 2/7] netfilter: nf_tables: do not send complete notification of deletions, Pablo Neira Ayuso
  • [PATCH nf-next,v5 4/7] netfilter: nf_tables: support for adding new devices to an existing netdev chain, Pablo Neira Ayuso
• [nft PATCH] tests: shell: Fix for unstable sets/0043concatenated_ranges_0, Phil Sutter
  • Re: [nft PATCH] tests: shell: Fix for unstable sets/0043concatenated_ranges_0, Stefano Brivio
  • Re: [nft PATCH] tests: shell: Fix for unstable sets/0043concatenated_ranges_0, Pablo Neira Ayuso
  • Re: [nft PATCH] tests: shell: Fix for unstable sets/0043concatenated_ranges_0, Phil Sutter
• [PATCH bpf-next v4 0/7] bpf: add netfilter program type, Florian Westphal
  • [PATCH bpf-next v4 1/7] bpf: add bpf_link support for BPF_NETFILTER programs, Florian Westphal
  • [PATCH bpf-next v4 2/7] bpf: minimal support for programs hooked into netfilter framework, Florian Westphal
  • [PATCH bpf-next v4 3/7] netfilter: nfnetlink hook: dump bpf prog id, Florian Westphal
  • [PATCH bpf-next v4 4/7] netfilter: disallow bpf hook attachment at same priority, Florian Westphal
  • [PATCH bpf-next v4 5/7] tools: bpftool: print netfilter link info, Florian Westphal
  • [PATCH bpf-next v4 6/7] bpf: add test_run support for netfilter program type, Florian Westphal
  • [PATCH bpf-next v4 7/7] selftests/bpf: add missing netfilter return value and ctx access tests, Florian Westphal
    • Re: [PATCH bpf-next v4 7/7] selftests/bpf: add missing netfilter return value and ctx access tests, Alexei Starovoitov
      • Re: [PATCH bpf-next v4 7/7] selftests/bpf: add missing netfilter return value and ctx access tests, Florian Westphal
        • Re: [PATCH bpf-next v4 7/7] selftests/bpf: add missing netfilter return value and ctx access tests, Alexei Starovoitov
• [PATCH nft 1/2] mnl: flowtable support for extended netlink error reporting, Pablo Neira Ayuso
  • [PATCH nft 2/2] src: allow for updating devices on existing netdev chain, Pablo Neira Ayuso
  • <Possible follow-ups>
  • [PATCH nft 1/2] mnl: flowtable support for extended netlink error reporting, Pablo Neira Ayuso
    • [PATCH nft 2/2] src: allow for updating devices on existing netdev chain, Pablo Neira Ayuso
• [PATCH nf-next,v4 1/7] netfilter: nf_tables: extended netlink error reporting for netdevice, Pablo Neira Ayuso
  • [PATCH nf-next,v4 3/7] netfilter: nf_tables: rename function to destroy hook list, Pablo Neira Ayuso
  • [PATCH nf-next,v4 6/7] netfilter: nf_tables: allow to create netdev chain without device, Pablo Neira Ayuso
  • [PATCH nf-next,v4 7/7] netfilter: nf_tables: remove artificial cap on maximum number of netdevices, Pablo Neira Ayuso
  • [PATCH nf-next,v4 5/7] netfilter: nf_tables: support for deleting devices in an existing netdev chain, Pablo Neira Ayuso
  • [PATCH nf-next,v4 4/7] netfilter: nf_tables: support for adding new devices to an existing netdev chain, Pablo Neira Ayuso
  • [PATCH nf-next,v4 2/7] netfilter: nf_tables: do not send complete notification of deletions, Pablo Neira Ayuso
• [PATCH nf-next,v3 1/5] netfilter: nf_tables: do not send complete notification of deletions, Pablo Neira Ayuso
  • [PATCH nf-next,v3 2/5] netfilter: nf_tables: rename function to destroy hook list, Pablo Neira Ayuso
  • [PATCH nf-next,v3 4/5] netfilter: nf_tables: support for deleting devices in an existing netdev chain, Pablo Neira Ayuso
  • [PATCH nf-next,v3 3/5] netfilter: nf_tables: support for adding new devices to an existing netdev chain, Pablo Neira Ayuso
  • [PATCH nf-next,v3 5/5] netfilter: nf_tables: allow to create netdev chain without device, Pablo Neira Ayuso
