Linux Netfilter / IP Tables Devel

Date Index

[Prev Page][Next Page]

[PATCH nft 1/2] cache: fetch more objects when resetting rule, Pablo Neira Ayuso
- [PATCH nft 2/2] tests: shell: use bash in 0011reset_0, Pablo Neira Ayuso
[PATCH nft] parser_bison: allow to use quota in sets, Pablo Neira Ayuso
[PATCH nf] netfilter: nft_quota: copy content when cloning expression, Pablo Neira Ayuso
[PATCH nf] netfilter: nft_last: copy content when cloning expression, Pablo Neira Ayuso
[iptables PATCH] nft-restore: Fix for deletion of new, referenced rule, Phil Sutter
- Re: [iptables PATCH] nft-restore: Fix for deletion of new, referenced rule, Eric Garver
- Re: [iptables PATCH] nft-restore: Fix for deletion of new, referenced rule, Phil Sutter
[PATCH nft,v2] src: add last statement, Pablo Neira Ayuso
[PATCH nft,v3] evaluate: expand value to range when nat mapping contains intervals, Pablo Neira Ayuso
[PATCH v4] netfilter: nf_flow_table: count offloaded flows, Sven Auhagen
- Re: [PATCH v4] netfilter: nf_flow_table: count offloaded flows, Pablo Neira Ayuso
  - Re: [PATCH v4] netfilter: nf_flow_table: count offloaded flows, Sven Auhagen
    - Re: [PATCH v4] netfilter: nf_flow_table: count offloaded flows, Pablo Neira Ayuso
      - Re: [PATCH v4] netfilter: nf_flow_table: count offloaded flows, Sven Auhagen
[PATCH nft,v2] evaluate: expand value to range when nat mapping contains intervals, Pablo Neira Ayuso
[PATCH nf] selftests: nft_nat: ensuring the listening side is up before starting the client, Hangbin Liu
- Re: [PATCH nf] selftests: nft_nat: ensuring the listening side is up before starting the client, Pablo Neira Ayuso
[PATCH v3] netfilter: nf_flow_table: count offloaded flows, Sven Auhagen
- Re: [PATCH v3] netfilter: nf_flow_table: count offloaded flows, Julian Anastasov
[PATCH AUTOSEL 5.15 22/36] netfilter: nf_tables: NULL pointer dereference in nf_tables_updobj(), Sasha Levin
[PATCH AUTOSEL 6.1 28/49] netfilter: nf_tables: NULL pointer dereference in nf_tables_updobj(), Sasha Levin
[PATCH AUTOSEL 6.2 30/53] netfilter: nf_tables: NULL pointer dereference in nf_tables_updobj(), Sasha Levin
[PATCH v2] netfilter: nf_flow_table: count offloaded flows, Sven Auhagen
- Re: [PATCH v2] netfilter: nf_flow_table: count offloaded flows, Julian Anastasov
  - Re: [PATCH v2] netfilter: nf_flow_table: count offloaded flows, Sven Auhagen
[PATCH libnftnl] expr: meta: introduce broute meta expression, Sriram Yagnaraman
- Re: [PATCH libnftnl] expr: meta: introduce broute meta expression, Pablo Neira Ayuso
[PATCH nft v3] meta: introduce broute expression, Sriram Yagnaraman
[PATCH] netfilter: nf_flow_table: count offloaded flows, Sven Auhagen
- Re: [PATCH] netfilter: nf_flow_table: count offloaded flows, Julian Anastasov
  - Re: [PATCH] netfilter: nf_flow_table: count offloaded flows, Sven Auhagen
    - Re: [PATCH] netfilter: nf_flow_table: count offloaded flows, Julian Anastasov
      - Re: [PATCH] netfilter: nf_flow_table: count offloaded flows, Sven Auhagen
[PATCH nft 1/2,v2] tests: shell: cover rule insertion by index, Pablo Neira Ayuso
- [PATCH nft 2/2,v2] src: expand table command before evaluation, Pablo Neira Ayuso
[PATCH nft v2] meta: introduce broute expression, Sriram Yagnaraman
- Re: [PATCH nft v2] meta: introduce broute expression, Florian Westphal
  - RE: [PATCH nft v2] meta: introduce broute expression, Sriram Yagnaraman
[PATCH nf-next v2] netfilter: bridge: introduce broute meta statement, Sriram Yagnaraman
- Re: [PATCH nf-next v2] netfilter: bridge: introduce broute meta statement, Florian Westphal
[PATCH nft 1/2] tests: shell: cover rule insertion by index, Pablo Neira Ayuso
- [PATCH nft 2/2] src: expand table command before evaluation, Pablo Neira Ayuso
[PATCH nft] meta: introduce broute expression, Sriram Yagnaraman
- Re: [PATCH nft] meta: introduce broute expression, Florian Westphal
[PATCH nf-next] netfilter: bridge: introduce broute meta statement, Sriram Yagnaraman
- Re: [PATCH nf-next] netfilter: bridge: introduce broute meta statement, Jan Engelhardt
- Re: [PATCH nf-next] netfilter: bridge: introduce broute meta statement, Florian Westphal
  - RE: [PATCH nf-next] netfilter: bridge: introduce broute meta statement, Sriram Yagnaraman
    - Re: [PATCH nf-next] netfilter: bridge: introduce broute meta statement, Florian Westphal
[PATCH nft] evaluate: expand value to range in nat mapping with intervals, Pablo Neira Ayuso
[ipset PATCH 0/2] Two minor code fixes, Phil Sutter
- [ipset PATCH 2/2] xlate: Drop dead code, Phil Sutter
- [ipset PATCH 1/2] xlate: Fix for fd leak in error path, Phil Sutter
- Re: [ipset PATCH 0/2] Two minor code fixes, Pablo Neira Ayuso
  - Re: [ipset PATCH 0/2] Two minor code fixes, Phil Sutter
    - Re: [ipset PATCH 0/2] Two minor code fixes, Pablo Neira Ayuso
      - Re: [ipset PATCH 0/2] Two minor code fixes, Phil Sutter
        
        Re: [ipset PATCH 0/2] Two minor code fixes, Pablo Neira Ayuso
        
        Re: [ipset PATCH 0/2] Two minor code fixes, Phil Sutter
        
        Re: [ipset PATCH 0/2] Two minor code fixes, Pablo Neira Ayuso
- Re: [ipset PATCH 0/2] Two minor code fixes, Phil Sutter
[iptables PATCH] include: Add missing linux/netfilter/xt_LOG.h, Phil Sutter
- Re: [iptables PATCH] include: Add missing linux/netfilter/xt_LOG.h, Phil Sutter
[PATCH nft] parser_bison: missing close scope in destroy start condition, Pablo Neira Ayuso
[RFC nf-next PATCH] netfilter: nft: introduce broute chain type, Sriram Yagnaraman
- Re: [RFC nf-next PATCH] netfilter: nft: introduce broute chain type, Florian Westphal
  - Re: [RFC nf-next PATCH] netfilter: nft: introduce broute chain type, Florian Westphal
    - RE: [RFC nf-next PATCH] netfilter: nft: introduce broute chain type, Sriram Yagnaraman
    - Re: [RFC nf-next PATCH] netfilter: nft: introduce broute chain type, Pablo Neira Ayuso
  - RE: [RFC nf-next PATCH] netfilter: nft: introduce broute chain type, Sriram Yagnaraman
- Re: [RFC nf-next PATCH] netfilter: nft: introduce broute chain type, Pablo Neira Ayuso
[PATCH v2] [iptables] include: netfilter: add xt_LOG.h to fix an include error on Linux < 3.4, Thomas Devoogdt
[PATCH nft] py: replace distutils with setuptools, Jose M. Guisado Gomez
[PATCH net 0/8] Netfilterf fixes for net, Pablo Neira Ayuso
- [PATCH net 1/8] netfilter: nf_tables: allow to fetch set elements when table has an owner, Pablo Neira Ayuso
  - Re: [PATCH net 1/8] netfilter: nf_tables: allow to fetch set elements when table has an owner, patchwork-bot+netdevbpf
- [PATCH net 2/8] netfilter: ctnetlink: fix possible refcount leak in ctnetlink_create_conntrack(), Pablo Neira Ayuso
- [PATCH net 7/8] netfilter: ctnetlink: make event listener tracking global, Pablo Neira Ayuso
- [PATCH net 5/8] netfilter: ebtables: fix table blob use-after-free, Pablo Neira Ayuso
- [PATCH net 8/8] netfilter: x_tables: fix percpu counter block leak on error path when creating new netns, Pablo Neira Ayuso
- [PATCH net 6/8] netfilter: xt_length: use skb len to match in length_mt6, Pablo Neira Ayuso
- [PATCH net 3/8] netfilter: conntrack: fix rmmod double-free race, Pablo Neira Ayuso
- [PATCH net 4/8] netfilter: ip6t_rpfilter: Fix regression with VRF interfaces, Pablo Neira Ayuso
[PATCH] [iptables] extensions: libxt_LOG.c: fix linux/netfilter/xt_LOG.h include on Linux < 3.4, Thomas Devoogdt
- Re: [PATCH] [iptables] extensions: libxt_LOG.c: fix linux/netfilter/xt_LOG.h include on Linux < 3.4, Pablo Neira Ayuso
  - Re: [PATCH] [iptables] extensions: libxt_LOG.c: fix linux/netfilter/xt_LOG.h include on Linux < 3.4, Phil Sutter
    - Re: [PATCH] [iptables] extensions: libxt_LOG.c: fix linux/netfilter/xt_LOG.h include on Linux < 3.4, Pablo Neira Ayuso
      - Re: [PATCH] [iptables] extensions: libxt_LOG.c: fix linux/netfilter/xt_LOG.h include on Linux < 3.4, Phil Sutter
        