• [PATCH v3] netfilter: conntrack: fix wrong ct->timeout value, Tzung-Bi Shih
  • Re: [PATCH v3] netfilter: conntrack: fix wrong ct->timeout value, Pablo Neira Ayuso
    • Re: [PATCH v3] netfilter: conntrack: fix wrong ct->timeout value, Pablo Neira Ayuso
• [PATCH nf] netfilter: conntrack: restore IPS_CONFIRMED out of nf_conntrack_hash_check_insert(), Pablo Neira Ayuso
  • Re: [PATCH nf] netfilter: conntrack: restore IPS_CONFIRMED out of nf_conntrack_hash_check_insert(), Florian Westphal
    • Re: [PATCH nf] netfilter: conntrack: restore IPS_CONFIRMED out of nf_conntrack_hash_check_insert(), Pablo Neira Ayuso
• [PATCH bpf-next v3 0/6] bpf: add netfilter program type, Florian Westphal
  • [PATCH bpf-next v3 1/6] bpf: add bpf_link support for BPF_NETFILTER programs, Florian Westphal
    • Re: [PATCH bpf-next v3 1/6] bpf: add bpf_link support for BPF_NETFILTER programs, Alexei Starovoitov
      • Re: [PATCH bpf-next v3 1/6] bpf: add bpf_link support for BPF_NETFILTER programs, Florian Westphal
    • Re: [PATCH bpf-next v3 1/6] bpf: add bpf_link support for BPF_NETFILTER programs, kernel test robot
  • [PATCH bpf-next v3 4/6] netfilter: disallow bpf hook attachment at same priority, Florian Westphal
  • [PATCH bpf-next v3 2/6] bpf: minimal support for programs hooked into netfilter framework, Florian Westphal
    • Re: [PATCH bpf-next v3 2/6] bpf: minimal support for programs hooked into netfilter framework, Alexei Starovoitov
  • [PATCH bpf-next v3 3/6] netfilter: nfnetlink hook: dump bpf prog id, Florian Westphal
    • Re: [PATCH bpf-next v3 3/6] netfilter: nfnetlink hook: dump bpf prog id, Simon Horman
  • [PATCH bpf-next v3 6/6] bpf: add test_run support for netfilter program type, Florian Westphal
  • [PATCH bpf-next v3 5/6] tools: bpftool: print netfilter link info, Florian Westphal
    • Re: [PATCH bpf-next v3 5/6] tools: bpftool: print netfilter link info, Quentin Monnet
      • Re: [PATCH bpf-next v3 5/6] tools: bpftool: print netfilter link info, Florian Westphal
• [PATCH nft] mnl: set SO_SNDBUF before SO_SNDBUFFORCE, Pablo Neira Ayuso
• [PATCH nf,v2] netfilter: nf_tables: tighten netlink attribute requirements for catch-all elements, Pablo Neira Ayuso
• [PATCH nf] netfilter: nf_tables: tighten netlink attribute requirements for catch-all elements, Pablo Neira Ayuso
• [PATCH nf,v2] netfilter: nf_tables: validate catch-all set elements, Pablo Neira Ayuso
• [PATCH nf-next v3 0/4] ipvs: Cleanups for v6.4, Simon Horman
  • [PATCH nf-next v3 1/4] ipvs: Update width of source for ip_vs_sync_conn_options, Simon Horman
  • [PATCH nf-next v3 3/4] ipvs: Remove {Enter,Leave}Function, Simon Horman
  • [PATCH nf-next v3 4/4] ipvs: Correct spelling in comments, Simon Horman
  • [PATCH nf-next v3 2/4] ipvs: Consistently use array_size() in ip_vs_conn_init(), Simon Horman
  • Re: [PATCH nf-next v3 0/4] ipvs: Cleanups for v6.4, Julian Anastasov
    • Re: [PATCH nf-next v3 0/4] ipvs: Cleanups for v6.4, Pablo Neira Ayuso
      • Re: [PATCH nf-next v3 0/4] ipvs: Cleanups for v6.4, Julian Anastasov
• [PATCH nf] netfilter: nf_tables: validate catch-all set elements, Pablo Neira Ayuso
• [PATCH nf] netfilter: nf_tables: fix ifdef to also consider nf_tables=m, Florian Westphal
  • Re: [PATCH nf] netfilter: nf_tables: fix ifdef to also consider nf_tables=m, Pablo Neira Ayuso
• [PATCH v5 3/3] Replace invocation of weak PRNG, david . keisarschm
  • Re: [PATCH v5 3/3] Replace invocation of weak PRNG, Stephen Hemminger
  • Re: [PATCH v5 3/3] Replace invocation of weak PRNG, Stephen Hemminger
• [PATCH nf-next 0/4] netfilter: nf_tables: shrink stack usage a bit more, Florian Westphal