        Re: [PATCH] [iptables] extensions: libxt_LOG.c: fix linux/netfilter/xt_LOG.h include on Linux < 3.4, Phil Sutter
        
        Re: [PATCH] [iptables] extensions: libxt_LOG.c: fix linux/netfilter/xt_LOG.h include on Linux < 3.4, Phil Sutter
        
        Re: [PATCH] [iptables] extensions: libxt_LOG.c: fix linux/netfilter/xt_LOG.h include on Linux < 3.4, Thomas Devoogdt
        
        Re: [PATCH] [iptables] extensions: libxt_LOG.c: fix linux/netfilter/xt_LOG.h include on Linux < 3.4, Phil Sutter
Kernel panic in nf_send_reset6() path, Thomas S.
[nft PATCH] netlink_delinearize: Sanitize concat data element decoding, Phil Sutter
- Re: [nft PATCH] netlink_delinearize: Sanitize concat data element decoding, Florian Westphal
- Re: [nft PATCH] netlink_delinearize: Sanitize concat data element decoding, Phil Sutter
[PATCH iptables] xt_sctp: add the missing chunk types in sctp_help, Xin Long
- Re: [PATCH iptables] xt_sctp: add the missing chunk types in sctp_help, Phil Sutter
[PATCH nf] netfilter: ctnetlink: make event listener tracking global, Florian Westphal
- Re: [PATCH nf] netfilter: ctnetlink: make event listener tracking global, Pablo Neira Ayuso
[PATCH nf] netfilter: use skb len to match in length_mt6, Xin Long
- Re: [PATCH nf] netfilter: use skb len to match in length_mt6, Pablo Neira Ayuso
[PATCH nf] ebtables: fix table blob use-after-free, Florian Westphal
- Re: [PATCH nf] ebtables: fix table blob use-after-free, Pablo Neira Ayuso
[syzbot] [bridge?] [coreteam?] KASAN: vmalloc-out-of-bounds Read in __ebt_unregister_table, syzbot
[iptables PATCH 1/6] extensions: libebt_redirect: Fix target translation, Phil Sutter
- [iptables PATCH 6/6] xtables-translate: Support insert with index, Phil Sutter
- [iptables PATCH 5/6] ebtables: ip and ip6 matches depend on protocol match, Phil Sutter
- [iptables PATCH 4/6] extensions: libebt_ip: Translation has to match on ether type, Phil Sutter
- [iptables PATCH 2/6] extensions: libebt_redirect: Fix for wrong syntax in translation, Phil Sutter
- [iptables PATCH 3/6] extensions: libebt_ip: Do not use 'ip dscp' for translation, Phil Sutter
- Re: [iptables PATCH 1/6] extensions: libebt_redirect: Fix target translation, Phil Sutter
[iptables PATCH 1/2] tests: xlate: Properly split input in replay mode, Phil Sutter
- [iptables PATCH 2/2] tests: xlate: Print file names even if specified, Phil Sutter
- Re: [iptables PATCH 1/2] tests: xlate: Properly split input in replay mode, Phil Sutter
[iptables PATCH 1/3] nft-shared: Lookup matches in iptables_command_state, Phil Sutter
- [iptables PATCH 3/3] nft-shared: Simplify using nft_create_match(), Phil Sutter
- [iptables PATCH 2/3] nft-shared: Use nft_create_match() in one more spot, Phil Sutter
- Re: [iptables PATCH 1/3] nft-shared: Lookup matches in iptables_command_state, Phil Sutter
[iptables PATCH] tests: CLUSTERIP: Drop test file, Phil Sutter
- Re: [iptables PATCH] tests: CLUSTERIP: Drop test file, Phil Sutter
[PATCH net-next 0/6] Netfilter/IPVS updates for net-next, Pablo Neira Ayuso
- [PATCH net-next 3/6] netfilter: conntrack: udp: fix seen-reply test, Pablo Neira Ayuso
- [PATCH net-next 4/6] netfilter: conntrack: remote a return value of the 'seq_print_acct' function., Pablo Neira Ayuso
- [PATCH net-next 5/6] ipvs: avoid kfree_rcu without 2nd arg, Pablo Neira Ayuso
- [PATCH net-next 2/6] netfilter: nf_tables: fix wrong pointer passed to PTR_ERR(), Pablo Neira Ayuso
- [PATCH net-next 1/6] netfilter: nf_tables: NULL pointer dereference in nf_tables_updobj(), Pablo Neira Ayuso
  - Re: [PATCH net-next 1/6] netfilter: nf_tables: NULL pointer dereference in nf_tables_updobj(), patchwork-bot+netdevbpf
- [PATCH net-next 6/6] netfilter: let reset rules clean out conntrack entries, Pablo Neira Ayuso
[PATCH nft 1/3] evaluate: print error on missing family in nat statement, Pablo Neira Ayuso
- [PATCH nft 2/3] evaluate: infer family from mapping, Pablo Neira Ayuso
- [PATCH nft 3/3] optimize: infer family for nat mapping, Pablo Neira Ayuso
[PATCH nft] src: use start condition with new destroy command, Pablo Neira Ayuso
[PATCH nft 1/3] evaluate: infer family from mapping, Pablo Neira Ayuso
- [PATCH nft 3/3] src: use start condition with new destroy command, Pablo Neira Ayuso
- [PATCH nft 2/3] optimize: infer family for nat mapping, Pablo Neira Ayuso
[nf PATCH] netfilter: Fix regression in ip6t_rpfilter with VRF interfaces, Phil Sutter
- Re: [nf PATCH] netfilter: Fix regression in ip6t_rpfilter with VRF interfaces, Pablo Neira Ayuso
PROBLEM: nf_conntrack_events autodetect mode invalidates NETLINK_LISTEN_ALL_NSID netlink socket option, Bryce Kahle
- Re: PROBLEM: nf_conntrack_events autodetect mode invalidates NETLINK_LISTEN_ALL_NSID netlink socket option, Florian Westphal
  - Re: PROBLEM: nf_conntrack_events autodetect mode invalidates NETLINK_LISTEN_ALL_NSID netlink socket option, Bryce Kahle
    - Re: PROBLEM: nf_conntrack_events autodetect mode invalidates NETLINK_LISTEN_ALL_NSID netlink socket option, Florian Westphal
      - Re: PROBLEM: nf_conntrack_events autodetect mode invalidates NETLINK_LISTEN_ALL_NSID netlink socket option, Bryce Kahle
      - Re: PROBLEM: nf_conntrack_events autodetect mode invalidates NETLINK_LISTEN_ALL_NSID netlink socket option, Pablo Neira Ayuso
        
        Re: PROBLEM: nf_conntrack_events autodetect mode invalidates NETLINK_LISTEN_ALL_NSID netlink socket option, Bryce Kahle
        
        Re: PROBLEM: nf_conntrack_events autodetect mode invalidates NETLINK_LISTEN_ALL_NSID netlink socket option, Florian Westphal
[PATCH nf v2] netfilter: conntrack: fix rmmod double-free race, Florian Westphal
- Re: [PATCH nf v2] netfilter: conntrack: fix rmmod double-free race, Pablo Neira Ayuso
[PATCH nf] netfilter: conntrack: fix rmmod double-free race, Florian Westphal
- Re: [PATCH nf] netfilter: conntrack: fix rmmod double-free race, Pablo Neira Ayuso
  - Re: [PATCH nf] netfilter: conntrack: fix rmmod double-free race, Florian Westphal
[PATCH] netfilter: fix percpu counter block leak on error path when creating new netns, Pavel Tikhomirov
- Re: [PATCH] netfilter: fix percpu counter block leak on error path when creating new netns, Pablo Neira Ayuso
  - Re: [PATCH] netfilter: fix percpu counter block leak on error path when creating new netns, Pavel Tikhomirov
    - Re: [PATCH] netfilter: fix percpu counter block leak on error path when creating new netns, Pablo Neira Ayuso
[PATCH] net: netfilter: fix possible refcount leak in ctnetlink_create_conntrack(), Hangyu Hua
- Re: [PATCH] net: netfilter: fix possible refcount leak in ctnetlink_create_conntrack(), Florian Westphal
  - Re: [PATCH] net: netfilter: fix possible refcount leak in ctnetlink_create_conntrack(), Pablo Neira Ayuso
    - Re: [PATCH] net: netfilter: fix possible refcount leak in ctnetlink_create_conntrack(), Florian Westphal
      - Re: [PATCH] net: netfilter: fix possible refcount leak in ctnetlink_create_conntrack(), Hangyu Hua
        
        Re: [PATCH] net: netfilter: fix possible refcount leak in ctnetlink_create_conntrack(), Florian Westphal
        
        Re: [PATCH] net: netfilter: fix possible refcount leak in ctnetlink_create_conntrack(), Hangyu Hua
        
        Re: [PATCH] net: netfilter: fix possible refcount leak in ctnetlink_create_conntrack(), Florian Westphal
- Re: [PATCH] net: netfilter: fix possible refcount leak in ctnetlink_create_conntrack(), Florian Westphal
- Re: [PATCH] net: netfilter: fix possible refcount leak in ctnetlink_create_conntrack(), Pablo Neira Ayuso
[lvc-project] [PATCH] netfilter: xt_recent: Fix attempt to update removed entry, Igor Artemiev
- Re: [lvc-project] [PATCH] netfilter: xt_recent: Fix attempt to update removed entry, Florian Westphal
  - Re: [lvc-project] [PATCH] netfilter: xt_recent: Fix attempt to update removed entry, Jan Engelhardt
    - Re: [lvc-project] [PATCH] netfilter: xt_recent: Fix attempt to update removed entry, Florian Westphal
[RFC nf-next 0/3] bpf, netfilter: minimal support for bpf progs, Florian Westphal
- [RFC nf-next 1/3] bpf: add bpf_link support for BPF_NETFILTER programs, Florian Westphal
- [RFC nf-next 2/3] libbpf: sync header file, add nf prog section name, Florian Westphal
- [RFC nf-next 3/3] bpf: minimal support for programs hooked into netfilter framework, Florian Westphal
[PATCH nf] netfilter: nf_tables: allow to fetch set elements when table has an owner, Pablo Neira Ayuso
[PATCH nft] optimize: ignore existing nat mapping, Pablo Neira Ayuso
[PATCH 1/1] iptables_lib.sh: Fix for iptables-translate >= v1.8.9, Petr Vorel
- Re: [PATCH 1/1] iptables_lib.sh: Fix for iptables-translate >= v1.8.9, Petr Vorel
[PATCH nft 1/2] rule: add helper function to expand chain rules into commands, Pablo Neira Ayuso
- [PATCH nft 2/2] rule: expand standalone chain that contains rules, Pablo Neira Ayuso
  - Re: [PATCH nft 2/2] rule: expand standalone chain that contains rules, Phil Sutter
[PATCH nft] optimize: select merge criteria based on candidates rules, Pablo Neira Ayuso
[PATCH nft] rule: expand chain that contains rules, Pablo Neira Ayuso
[PATCH nft 1/2] optimize: wrap code to build concatenation in helper function, Pablo Neira Ayuso
- [PATCH nft 2/2] optimize: fix incorrect expansion into concatenation with verdict map, Pablo Neira Ayuso
[PATCH net-next] ipvs: avoid kfree_rcu without 2nd arg, Julian Anastasov
- Re: [PATCH net-next] ipvs: avoid kfree_rcu without 2nd arg, Pablo Neira Ayuso
[PATCH net-next v6 0/7] Allow offloading of UDP NEW connections via act_ct, Vlad Buslov
- [PATCH net-next v6 1/7] net: flow_offload: provision conntrack info in ct_metadata, Vlad Buslov
- [PATCH net-next v6 3/7] netfilter: flowtable: allow unidirectional rules, Vlad Buslov
- [PATCH net-next v6 2/7] netfilter: flowtable: fixup UDP timeout depending on ct state, Vlad Buslov
- [PATCH net-next v6 5/7] net/sched: act_ct: set ctinfo in meta action depending on ct state, Vlad Buslov
- [PATCH net-next v6 4/7] netfilter: flowtable: cache info of last offload, Vlad Buslov
- [PATCH net-next v6 6/7] net/sched: act_ct: offload UDP NEW connections, Vlad Buslov
- [PATCH net-next v6 7/7] netfilter: nf_conntrack: allow early drop of offloaded UDP conns, Vlad Buslov
- Re: [PATCH net-next v6 0/7] Allow offloading of UDP NEW connections via act_ct, patchwork-bot+netdevbpf
[PATCH nf-next] netfilter: let reset rules clean out conntrack entries, Florian Westphal
- Re: [PATCH nf-next] netfilter: let reset rules clean out conntrack entries, Pablo Neira Ayuso
- Re: [PATCH nf-next] netfilter: let reset rules clean out conntrack entries, Pablo Neira Ayuso
[RFC] bpf: add bpf_link support for BPF_NETFILTER programs, Florian Westphal
- Re: [RFC] bpf: add bpf_link support for BPF_NETFILTER programs, Toke Høiland-Jørgensen
  - Re: [RFC] bpf: add bpf_link support for BPF_NETFILTER programs, Florian Westphal
    - Re: [RFC] bpf: add bpf_link support for BPF_NETFILTER programs, Toke Høiland-Jørgensen
    - Re: [RFC] bpf: add bpf_link support for BPF_NETFILTER programs, Alexei Starovoitov
      - Re: [RFC] bpf: add bpf_link support for BPF_NETFILTER programs, Florian Westphal
        
        Re: [RFC] bpf: add bpf_link support for BPF_NETFILTER programs, Toke Høiland-Jørgensen
allow user to offload tc action to net device : Question, Martin Zaharinov
[PATCH nf] netfilter: br_netfilter: disable sabotage_in hook after first suppression, Florian Westphal
- Re: [PATCH nf] netfilter: br_netfilter: disable sabotage_in hook after first suppression, Pablo Neira Ayuso
  - Re: [PATCH nf] netfilter: br_netfilter: disable sabotage_in hook after first suppression, Florian Westphal
[PATCH net-next v5 0/7] Allow offloading of UDP NEW connections via act_ct, Vlad Buslov
- [PATCH net-next v5 1/7] net: flow_offload: provision conntrack info in ct_metadata, Vlad Buslov
- [PATCH net-next v5 3/7] netfilter: flowtable: allow unidirectional rules, Vlad Buslov
- [PATCH net-next v5 2/7] netfilter: flowtable: fixup UDP timeout depending on ct state, Vlad Buslov
  - Re: [PATCH net-next v5 2/7] netfilter: flowtable: fixup UDP timeout depending on ct state, Pablo Neira Ayuso
    - Re: [PATCH net-next v5 2/7] netfilter: flowtable: fixup UDP timeout depending on ct state, Vlad Buslov
      - Re: [PATCH net-next v5 2/7] netfilter: flowtable: fixup UDP timeout depending on ct state, Pablo Neira Ayuso
        
        Re: [PATCH net-next v5 2/7] netfilter: flowtable: fixup UDP timeout depending on ct state, Vlad Buslov
- [PATCH net-next v5 5/7] net/sched: act_ct: set ctinfo in meta action depending on ct state, Vlad Buslov
- [PATCH net-next v5 4/7] netfilter: flowtable: save ctinfo in flow_offload, Vlad Buslov
- [PATCH net-next v5 6/7] net/sched: act_ct: offload UDP NEW connections, Vlad Buslov
  - Re: [PATCH net-next v5 6/7] net/sched: act_ct: offload UDP NEW connections, Pablo Neira Ayuso
    - Re: [PATCH net-next v5 6/7] net/sched: act_ct: offload UDP NEW connections, Vlad Buslov
      - Re: [PATCH net-next v5 6/7] net/sched: act_ct: offload UDP NEW connections, Pablo Neira Ayuso
        