  • [PATCH nf-next 1/4] netfilter: nf_tables: remove unneeded conditional, Florian Westphal
  • [PATCH nf-next 2/4] netfilter: nf_tables: do not store pktinfo in traceinfo structure, Florian Westphal
  • [PATCH nf-next 3/4] netfilter: nf_tables: do not store verdict in traceinfo structure, Florian Westphal
  • [PATCH nf-next 4/4] netfilter: nf_tables: do not store rule in traceinfo structure, Florian Westphal
• [PATCH nf-next 0/2] netfilter: nf_tables: move ruleset validation state to table, Florian Westphal
  • [PATCH nf-next 1/2] netfilter: nf_tables: don't write table validation state without mutex, Florian Westphal
  • [PATCH nf-next 2/2] netfilter: nf_tables: make validation state per table, Florian Westphal
• [PATCH bpf-next v2 0/6] bpf: add netfilter program type, Florian Westphal
  • [PATCH bpf-next v2 1/6] bpf: add bpf_link support for BPF_NETFILTER programs, Florian Westphal
  • [PATCH bpf-next v2 2/6] bpf: minimal support for programs hooked into netfilter framework, Florian Westphal
  • [PATCH bpf-next v2 4/6] netfilter: disallow bpf hook attachment at same priority, Florian Westphal
  • [PATCH bpf-next v2 3/6] netfilter: nfnetlink hook: dump bpf prog id, Florian Westphal
  • [PATCH bpf-next v2 5/6] tools: bpftool: print netfilter link info, Florian Westphal
    • Re: [PATCH bpf-next v2 5/6] tools: bpftool: print netfilter link info, Quentin Monnet
      • Re: [PATCH bpf-next v2 5/6] tools: bpftool: print netfilter link info, Florian Westphal
        • Re: [PATCH bpf-next v2 5/6] tools: bpftool: print netfilter link info, Quentin Monnet
          • Re: [PATCH bpf-next v2 5/6] tools: bpftool: print netfilter link info, Florian Westphal
            • Re: [PATCH bpf-next v2 5/6] tools: bpftool: print netfilter link info, Quentin Monnet
  • [PATCH bpf-next v2 6/6] bpf: add test_run support for netfilter program type, Florian Westphal
• [PATCH] ipvs: change ip_vs_conn_tab_bits range to [8,31], Abhijeet Rastogi via B4 Relay
  • Re: [PATCH] ipvs: change ip_vs_conn_tab_bits range to [8,31], Simon Horman
  • Re: [PATCH] ipvs: change ip_vs_conn_tab_bits range to [8,31], Andrea Claudi
  • Re: [PATCH] ipvs: change ip_vs_conn_tab_bits range to [8,31], Julian Anastasov
    • Re: [PATCH] ipvs: change ip_vs_conn_tab_bits range to [8,31], Abhijeet Rastogi
      • Re: [PATCH] ipvs: change ip_vs_conn_tab_bits range to [8,31], Julian Anastasov
        • Re: [PATCH] ipvs: change ip_vs_conn_tab_bits range to [8,31], Abhijeet Rastogi
      • Re: [PATCH] ipvs: change ip_vs_conn_tab_bits range to [8,31], Andrea Claudi
• [PATCH nftables v2] exthdr: add boolean DCCP option matching, Jeremy Sowden
  • Re: [PATCH nftables v2] exthdr: add boolean DCCP option matching, Pablo Neira Ayuso
    • Re: [PATCH nftables v2] exthdr: add boolean DCCP option matching, Pablo Neira Ayuso
      • Re: [PATCH nftables v2] exthdr: add boolean DCCP option matching, Jeremy Sowden
    • Re: [PATCH nftables v2] exthdr: add boolean DCCP option matching, Jeremy Sowden
• [PATCH nf-next v2] netfilter: nft_exthdr: add boolean DCCP option matching, Jeremy Sowden
• [PATCH nf-next 0/3] netfilter: nf_tables: shrink jump stack size, Florian Westphal
  • [PATCH nf-next 1/3] netfilter: nf_tables: merge nft_rules_old structure and end of ruleblob marker, Florian Westphal
  • [PATCH nf-next 2/3] netfilter: nf_tables: don't store address of last rule on jump, Florian Westphal
  • [PATCH nf-next 3/3] netfilter: nf_tables: don't store chain address on jump, Florian Westphal
• [PATCH nf-next v2 0/4] ipvs: Cleanups for v6.4, Simon Horman
  • [PATCH nf-next v2 1/4] ipvs: Update width of source for ip_vs_sync_conn_options, Simon Horman
    • Re: [PATCH nf-next v2 1/4] ipvs: Update width of source for ip_vs_sync_conn_options, Horatiu Vultur
  • [PATCH nf-next v2 2/4] ipvs: Consistently use array_size() in ip_vs_conn_init(), Simon Horman
    • Re: [PATCH nf-next v2 2/4] ipvs: Consistently use array_size() in ip_vs_conn_init(), Horatiu Vultur
  • [PATCH nf-next v2 3/4] ipvs: Remove {Enter,Leave}Function, Simon Horman
    • Re: [PATCH nf-next v2 3/4] ipvs: Remove {Enter,Leave}Function, Horatiu Vultur
  • [PATCH nf-next v2 4/4] ipvs: Correct spelling in comments, Simon Horman
    • Re: [PATCH nf-next v2 4/4] ipvs: Correct spelling in comments, Horatiu Vultur
• [PATCH nf-next 0/4] ipvs: Cleanups for v6.4, Simon Horman
  • [PATCH nf-next 1/4] ipvs: Update width of source for ip_vs_sync_con_options, Simon Horman
  • [PATCH nf-next 2/4] ipvs: Consistently use array_size() in ip_vs_conn_init(), Simon Horman
  • [PATCH nf-next 3/4] ipvs: Remove {Enter,Leave}Function, Simon Horman
  • [PATCH nf-next 4/4] ipvs: Correct spelling in comments, Simon Horman
  • Re: [PATCH nf-next 0/4] ipvs: Cleanups for v6.4, Simon Horman
• [PATCH v2] netfilter: conntrack: fix wrong ct->timeout value, Tzung-Bi Shih
• [PATCH] netfilter: conntrack: fix wrong ct->timeout value, Tzung-Bi Shih
  • Re: [PATCH] netfilter: conntrack: fix wrong ct->timeout value, Pablo Neira Ayuso
    • Re: [PATCH] netfilter: conntrack: fix wrong ct->timeout value, Pablo Neira Ayuso
      • Re: [PATCH] netfilter: conntrack: fix wrong ct->timeout value, Tzung-Bi Shih
        • Re: [PATCH] netfilter: conntrack: fix wrong ct->timeout value, Pablo Neira Ayuso
          • Re: [PATCH] netfilter: conntrack: fix wrong ct->timeout value, Tzung-Bi Shih
            • Re: [PATCH] netfilter: conntrack: fix wrong ct->timeout value, Pablo Neira Ayuso
              • Re: [PATCH] netfilter: conntrack: fix wrong ct->timeout value, Tzung-Bi Shih
                • Re: [PATCH] netfilter: conntrack: fix wrong ct->timeout value, Pablo Neira Ayuso
                  • Re: [PATCH] netfilter: conntrack: fix wrong ct->timeout value, Tzung-Bi Shih
                    • Re: [PATCH] netfilter: conntrack: fix wrong ct->timeout value, Pablo Neira Ayuso
                      • Re: [PATCH] netfilter: conntrack: fix wrong ct->timeout value, Tzung-Bi Shih
• [PATCH nft] main: Error out when combining -i/--interactive and -f/--file, Pablo Neira Ayuso
• [PATCH] src: try SO_SNDBUF before SO_SNDBUFFORCE, Dave Pifke
  • Re: [PATCH] src: try SO_SNDBUF before SO_SNDBUFFORCE, Pablo Neira Ayuso
    • Re: [PATCH] src: try SO_SNDBUF before SO_SNDBUFFORCE, Dave Pifke
  • Re: [PATCH] src: try SO_SNDBUF before SO_SNDBUFFORCE, Pablo Neira Ayuso
    • Re: [PATCH] src: try SO_SNDBUF before SO_SNDBUFFORCE, Pablo Neira Ayuso
    • Re: [PATCH] src: try SO_SNDBUF before SO_SNDBUFFORCE, Dave Pifke
      • Re: [PATCH] src: try SO_SNDBUF before SO_SNDBUFFORCE, Pablo Neira Ayuso
• [PATCH net,v2] uapi: linux: restore IPPROTO_MAX to 256 and add IPPROTO_UAPI_MAX, Pablo Neira Ayuso
  • Re: [PATCH net,v2] uapi: linux: restore IPPROTO_MAX to 256 and add IPPROTO_UAPI_MAX, Matthieu Baerts
    • Re: [PATCH net,v2] uapi: linux: restore IPPROTO_MAX to 256 and add IPPROTO_UAPI_MAX, Jakub Kicinski
      • Re: [PATCH net,v2] uapi: linux: restore IPPROTO_MAX to 256 and add IPPROTO_UAPI_MAX, Matthieu Baerts
        • Re: [PATCH net,v2] uapi: linux: restore IPPROTO_MAX to 256 and add IPPROTO_UAPI_MAX, Pablo Neira Ayuso
          • Re: [PATCH net,v2] uapi: linux: restore IPPROTO_MAX to 256 and add IPPROTO_UAPI_MAX, Matthieu Baerts