        Re: [PATCH net-next v5 6/7] net/sched: act_ct: offload UDP NEW connections, Vlad Buslov
- [PATCH net-next v5 7/7] netfilter: nf_conntrack: allow early drop of offloaded UDP conns, Vlad Buslov
- Re: [PATCH net-next v5 0/7] Allow offloading of UDP NEW connections via act_ct, Pablo Neira Ayuso
  - Re: [PATCH net-next v5 0/7] Allow offloading of UDP NEW connections via act_ct, Vlad Buslov
[iptables PATCH 0/7] Small ebtables-translate review + extras, Phil Sutter
- [iptables PATCH 7/7] tests: xlate: Support testing multiple individual files, Phil Sutter
- [iptables PATCH 4/7] ebtables-translate: Use OPT_* from xshared.h, Phil Sutter
- [iptables PATCH 1/7] Proper fix for "unknown argument" error message, Phil Sutter
- [iptables PATCH 2/7] ebtables: Refuse unselected targets' options, Phil Sutter
- [iptables PATCH 6/7] ebtables-translate: Print flush command after parsing is finished, Phil Sutter
- [iptables PATCH 3/7] ebtables-translate: Drop exec_style, Phil Sutter
- [iptables PATCH 5/7] ebtables-translate: Ignore '-j CONTINUE', Phil Sutter
- Re: [iptables PATCH 0/7] Small ebtables-translate review + extras, Phil Sutter
[PATCH nf] Revert "netfilter: conntrack: fix bug in for_each_sctp_chunk", Florian Westphal
- RE: [PATCH nf] Revert "netfilter: conntrack: fix bug in for_each_sctp_chunk", Sriram Yagnaraman
[PATCH net-next] net: Kconfig: fix spellos, Randy Dunlap
- <Possible follow-ups>
- [PATCH net-next] net: Kconfig: fix spellos, Randy Dunlap
  - Re: [PATCH net-next] net: Kconfig: fix spellos, patchwork-bot+netdevbpf
[PATCH net-next v4 0/7] Allow offloading of UDP NEW connections via act_ct, Vlad Buslov
- [PATCH net-next v4 1/7] net: flow_offload: provision conntrack info in ct_metadata, Vlad Buslov
- [PATCH net-next v4 4/7] netfilter: flowtable: save ctinfo in flow_offload, Vlad Buslov
- [PATCH net-next v4 2/7] netfilter: flowtable: fixup UDP timeout depending on ct state, Vlad Buslov
- [PATCH net-next v4 5/7] net/sched: act_ct: set ctinfo in meta action depending on ct state, Vlad Buslov
- [PATCH net-next v4 3/7] netfilter: flowtable: allow unidirectional rules, Vlad Buslov
- [PATCH net-next v4 6/7] net/sched: act_ct: offload UDP NEW connections, Vlad Buslov
  - Re: [PATCH net-next v4 6/7] net/sched: act_ct: offload UDP NEW connections, Jakub Kicinski
    - Re: [PATCH net-next v4 6/7] net/sched: act_ct: offload UDP NEW connections, Vlad Buslov
- [PATCH net-next v4 7/7] netfilter: nf_conntrack: allow early drop of offloaded UDP conns, Vlad Buslov
[PATCH nft] evaluate: set eval ctx for add/update statements with integer constants, Florian Westphal
[PATCH v4 0/4] sctp conntrack fixes, Sriram Yagnaraman
- [PATCH v4 1/4] netfilter: conntrack: fix vtag checks for ABORT/SHUTDOWN_COMPLETE, Sriram Yagnaraman
- [PATCH v4 2/4] netfilter: conntrack: fix bug in for_each_sctp_chunk, Sriram Yagnaraman
- [PATCH v4 3/4] Revert "netfilter: conntrack: add sctp DATA_SENT state", Sriram Yagnaraman
- [PATCH v4 4/4] netfilter: conntrack: unify established states for SCTP paths, Sriram Yagnaraman
- Re: [PATCH v4 0/4] sctp conntrack fixes, Pablo Neira Ayuso
[PATCH net-next] netlink: fix spelling mistake in dump size assert, Jakub Kicinski
- Re: [PATCH net-next] netlink: fix spelling mistake in dump size assert, Ido Schimmel
- Re: [PATCH net-next] netlink: fix spelling mistake in dump size assert, patchwork-bot+netdevbpf
[PATCH nf-next] netfilter: conntrack: udp: fix seen-reply test, Florian Westphal
- Re: [PATCH nf-next] netfilter: conntrack: udp: fix seen-reply test, Roi Dayan
  - Re: [PATCH nf-next] netfilter: conntrack: udp: fix seen-reply test, Roi Dayan
    - Re: [PATCH nf-next] netfilter: conntrack: udp: fix seen-reply test, Pablo Neira Ayuso
  - Re: [PATCH nf-next] netfilter: conntrack: udp: fix seen-reply test, Pablo Neira Ayuso
[PATCH] netfilter: conntrack: remote a return value of the 'seq_print_acct' function., Gavrilov Ilia
- Re: [PATCH] netfilter: conntrack: remote a return value of the 'seq_print_acct' function., Leon Romanovsky
  - Re: [PATCH] netfilter: conntrack: remote a return value of the 'seq_print_acct' function., Gavrilov Ilia
  - [PATCH v2] netfilter: conntrack: remote a return value of the 'seq_print_acct' function., Gavrilov Ilia
    - Re: [PATCH v2] netfilter: conntrack: remote a return value of the 'seq_print_acct' function., Leon Romanovsky
    - Re: [PATCH v2] netfilter: conntrack: remote a return value of the 'seq_print_acct' function., Pablo Neira Ayuso
Stateless load-balancer, Armen Hovhannisyan
[PATCH net-next v3 0/7] Allow offloading of UDP NEW connections via act_ct, Vlad Buslov
- [PATCH net-next v3 1/7] net: flow_offload: provision conntrack info in ct_metadata, Vlad Buslov
- [PATCH net-next v3 2/7] netfilter: flowtable: fixup UDP timeout depending on ct state, Vlad Buslov
  - Re: [PATCH net-next v3 2/7] netfilter: flowtable: fixup UDP timeout depending on ct state, Pablo Neira Ayuso
    - Re: [PATCH net-next v3 2/7] netfilter: flowtable: fixup UDP timeout depending on ct state, Vlad Buslov
- [PATCH net-next v3 3/7] netfilter: flowtable: allow unidirectional rules, Vlad Buslov
- [PATCH net-next v3 4/7] netfilter: flowtable: allow updating offloaded rules asynchronously, Vlad Buslov
  - Re: [PATCH net-next v3 4/7] netfilter: flowtable: allow updating offloaded rules asynchronously, Pablo Neira Ayuso
    - Re: [PATCH net-next v3 4/7] netfilter: flowtable: allow updating offloaded rules asynchronously, Vlad Buslov
      - Re: [PATCH net-next v3 4/7] netfilter: flowtable: allow updating offloaded rules asynchronously, Pablo Neira Ayuso
        
        Re: [PATCH net-next v3 4/7] netfilter: flowtable: allow updating offloaded rules asynchronously, Vlad Buslov
        