            • Re: [PATCH net,v2] uapi: linux: restore IPPROTO_MAX to 256 and add IPPROTO_UAPI_MAX, Jakub Kicinski
              • Re: [PATCH net,v2] uapi: linux: restore IPPROTO_MAX to 256 and add IPPROTO_UAPI_MAX, Pablo Neira Ayuso
        • Re: [PATCH net,v2] uapi: linux: restore IPPROTO_MAX to 256 and add IPPROTO_UAPI_MAX, Jan Engelhardt
          • Re: [PATCH net,v2] uapi: linux: restore IPPROTO_MAX to 256 and add IPPROTO_UAPI_MAX, Matthieu Baerts
            • Re: [PATCH net,v2] uapi: linux: restore IPPROTO_MAX to 256 and add IPPROTO_UAPI_MAX, Jan Engelhardt
  • Re: [PATCH net,v2] uapi: linux: restore IPPROTO_MAX to 256 and add IPPROTO_UAPI_MAX, Jakub Kicinski
• [PATCH] netfilter: nf_tables: Modify nla_memdup's flag to GFP_KERNEL_ACCOUNT, Chen Aotian
  • Re: [PATCH] netfilter: nf_tables: Modify nla_memdup's flag to GFP_KERNEL_ACCOUNT, Pablo Neira Ayuso
    • Re: [netfilter-core] [PATCH] netfilter: nf_tables: Modify nla_memdup's flag to GFP_KERNEL_ACCOUNT, Pablo Neira Ayuso
  • <Possible follow-ups>
  • [PATCH] netfilter: nf_tables: Modify nla_memdup's flag to GFP_KERNEL_ACCOUNT, Chen Aotian
• [PATCH bpf-next 0/6] bpf: add netfilter program type, Florian Westphal
  • [PATCH bpf-next 1/6] bpf: add bpf_link support for BPF_NETFILTER programs, Florian Westphal
    • Re: [PATCH bpf-next 1/6] bpf: add bpf_link support for BPF_NETFILTER programs, kernel test robot
  • [PATCH bpf-next 5/6] tools: bpftool: print netfilter link info, Florian Westphal
  • [PATCH bpf-next 2/6] bpf: minimal support for programs hooked into netfilter framework, Florian Westphal
  • [PATCH bpf-next 6/6] bpf: add test_run support for netfilter program type, Florian Westphal
    • Re: [PATCH bpf-next 6/6] bpf: add test_run support for netfilter program type, kernel test robot
    • Re: [PATCH bpf-next 6/6] bpf: add test_run support for netfilter program type, Alexei Starovoitov
      • Re: [PATCH bpf-next 6/6] bpf: add test_run support for netfilter program type, Florian Westphal
  • [PATCH bpf-next 3/6] netfilter: nfnetlink hook: dump bpf prog id, Florian Westphal
  • [PATCH bpf-next 4/6] netfilter: disallow bpf hook attachment at same priority, Florian Westphal
  • Re: [PATCH bpf-next 0/6] bpf: add netfilter program type, Quentin Deslandes
    • Re: [PATCH bpf-next 0/6] bpf: add netfilter program type, Florian Westphal
      • Re: [PATCH bpf-next 0/6] bpf: add netfilter program type, Quentin Deslandes
• [PATCH nft,v2 4/4] optimize: support for redirect and masquerade, Pablo Neira Ayuso
  • Re: [PATCH nft,v2 4/4] optimize: support for redirect and masquerade, Pablo Neira Ayuso
• [iptables PATCH] tests: shell: Test for false-positive rule check, Phil Sutter
  • Re: [iptables PATCH] tests: shell: Test for false-positive rule check, Phil Sutter
• [PATCH nft 0/4] revisit NAT redirect support, Pablo Neira Ayuso
  • [PATCH nft 3/4] netlink_delinearize: do not reset protocol context for nat protocol expression, Pablo Neira Ayuso
  • [PATCH nft 4/4] optimize: support for redirect and masquerade, Pablo Neira Ayuso
  • [PATCH nft 1/4] optimize: assert nat type on nat statement helper, Pablo Neira Ayuso
  • [PATCH nft 2/4] evaluate: bogus missing transport protocol, Pablo Neira Ayuso
• [PATCH iptables 1/2] include: update nf_tables uapi header, Florian Westphal
  • [PATCH iptables 2/2] ebtables-nft: add broute table emulation, Florian Westphal
    • RE: [PATCH iptables 2/2] ebtables-nft: add broute table emulation, Sriram Yagnaraman
      • Re: [PATCH iptables 2/2] ebtables-nft: add broute table emulation, Florian Westphal
    • Re: [PATCH iptables 2/2] ebtables-nft: add broute table emulation, Phil Sutter
• [PATCH iptables] ip6tables: Fix checking existence of rule, Markus Boehme
  • Re: [PATCH iptables] ip6tables: Fix checking existence of rule, Phil Sutter
• [PATCH nf] netfilter: br_netfilter: fix recent physdev match breakage, Florian Westphal
  • Re: [PATCH nf] netfilter: br_netfilter: fix recent physdev match breakage, Pablo Neira Ayuso
• [PATCH iptables v2] build: use pkg-config for libpcap, Alyssa Ross
  • Re: [PATCH iptables v2] build: use pkg-config for libpcap, Phil Sutter
• [PATCH] udp:nat:vxlan tx after nat should recsum if vxlan tx offload on, Fei Cheng
  • Re: [PATCH] udp:nat:vxlan tx after nat should recsum if vxlan tx offload on, Willem de Bruijn
    • Re: [PATCH] udp:nat:vxlan tx after nat should recsum if vxlan tx offload on, Edward Cree
      • Re: [External] Re: [PATCH] udp:nat:vxlan tx after nat should recsum if vxlan tx offload on, Fei Cheng
        • Re: [External] Re: [PATCH] udp:nat:vxlan tx after nat should recsum if vxlan tx offload on, Edward Cree
          • Re: [External] Re: [PATCH] udp:nat:vxlan tx after nat should recsum if vxlan tx offload on, Fei Cheng
  • Re: [PATCH] udp:nat:vxlan tx after nat should recsum if vxlan tx offload on, kernel test robot
• [PATCH iptables] build: use pkg-config for libpcap, Alyssa Ross
  • Re: [PATCH iptables] build: use pkg-config for libpcap, Jeremy Sowden
    • Re: [PATCH iptables] build: use pkg-config for libpcap, Jeremy Sowden
      • Re: [PATCH iptables] build: use pkg-config for libpcap, Alyssa Ross
        • Re: [PATCH iptables] build: use pkg-config for libpcap, Jeremy Sowden
    • Re: [PATCH iptables] build: use pkg-config for libpcap, Alyssa Ross
      • Re: [PATCH iptables] build: use pkg-config for libpcap, Jeremy Sowden
• [PATCH net-next 0/4] netfilter updates for net-next, Florian Westphal
  • [PATCH net-next 1/4] netfilter: nfnetlink_log: remove rcu_bh usage, Florian Westphal
  • [PATCH net-next 2/4] netfilter: nfnetlink_queue: enable classid socket info retrieval, Florian Westphal
  • [PATCH net-next 3/4] netfilter: Correct documentation errors in nf_tables.h, Florian Westphal
  • [PATCH net-next 4/4] netfilter: ctnetlink: Support offloaded conntrack entry deletion, Florian Westphal
  • Re: [PATCH net-next 0/4] netfilter updates for net-next, Jakub Kicinski
    • [GIT PULL] netfilter updates for net-next 2023-03-30, Florian Westphal
      • Re: [GIT PULL] netfilter updates for net-next 2023-03-30, patchwork-bot+netdevbpf
  • <Possible follow-ups>
  • [PATCH net-next 0/4] netfilter updates for net-next, Florian Westphal
    • [PATCH net-next 1/4] netfilter: nf_nat: undo erroneous tcp edemux lookup after port clash, Florian Westphal
      • Re: [PATCH net-next 1/4] netfilter: nf_nat: undo erroneous tcp edemux lookup after port clash, patchwork-bot+netdevbpf
    • [PATCH net-next 2/4] selftests: netfilter: test nat source port clash resolution interaction with tcp early demux, Florian Westphal
    • [PATCH net-next 3/4] netfilter: nf_tables: missing extended netlink error in lookup functions, Florian Westphal
    • [PATCH net-next 4/4] netfilter: nf_tables: Utilize NLA_POLICY_NESTED_ARRAY, Florian Westphal
• [RFC PATCH v2] nft: autocomplete for libreadline, Sriram Yagnaraman
• [RFC PATCH] nft: autocomplete for libreadline, Sriram Yagnaraman
  • Re: [RFC PATCH] nft: autocomplete for libreadline, Jan Engelhardt
    • RE: [RFC PATCH] nft: autocomplete for libreadline, Sriram Yagnaraman
      • RE: [RFC PATCH] nft: autocomplete for libreadline, Jan Engelhardt
• [PATCH nf-next] netfilter: Correct documentation errors in nf_tables.h, Matthieu De Beule