        Re: [PATCH net-next v3 4/7] netfilter: flowtable: allow updating offloaded rules asynchronously, Vlad Buslov
- [PATCH net-next v3 5/7] net/sched: act_ct: set ctinfo in meta action depending on ct state, Vlad Buslov
- [PATCH net-next v3 6/7] net/sched: act_ct: offload UDP NEW connections, Vlad Buslov
- [PATCH net-next v3 7/7] netfilter: nf_conntrack: allow early drop of offloaded UDP conns, Vlad Buslov
- Re: [PATCH net-next v3 0/7] Allow offloading of UDP NEW connections via act_ct, Marcelo Ricardo Leitner
  - Re: [PATCH net-next v3 0/7] Allow offloading of UDP NEW connections via act_ct, Vlad Buslov
    - Re: [PATCH net-next v3 0/7] Allow offloading of UDP NEW connections via act_ct, Vlad Buslov
      - Re: [PATCH net-next v3 0/7] Allow offloading of UDP NEW connections via act_ct, Marcelo Ricardo Leitner
[PATCH net-next] netfilter: nf_tables: fix wrong pointer passed to PTR_ERR(), Yang Yingliang
- Re: [PATCH net-next] netfilter: nf_tables: fix wrong pointer passed to PTR_ERR(), Simon Horman
- Re: [PATCH net-next] netfilter: nf_tables: fix wrong pointer passed to PTR_ERR(), Fernando F. Mancera
  - Re: [PATCH net-next] netfilter: nf_tables: fix wrong pointer passed to PTR_ERR(), Pablo Neira Ayuso
[PATCH nf,v4 1/2] netfilter: nft_set_rbtree: Switch to node list walk for overlap detection, Pablo Neira Ayuso
- [PATCH nf,v4 2/2] netfilter: nft_set_rbtree: skip elements in transaction from garbage collection, Pablo Neira Ayuso
- Re: [PATCH nf,v4 1/2] netfilter: nft_set_rbtree: Switch to node list walk for overlap detection, Stefano Brivio
[PATCH net-next 0/9] Netfilter updates for net-next, Florian Westphal
- [PATCH net-next 2/9] netfilter: conntrack: remove pr_debug calls, Florian Westphal
- [PATCH net-next 6/9] netfilter: nf_tables: add static key to skip retpoline workarounds, Florian Westphal
- [PATCH net-next 3/9] netfilter: conntrack: avoid reload of ct->status, Florian Westphal
  - Re: [PATCH net-next 3/9] netfilter: conntrack: avoid reload of ct->status, Roi Dayan
- [PATCH net-next 4/9] netfilter: conntrack: move rcu read lock to nf_conntrack_find_get, Florian Westphal
- [PATCH net-next 5/9] netfilter: ip_tables: remove clusterip target, Florian Westphal
- [PATCH net-next 1/9] netfilter: conntrack: sctp: use nf log infrastructure for invalid packets, Florian Westphal
  - Re: [PATCH net-next 1/9] netfilter: conntrack: sctp: use nf log infrastructure for invalid packets, patchwork-bot+netdevbpf
- [PATCH net-next 7/9] netfilter: nf_tables: avoid retpoline overhead for objref calls, Florian Westphal
- [PATCH net-next 8/9] netfilter: nf_tables: avoid retpoline overhead for some ct expression calls, Florian Westphal
- [PATCH net-next 9/9] netfilter: nf_tables: add support to destroy operation, Florian Westphal
  - Re: [PATCH net-next 9/9] netfilter: nf_tables: add support to destroy operation, Vlad Buslov
    - Re: [PATCH net-next 9/9] netfilter: nf_tables: add support to destroy operation, Fernando F. Mancera
      - Re: [PATCH net-next 9/9] netfilter: nf_tables: add support to destroy operation, Fernando F. Mancera
- <Possible follow-ups>
- [PATCH net-next 0/9] Netfilter updates for net-next, Florian Westphal
  - [PATCH net-next 1/9] netfilter: bridge: introduce broute meta statement, Florian Westphal
    - Re: [PATCH net-next 1/9] netfilter: bridge: introduce broute meta statement, patchwork-bot+netdevbpf
  - [PATCH net-next 2/9] netfilter: bridge: call pskb_may_pull in br_nf_check_hbh_len, Florian Westphal
  - [PATCH net-next 3/9] netfilter: bridge: check len before accessing more nh data, Florian Westphal
  - [PATCH net-next 4/9] netfilter: bridge: move pskb_trim_rcsum out of br_nf_check_hbh_len, Florian Westphal
  - [PATCH net-next 5/9] netfilter: move br_nf_check_hbh_len to utils, Florian Westphal
  - [PATCH net-next 6/9] netfilter: use nf_ip6_check_hbh_len in nf_ct_skb_network_trim, Florian Westphal
  - [PATCH net-next 7/9] selftests: add a selftest for big tcp, Florian Westphal
  - [PATCH net-next 8/9] netfilter: conntrack: fix typo, Florian Westphal
  - [PATCH net-next 9/9] netfilter: nat: fix indentation of function arguments, Florian Westphal
- [PATCH net-next 0/9] Netfilter updates for net-next, Florian Westphal
  - [PATCH net-next 1/9] netfilter: nf_tables: relax set/map validation checks, Florian Westphal
  - [PATCH net-next 2/9] netfilter: nf_tables: always increment set element count, Florian Westphal
  - [PATCH net-next 3/9] netfilter: nft_exthdr: add boolean DCCP option matching, Florian Westphal
  - [PATCH net-next 4/9] netfilter: Reorder fields in 'struct nf_conntrack_expect', Florian Westphal
  - [PATCH net-next 5/9] netfilter: nft_set_pipapo: Use struct_size(), Florian Westphal
  - [PATCH net-next 6/9] netfilter: conntrack: allow insertion clash of gre protocol, Florian Westphal
  - [PATCH net-next 7/9] netfilter: flowtable: simplify route logic, Florian Westphal
  - [PATCH net-next 8/9] netfilter: flowtable: split IPv4 datapath in helper functions, Florian Westphal
  - [PATCH net-next 9/9] netfilter: flowtable: split IPv6 datapath in helper functions, Florian Westphal
- [PATCH net-next 0/9] Netfilter updates for net-next, Florian Westphal
  - [PATCH net-next 1/9] netfilter: nf_tables: relax set/map validation checks, Florian Westphal
    - Re: [PATCH net-next 1/9] netfilter: nf_tables: relax set/map validation checks, patchwork-bot+netdevbpf
  - [PATCH net-next 2/9] netfilter: nf_tables: always increment set element count, Florian Westphal
  - [PATCH net-next 3/9] netfilter: nft_exthdr: add boolean DCCP option matching, Florian Westphal
    - Re: [PATCH net-next 3/9] netfilter: nft_exthdr: add boolean DCCP option matching, Jakub Kicinski
      - Re: [PATCH net-next 3/9] netfilter: nft_exthdr: add boolean DCCP option matching, Florian Westphal
        
        Re: [PATCH net-next 3/9] netfilter: nft_exthdr: add boolean DCCP option matching, Jakub Kicinski
        
        Re: [PATCH net-next 3/9] netfilter: nft_exthdr: add boolean DCCP option matching, Florian Westphal
  - [PATCH net-next 4/9] netfilter: Reorder fields in 'struct nf_conntrack_expect', Florian Westphal
  - [PATCH net-next 5/9] netfilter: nft_set_pipapo: Use struct_size(), Florian Westphal
  - [PATCH net-next 6/9] netfilter: conntrack: allow insertion clash of gre protocol, Florian Westphal
  - [PATCH net-next 7/9] netfilter: flowtable: simplify route logic, Florian Westphal
  - [PATCH net-next 9/9] netfilter: flowtable: split IPv6 datapath in helper functions, Florian Westphal
  - [PATCH net-next 8/9] netfilter: flowtable: split IPv4 datapath in helper functions, Florian Westphal
- [PATCH net-next 0/9] Netfilter updates for net-next, Pablo Neira Ayuso
  - [PATCH net-next 1/9] netfilter: nfnetlink_queue: unbreak SCTP traffic, Pablo Neira Ayuso
    - Re: [PATCH net-next 1/9] netfilter: nfnetlink_queue: unbreak SCTP traffic, patchwork-bot+netdevbpf
  - [PATCH net-next 3/9] netfilter: nfnetlink: convert kfree_skb to consume_skb, Pablo Neira Ayuso
  - [PATCH net-next 2/9] selftests: netfilter: nft_queue.sh: sctp coverage, Pablo Neira Ayuso
    - Re: [PATCH net-next 2/9] selftests: netfilter: nft_queue.sh: sctp coverage, Jakub Kicinski
      - [PATCH net-next] selftests: netfilter: nft_queue.sh: reduce test file size for debug build, Florian Westphal
        
        Re: [PATCH net-next] selftests: netfilter: nft_queue.sh: reduce test file size for debug build, Pablo Neira Ayuso
        
        Re: [PATCH net-next] selftests: netfilter: nft_queue.sh: reduce test file size for debug build, Jakub Kicinski
        
        Re: [PATCH net-next] selftests: netfilter: nft_queue.sh: reduce test file size for debug build, Florian Westphal
        
        Re: [PATCH net-next] selftests: netfilter: nft_queue.sh: reduce test file size for debug build, Paolo Abeni
        