• [PATCH nf-next] netfilter: nfnetlink_log: remove rcu_bh usage, Florian Westphal
• [nft PATCH] xt: Fix translation error path, Phil Sutter
  • Re: [nft PATCH] xt: Fix translation error path, Phil Sutter
• RE: iptables patch, Kevin Peeters
  • Re: iptables patch, Phil Sutter
    • RE: iptables patch, Kevin Peeters
      • Re: iptables patch, Phil Sutter
        • RE: iptables patch, Kevin Peeters
• [PATCH v5] netfilter: nfnetlink_queue: enable classid socket info retrieval, Eric Sage
• [PATCH nft] intervals: use expression location when translating to intervals, Pablo Neira Ayuso
• [lvc-project] [PATCH] netfilter: nfnetlink: NULL-check skb->dev in __build_packet_message(), Igor Artemiev
  • Re: [lvc-project] [PATCH] netfilter: nfnetlink: NULL-check skb->dev in __build_packet_message(), Pablo Neira Ayuso
    • Re: [lvc-project] [PATCH] netfilter: nfnetlink: NULL-check skb->dev in __build_packet_message(), Igor A. Artemiev
• [PATCH v4] netfilter: nfnetlink_queue: enable classid socket info retrieval, Eric Sage
  • Re: [PATCH v4] netfilter: nfnetlink_queue: enable classid socket info retrieval, kernel test robot
• [PATCH nf-next v3 0/4] Support for shifted port-ranges in NAT, Jeremy Sowden
  • [PATCH nf-next v3 1/4] netfilter: nat: extend core support for shifted port-ranges, Jeremy Sowden
  • [PATCH nf-next v3 2/4] netfilter: nft_nat: add support for shifted port-ranges, Jeremy Sowden
  • [PATCH nf-next v3 3/4] netfilter: nft_masq: add support for shifted port-ranges, Jeremy Sowden
  • [PATCH nf-next v3 4/4] netfilter: nft_redir: add support for shifted port-ranges, Jeremy Sowden
  • Re: [PATCH nf-next v3 0/4] Support for shifted port-ranges in NAT, Florian Westphal
• [PATCH v3] netfilter: nfnetlink_queue: enable classid socket info retrieval, Eric Sage
  • Re: [PATCH v3] netfilter: nfnetlink_queue: enable classid socket info retrieval, kernel test robot
• [PATCH nft] payload: set byteorder when completing expression, Pablo Neira Ayuso
  • Re: [PATCH nft] payload: set byteorder when completing expression, Jeremy Sowden
• [PATCH v2] netfilter: nfnetlink_queue: enable classid socket info retrieval, Eric Sage
  • Re: [PATCH v2] netfilter: nfnetlink_queue: enable classid socket info retrieval, Pablo Neira Ayuso
• [PATCH nft,v3 00/12] mark statement support for non-constant expression, Pablo Neira Ayuso
  • [PATCH nft,v3 01/12] netlink_delinearize: correct type and byte-order of shifts, Pablo Neira Ayuso
  • [PATCH nft,v3 03/12] evaluate: don't eval unary arguments, Pablo Neira Ayuso
  • [PATCH nft,v3 05/12] evaluate: set up integer type to shift expression, Pablo Neira Ayuso
    • Re: [PATCH nft,v3 05/12] evaluate: set up integer type to shift expression, Pablo Neira Ayuso
  • [PATCH nft,v3 06/12] evaluate: honor statement length in integer evaluation, Pablo Neira Ayuso
  • [PATCH nft,v3 08/12] netlink_delinerize: incorrect byteorder in mark statement listing, Pablo Neira Ayuso
  • [PATCH nft,v3 02/12] evaluate: support shifts larger than the width of the left operand, Pablo Neira Ayuso
  • [PATCH nft,v3 07/12] evaluate: honor statement length in bitwise evaluation, Pablo Neira Ayuso
    • Re: [PATCH nft,v3 07/12] evaluate: honor statement length in bitwise evaluation, Pablo Neira Ayuso
  • [PATCH nft,v3 10/12] tests: shell: rename and move bitwise test-cases, Pablo Neira Ayuso
  • [PATCH nft,v3 04/12] evaluate: relax type-checking for integer arguments in mark statements, Pablo Neira Ayuso
  • [PATCH nft,v3 09/12] tests: py: add test-cases for ct and packet mark payload expressions, Pablo Neira Ayuso
  • [PATCH nft,v3 12/12] tests: py: extend test-cases for mark statements with bitwise expressions, Pablo Neira Ayuso
  • [PATCH nft,v3 11/12] tests: shell: add test-cases for ct and packet mark payload expressions, Pablo Neira Ayuso
• [PATCH v10 00/13] Network support for Landlock, Konstantin Meskhidze
  • [PATCH v10 01/13] landlock: Make ruleset's access masks more generic, Konstantin Meskhidze
  • [PATCH v10 02/13] landlock: Allow filesystem layout changes for domains without such rule type, Konstantin Meskhidze
    • Re: [PATCH v10 02/13] landlock: Allow filesystem layout changes for domains without such rule type, Mickaël Salaün
      • Re: [PATCH v10 02/13] landlock: Allow filesystem layout changes for domains without such rule type, Konstantin Meskhidze (A)
        • Re: [PATCH v10 02/13] landlock: Allow filesystem layout changes for domains without such rule type, Mickaël Salaün
          • Re: [PATCH v10 02/13] landlock: Allow filesystem layout changes for domains without such rule type, Konstantin Meskhidze (A)
  • [PATCH v10 04/13] landlock: Refactor landlock_find_rule/insert_rule, Konstantin Meskhidze
  • [PATCH v10 03/13] landlock: Remove unnecessary inlining, Konstantin Meskhidze
    • Re: [PATCH v10 03/13] landlock: Remove unnecessary inlining, Mickaël Salaün
      • Re: [PATCH v10 03/13] landlock: Remove unnecessary inlining, Konstantin Meskhidze (A)
  • [PATCH v10 05/13] landlock: Refactor merge/inherit_ruleset functions, Konstantin Meskhidze
    • Re: [PATCH v10 05/13] landlock: Refactor merge/inherit_ruleset functions, Mickaël Salaün
      • Re: [PATCH v10 05/13] landlock: Refactor merge/inherit_ruleset functions, Konstantin Meskhidze (A)
  • [PATCH v10 06/13] landlock: Move and rename layer helpers, Konstantin Meskhidze
  • [PATCH v10 07/13] landlock: Refactor layer helpers, Konstantin Meskhidze
    • Re: [PATCH v10 07/13] landlock: Refactor layer helpers, Mickaël Salaün
      • Re: [PATCH v10 07/13] landlock: Refactor layer helpers, Konstantin Meskhidze (A)
  • [PATCH v10 08/13] landlock: Refactor landlock_add_rule() syscall, Konstantin Meskhidze
  • [PATCH v10 10/13] selftests/landlock: Share enforce_ruleset(), Konstantin Meskhidze
    • Re: [PATCH v10 10/13] selftests/landlock: Share enforce_ruleset(), Mickaël Salaün
      • Re: [PATCH v10 10/13] selftests/landlock: Share enforce_ruleset(), Konstantin Meskhidze (A)
  • [PATCH v10 12/13] samples/landlock: Add network demo, Konstantin Meskhidze
    • Re: [PATCH v10 12/13] samples/landlock: Add network demo, Mickaël Salaün
      • Re: [PATCH v10 12/13] samples/landlock: Add network demo, Konstantin Meskhidze (A)
  • [PATCH v10 09/13] landlock: Add network rules and TCP hooks support, Konstantin Meskhidze
    • Re: [PATCH v10 09/13] landlock: Add network rules and TCP hooks support, Mickaël Salaün
      • Re: [PATCH v10 09/13] landlock: Add network rules and TCP hooks support, Mickaël Salaün
        • Re: [PATCH v10 09/13] landlock: Add network rules and TCP hooks support, Konstantin Meskhidze (A)
      • Re: [PATCH v10 09/13] landlock: Add network rules and TCP hooks support, Konstantin Meskhidze (A)
        • Re: [PATCH v10 09/13] landlock: Add network rules and TCP hooks support, Mickaël Salaün
          • Re: [PATCH v10 09/13] landlock: Add network rules and TCP hooks support, Mickaël Salaün
            • Re: [PATCH v10 09/13] landlock: Add network rules and TCP hooks support, Konstantin Meskhidze (A)
              • Re: [PATCH v10 09/13] landlock: Add network rules and TCP hooks support, Mickaël Salaün
                • Re: [PATCH v10 09/13] landlock: Add network rules and TCP hooks support, Konstantin Meskhidze (A)