        Re: [PATCH net-next] selftests: netfilter: nft_queue.sh: reduce test file size for debug build, patchwork-bot+netdevbpf
  - [PATCH net-next 4/9] netfilter: nf_tables: store new sets in dedicated list, Pablo Neira Ayuso
  - [PATCH net-next 5/9] netfilter: nf_tables: do not remove elements if set backend implements .abort, Pablo Neira Ayuso
  - [PATCH net-next 6/9] netfilter: move nf_ct_netns_get out of nf_conncount_init, Pablo Neira Ayuso
  - [PATCH net-next 7/9] netfilter: nf_tables: pass context structure to nft_parse_register_load, Pablo Neira Ayuso
  - [PATCH net-next 8/9] netfilter: nf_tables: allow loads only when register is initialized, Pablo Neira Ayuso
  - [PATCH net-next 9/9] netfilter: nf_tables: don't initialize registers in nft_do_chain(), Pablo Neira Ayuso
[PATCH v3 0/4] sctp conntrack fixes, Sriram Yagnaraman
- [PATCH v3 1/4] netfilter: conntrack: fix vtag checks for ABORT/SHUTDOWN_COMPLETE, Sriram Yagnaraman
- [PATCH v3 2/4] netfilter: conntrack: fix bug in for_each_sctp_chunk, Sriram Yagnaraman
- [PATCH v3 3/4] Revert "netfilter: conntrack: add sctp DATA_SENT state", Sriram Yagnaraman
- [PATCH v3 4/4] netfilter: conntrack: unify established states for SCTP paths, Sriram Yagnaraman
  - Re: [PATCH v3 4/4] netfilter: conntrack: unify established states for SCTP paths, Pablo Neira Ayuso
    - RE: [PATCH v3 4/4] netfilter: conntrack: unify established states for SCTP paths, Sriram Yagnaraman
      - Re: [PATCH v3 4/4] netfilter: conntrack: unify established states for SCTP paths, Pablo Neira Ayuso
[PATCH v2 0/4] sctp conntrack fixes, Sriram Yagnaraman
- [PATCH v2 4/4] netfilter: conntrack: unify established states for SCTP paths, Sriram Yagnaraman
- [PATCH v2 2/4] netfilter: conntrack: fix bug in for_each_sctp_chunk, Sriram Yagnaraman
- [PATCH v2 3/4] Revert "netfilter: conntrack: add sctp DATA_SENT state", Sriram Yagnaraman
  - Re: [PATCH v2 3/4] Revert "netfilter: conntrack: add sctp DATA_SENT state", Pablo Neira Ayuso
- [PATCH v2 1/4] netfilter: conntrack: fix vtag checks for ABORT/SHUTDOWN_COMPLETE, Sriram Yagnaraman
[PATCH 1/2 nf,v3] netfilter: nft_set_rbtree: Switch to node list walk for overlap detection, Pablo Neira Ayuso
- [PATCH 2/2 nf,v3] netfilter: nft_set_rbtree: skip elements in transaction from garbage collection, Pablo Neira Ayuso
- Re: [PATCH 1/2 nf,v3] netfilter: nft_set_rbtree: Switch to node list walk for overlap detection, Stefano Brivio
  - Re: [PATCH 1/2 nf,v3] netfilter: nft_set_rbtree: Switch to node list walk for overlap detection, Pablo Neira Ayuso
  - Re: [PATCH 1/2 nf,v3] netfilter: nft_set_rbtree: Switch to node list walk for overlap detection, Pablo Neira Ayuso
[PATCH net 0/1] Netfilter fixes for net, Pablo Neira Ayuso
- [PATCH net 1/1] netfilter: conntrack: handle tcp challenge acks during connection reuse, Pablo Neira Ayuso
- <Possible follow-ups>
- [PATCH net 0/1] Netfilter fixes for net, Pablo Neira Ayuso
  - [PATCH net 1/1] netfilter: conntrack: handle tcp challenge acks during connection reuse, Pablo Neira Ayuso
    - Re: [PATCH net 1/1] netfilter: conntrack: handle tcp challenge acks during connection reuse, patchwork-bot+netdevbpf
- [PATCH net 0/1] Netfilter fixes for net, Pablo Neira Ayuso
  - [PATCH net 1/1] netfilter: nf_tables: fix ct untracked match breakage, Pablo Neira Ayuso
    - Re: [PATCH net 1/1] netfilter: nf_tables: fix ct untracked match breakage, patchwork-bot+netdevbpf
- [PATCH net 0/1] Netfilter fixes for net, Pablo Neira Ayuso
  - [PATCH net 1/1] netfilter: nf_tables: unconditionally flush pending work before notifier, Pablo Neira Ayuso
    - Re: [PATCH net 1/1] netfilter: nf_tables: unconditionally flush pending work before notifier, Paolo Abeni
      - Re: [PATCH net 1/1] netfilter: nf_tables: unconditionally flush pending work before notifier, Pablo Neira Ayuso
    - Re: [PATCH net 1/1] netfilter: nf_tables: unconditionally flush pending work before notifier, patchwork-bot+netdevbpf
- [PATCH net 0/1] Netfilter fixes for net, Pablo Neira Ayuso
  - [PATCH net 1/1] netfilter: nft_set_pipapo_avx2: disable softinterrupts, Pablo Neira Ayuso
    - Re: [PATCH net 1/1] netfilter: nft_set_pipapo_avx2: disable softinterrupts, patchwork-bot+netdevbpf
- [PATCH net 0/1] Netfilter fixes for net, Pablo Neira Ayuso
  - [PATCH net 1/1] netfilter: bpf: must hold reference on net namespace, Pablo Neira Ayuso
  - Re: [PATCH net 0/1] Netfilter fixes for net, patchwork-bot+netdevbpf
- [PATCH net 0/1] Netfilter fixes for net, Pablo Neira Ayuso
  - [PATCH net 1/1] netfilter: nft_set_hash: unaligned atomic read on struct nft_set_ext, Pablo Neira Ayuso
[nft PATCH v4] Implement 'reset rule' and 'reset rules' commands, Phil Sutter
- Re: [nft PATCH v4] Implement 'reset rule' and 'reset rules' commands, Pablo Neira Ayuso
- Re: [nft PATCH v4] Implement 'reset rule' and 'reset rules' commands, Phil Sutter
[iptables PATCH] etc: Drop xtables.conf, Phil Sutter
- Re: [iptables PATCH] etc: Drop xtables.conf, Phil Sutter
[PATCH v2 6.1] netfilter: Null pointer dereference in nf_tables_updobj, Alok Tiwari
- Re: [PATCH v2 6.1] netfilter: Null pointer dereference in nf_tables_updobj, Pablo Neira Ayuso
[nft PATCH v3] Implement 'reset rule' and 'reset rules' commands, Phil Sutter
[PATCH 6.1] netfilter: Null pointer dereference in nf_tables_updobj, Alok Tiwari
- Re: [PATCH 6.1] netfilter: Null pointer dereference in nf_tables_updobj, Pablo Neira Ayuso
  - Re: [PATCH 6.1] netfilter: Null pointer dereference in nf_tables_updobj, Pablo Neira Ayuso
[PATCH nf,v2 1/2] netfilter: nft_set_rbtree: Switch to node list walk for overlap detection, Pablo Neira Ayuso
- [PATCH nf,v2 2/2] netfilter: nft_set_rbtree: skip elements in transaction from garbage collection, Pablo Neira Ayuso
- Re: [PATCH nf,v2 1/2] netfilter: nft_set_rbtree: Switch to node list walk for overlap detection, Pablo Neira Ayuso
Proposal: Set nf_conn->tuplehash[IP_CT_DIR_REPLY] to the inverted address of packet when it is confirmed, Christian Worm Mortensen
[PATCH 0/3] sctp conntrack fixes, Sriram Yagnaraman
- [PATCH 3/3] netfilter: conntrack: unify established states for SCTP paths, Sriram Yagnaraman
  - Re: [PATCH 3/3] netfilter: conntrack: unify established states for SCTP paths, Pablo Neira Ayuso
    - Re: [PATCH 3/3] netfilter: conntrack: unify established states for SCTP paths, Pablo Neira Ayuso
      - RE: [PATCH 3/3] netfilter: conntrack: unify established states for SCTP paths, Sriram Yagnaraman
- [PATCH 2/3] netfilter: conntrack: fix bug in for_each_sctp_chunk, Sriram Yagnaraman
  - Re: [PATCH 2/3] netfilter: conntrack: fix bug in for_each_sctp_chunk, Pablo Neira Ayuso
- [PATCH 1/3] netfilter: conntrack: fix vtag checks for ABORT/SHUTDOWN_COMPLETE, Sriram Yagnaraman
  - Re: [PATCH 1/3] netfilter: conntrack: fix vtag checks for ABORT/SHUTDOWN_COMPLETE, Pablo Neira Ayuso
[PATCH v9 00/12] Network support for Landlock, Konstantin Meskhidze
- [PATCH v9 02/12] landlock: Allow filesystem layout changes for domains without such rule type, Konstantin Meskhidze
  - Re: [PATCH v9 02/12] landlock: Allow filesystem layout changes for domains without such rule type, Mickaël Salaün
    - Re: [PATCH v9 02/12] landlock: Allow filesystem layout changes for domains without such rule type, Konstantin Meskhidze (A)
      - Re: [PATCH v9 02/12] landlock: Allow filesystem layout changes for domains without such rule type, Mickaël Salaün
        
        Re: [PATCH v9 02/12] landlock: Allow filesystem layout changes for domains without such rule type, Konstantin Meskhidze (A)
- [PATCH v9 01/12] landlock: Make ruleset's access masks more generic, Konstantin Meskhidze
- [PATCH v9 09/12] selftests/landlock: Share enforce_ruleset(), Konstantin Meskhidze
- [PATCH v9 07/12] landlock: Refactor landlock_add_rule() syscall, Konstantin Meskhidze
  - Re: [PATCH v9 07/12] landlock: Refactor landlock_add_rule() syscall, Mickaël Salaün
    - Re: [PATCH v9 07/12] landlock: Refactor landlock_add_rule() syscall, Konstantin Meskhidze (A)
- [PATCH v9 04/12] landlock: Refactor merge/inherit_ruleset functions, Konstantin Meskhidze
- [PATCH v9 11/12] samples/landlock: Add network demo, Konstantin Meskhidze
- [PATCH v9 03/12] landlock: Refactor landlock_find_rule/insert_rule, Konstantin Meskhidze
  - Re: [PATCH v9 03/12] landlock: Refactor landlock_find_rule/insert_rule, Mickaël Salaün
    - Re: [PATCH v9 03/12] landlock: Refactor landlock_find_rule/insert_rule, Konstantin Meskhidze (A)
      - Re: [PATCH v9 03/12] landlock: Refactor landlock_find_rule/insert_rule, Mickaël Salaün
        
        Re: [PATCH v9 03/12] landlock: Refactor landlock_find_rule/insert_rule, Konstantin Meskhidze (A)
- [PATCH v9 10/12] selftests/landlock: Add 10 new test suites dedicated to network, Konstantin Meskhidze
  - Re: [PATCH v9 10/12] selftests/landlock: Add 10 new test suites dedicated to network, Mickaël Salaün
    - Re: [PATCH v9 10/12] selftests/landlock: Add 10 new test suites dedicated to network, Konstantin Meskhidze (A)
      - Re: [PATCH v9 10/12] selftests/landlock: Add 10 new test suites dedicated to network, Mickaël Salaün
        
        Re: [PATCH v9 10/12] selftests/landlock: Add 10 new test suites dedicated to network, Konstantin Meskhidze (A)
  - Re: [PATCH v9 10/12] selftests/landlock: Add 10 new test suites dedicated to network, Mickaël Salaün
    - Re: [PATCH v9 10/12] selftests/landlock: Add 10 new test suites dedicated to network, Konstantin Meskhidze (A)
      - Re: [PATCH v9 10/12] selftests/landlock: Add 10 new test suites dedicated to network, Mickaël Salaün
        
        Re: [PATCH v9 10/12] selftests/landlock: Add 10 new test suites dedicated to network, Konstantin Meskhidze (A)
- [PATCH v9 06/12] landlock: Refactor _unmask_layers() and _init_layer_masks(), Konstantin Meskhidze
  - Re: [PATCH v9 06/12] landlock: Refactor _unmask_layers() and _init_layer_masks(), Mickaël Salaün
    - Re: [PATCH v9 06/12] landlock: Refactor _unmask_layers() and _init_layer_masks(), Konstantin Meskhidze (A)
  - Re: [PATCH v9 06/12] landlock: Refactor _unmask_layers() and _init_layer_masks(), Mickaël Salaün
    - Re: [PATCH v9 06/12] landlock: Refactor _unmask_layers() and _init_layer_masks(), Konstantin Meskhidze (A)
- [PATCH v9 12/12] landlock: Document Landlock's network support, Konstantin Meskhidze
  - Re: [PATCH v9 12/12] landlock: Document Landlock's network support, Günther Noack
    - Re: [PATCH v9 12/12] landlock: Document Landlock's network support, Konstantin Meskhidze (A)
      - Re: [PATCH v9 12/12] landlock: Document Landlock's network support, Mickaël Salaün
        
        Re: [PATCH v9 12/12] landlock: Document Landlock's network support, Konstantin Meskhidze (A)
        
        Re: [PATCH v9 12/12] landlock: Document Landlock's network support, Mickaël Salaün
        
        Re: [PATCH v9 12/12] landlock: Document Landlock's network support, Konstantin Meskhidze (A)
        
        Re: [PATCH v9 12/12] landlock: Document Landlock's network support, Mickaël Salaün
        
        Re: [PATCH v9 12/12] landlock: Document Landlock's network support, Konstantin Meskhidze (A)
        
        Re: [PATCH v9 12/12] landlock: Document Landlock's network support, Konstantin Meskhidze (A)
- [PATCH v9 08/12] landlock: Add network rules and TCP hooks support, Konstantin Meskhidze
  - Re: [PATCH v9 08/12] landlock: Add network rules and TCP hooks support, Mickaël Salaün
    - Re: [PATCH v9 08/12] landlock: Add network rules and TCP hooks support, Konstantin Meskhidze (A)
    - Re: [PATCH v9 08/12] landlock: Add network rules and TCP hooks support, Konstantin Meskhidze (A)
      - Re: [PATCH v9 08/12] landlock: Add network rules and TCP hooks support, Mickaël Salaün
        
        Re: [PATCH v9 08/12] landlock: Add network rules and TCP hooks support, Konstantin Meskhidze (A)
  - Re: [PATCH v9 08/12] landlock: Add network rules and TCP hooks support, Mickaël Salaün
    - Re: [PATCH v9 08/12] landlock: Add network rules and TCP hooks support, Konstantin Meskhidze (A)
- [PATCH v9 05/12] landlock: Move and rename umask_layers() and init_layer_masks(), Konstantin Meskhidze
  - Re: [PATCH v9 05/12] landlock: Move and rename umask_layers() and init_layer_masks(), Mickaël Salaün
    - Re: [PATCH v9 05/12] landlock: Move and rename umask_layers() and init_layer_masks(), Konstantin Meskhidze (A)
- Re: [PATCH v9 00/12] Network support for Landlock, Günther Noack
  - Re: [PATCH v9 00/12] Network support for Landlock, Konstantin Meskhidze (A)
  - Re: [PATCH v9 00/12] Network support for Landlock, Konstantin Meskhidze (A)
    - Re: [PATCH v9 00/12] Network support for Landlock, Mickaël Salaün
      - Re: [PATCH v9 00/12] Network support for Landlock - allowed list of protocols, Mickaël Salaün
        
        Re: [PATCH v9 00/12] Network support for Landlock - allowed list of protocols, Jeff Xu
        
        Re: [PATCH v9 00/12] Network support for Landlock - allowed list of protocols, Mickaël Salaün
        
        Re: [PATCH v9 00/12] Network support for Landlock - allowed list of protocols, Jeff Xu
        
        Re: [PATCH v9 00/12] Network support for Landlock - allowed list of protocols, Günther Noack
        
        Re: [PATCH v9 00/12] Network support for Landlock - allowed list of protocols, Jeff Xu
        
        Re: [PATCH v9 00/12] Network support for Landlock - allowed list of protocols, Mickaël Salaün
        
        Re: [PATCH v9 00/12] Network support for Landlock - allowed list of protocols, Jeff Xu
        
        Re: [PATCH v9 00/12] Network support for Landlock - allowed list of protocols, Mickaël Salaün
        
        Re: [PATCH v9 00/12] Network support for Landlock - allowed list of protocols, Jeff Xu
        
        Re: [PATCH v9 00/12] Network support for Landlock - allowed list of protocols, Mickaël Salaün
        
        Re: [PATCH v9 00/12] Network support for Landlock - allowed list of protocols, Jeff Xu
        
        Re: [PATCH v9 00/12] Network support for Landlock - allowed list of protocols, Mickaël Salaün
        
        Re: [PATCH v9 00/12] Network support for Landlock - allowed list of protocols, Konstantin Meskhidze (A)
        
        Re: [PATCH v9 00/12] Network support for Landlock - allowed list of protocols, Mickaël Salaün
        
        Re: [PATCH v9 00/12] Network support for Landlock - allowed list of protocols, Konstantin Meskhidze (A)
        
        Re: [PATCH v9 00/12] Network support for Landlock - allowed list of protocols, Mickaël Salaün
[PATCH nft] tests: shell: extend runtime set element automerge to cover partial deletions, Pablo Neira Ayuso
[PATCH nf 0/2] nf_tables rbtree fixes, Pablo Neira Ayuso
- [PATCH nf 1/2] netfilter: nft_set_rbtree: Switch to node list walk for overlap detection, Pablo Neira Ayuso
  - Re: [PATCH nf 1/2] netfilter: nft_set_rbtree: Switch to node list walk for overlap detection, Stefano Brivio
    - Re: [PATCH nf 1/2] netfilter: nft_set_rbtree: Switch to node list walk for overlap detection, Pablo Neira Ayuso
- [PATCH nf 2/2] netfilter: nft_set_rbtree: skip elements in transaction from garbage collection, Pablo Neira Ayuso
  - Re: [PATCH nf 2/2] netfilter: nft_set_rbtree: skip elements in transaction from garbage collection, Stefano Brivio
[iptables PATCH] iptables-test.py: make explicit use of python3, Arturo Borrero Gonzalez
[PATCH libnetfilter_queue] build: doc: Fix doxygen obsolete option warning, Duncan Roe
[PATCH libnetfilter_log] build: doc: Fix doxygen obsolete option warning, Duncan Roe
[PATCH net-next v2 0/7] Allow offloading of UDP NEW connections via act_ct, Vlad Buslov
- [PATCH net-next v2 2/7] netfilter: flowtable: fixup UDP timeout depending on ct state, Vlad Buslov
- [PATCH net-next v2 4/7] netfilter: flowtable: allow updating offloaded rules asynchronously, Vlad Buslov
  - Re: [PATCH net-next v2 4/7] netfilter: flowtable: allow updating offloaded rules asynchronously, Marcelo Ricardo Leitner
    - Re: [PATCH net-next v2 4/7] netfilter: flowtable: allow updating offloaded rules asynchronously, Vlad Buslov
      - Re: [PATCH net-next v2 4/7] netfilter: flowtable: allow updating offloaded rules asynchronously, Marcelo Ricardo Leitner
- [PATCH net-next v2 1/7] net: flow_offload: provision conntrack info in ct_metadata, Vlad Buslov
  - Re: [PATCH net-next v2 1/7] net: flow_offload: provision conntrack info in ct_metadata, Pablo Neira Ayuso
    - Re: [PATCH net-next v2 1/7] net: flow_offload: provision conntrack info in ct_metadata, Vlad Buslov
  - Re: [PATCH net-next v2 1/7] net: flow_offload: provision conntrack info in ct_metadata, Marcelo Ricardo Leitner
    - Re: [PATCH net-next v2 1/7] net: flow_offload: provision conntrack info in ct_metadata, Marcelo Ricardo Leitner
      - Re: [PATCH net-next v2 1/7] net: flow_offload: provision conntrack info in ct_metadata, Vlad Buslov
        
        Re: [PATCH net-next v2 1/7] net: flow_offload: provision conntrack info in ct_metadata, Marcelo Ricardo Leitner
    - Re: [PATCH net-next v2 1/7] net: flow_offload: provision conntrack info in ct_metadata, Vlad Buslov
- [PATCH net-next v2 3/7] netfilter: flowtable: allow unidirectional rules, Vlad Buslov
  - Re: [PATCH net-next v2 3/7] netfilter: flowtable: allow unidirectional rules, Marcelo Ricardo Leitner
    - Re: [PATCH net-next v2 3/7] netfilter: flowtable: allow unidirectional rules, Vlad Buslov
- [PATCH net-next v2 6/7] net/sched: act_ct: offload UDP NEW connections, Vlad Buslov
  - Re: [PATCH net-next v2 6/7] net/sched: act_ct: offload UDP NEW connections, Marcelo Ricardo Leitner
    - Re: [PATCH net-next v2 6/7] net/sched: act_ct: offload UDP NEW connections, Vlad Buslov
      - Re: [PATCH net-next v2 6/7] net/sched: act_ct: offload UDP NEW connections, Marcelo Ricardo Leitner
        
        Re: [PATCH net-next v2 6/7] net/sched: act_ct: offload UDP NEW connections, Vlad Buslov
        
        Re: [PATCH net-next v2 6/7] net/sched: act_ct: offload UDP NEW connections, Marcelo Ricardo Leitner
- [PATCH net-next v2 5/7] net/sched: act_ct: set ctinfo in meta action depending on ct state, Vlad Buslov
- [PATCH net-next v2 7/7] netfilter: nf_conntrack: allow early drop of offloaded UDP conns, Vlad Buslov
6.1: possible bug with netfilter conntrack?, Russell King (Oracle)
- Re: 6.1: possible bug with netfilter conntrack?, Florian Westphal
  - Re: 6.1: possible bug with netfilter conntrack?, Russell King (Oracle)
- Re: 6.1: possible bug with netfilter conntrack?, Russell King (Oracle)
  - Re: 6.1: possible bug with netfilter conntrack?, Florian Westphal
    - Re: 6.1: possible bug with netfilter conntrack?, Russell King (Oracle)
      - Re: 6.1: possible bug with netfilter conntrack?, Florian Westphal
        
        Re: 6.1: possible bug with netfilter conntrack?, Russell King (Oracle)
[PATCH] build: put xtables.conf in EXTRA_DIST, Jan Engelhardt
- Re: [PATCH] build: put xtables.conf in EXTRA_DIST, Phil Sutter
  - Re: [PATCH] build: put xtables.conf in EXTRA_DIST, Jan Engelhardt
  - Re: [PATCH] build: put xtables.conf in EXTRA_DIST, Pablo Neira Ayuso
    - Re: [PATCH] build: put xtables.conf in EXTRA_DIST, Arturo Borrero Gonzalez
    - Re: [PATCH] build: put xtables.conf in EXTRA_DIST, Jan Engelhardt
      - Re: [PATCH] build: put xtables.conf in EXTRA_DIST, Phil Sutter
        
        Re: [PATCH] build: put xtables.conf in EXTRA_DIST, Pablo Neira Ayuso
        
        Re: [PATCH] build: put xtables.conf in EXTRA_DIST, Phil Sutter
        
        Re: [PATCH] build: put xtables.conf in EXTRA_DIST, Pablo Neira Ayuso
        
        Re: [PATCH] build: put xtables.conf in EXTRA_DIST, Duncan Roe
[PATCH nft] intervals: restrict check missing elements fix to sets with no auto-merge, Pablo Neira Ayuso
[nft PATCH 0/5] Fix some covscan findings, Phil Sutter
- [nft PATCH 1/5] optimize: Clarify chain_optimize() array allocations, Phil Sutter
- [nft PATCH 5/5] mnl: dump_nf_hooks() leaks memory in error path, Phil Sutter
- [nft PATCH 2/5] optimize: Do not return garbage from stack, Phil Sutter
- [nft PATCH 3/5] netlink: Fix for potential NULL-pointer deref, Phil Sutter
- [nft PATCH 4/5] meta: parse_iso_date() returns boolean, Phil Sutter
- Re: [nft PATCH 0/5] Fix some covscan findings, Phil Sutter
[nft PATCH v2] Implement 'reset rule' and 'reset rules' commands, Phil Sutter
- Re: [nft PATCH v2] Implement 'reset rule' and 'reset rules' commands, Pablo Neira Ayuso
  - Re: [nft PATCH v2] Implement 'reset rule' and 'reset rules' commands, Phil Sutter
    - Re: [nft PATCH v2] Implement 'reset rule' and 'reset rules' commands, Pablo Neira Ayuso
      - Re: [nft PATCH v2] Implement 'reset rule' and 'reset rules' commands, Phil Sutter
[iptables PATCH] extensions: NAT: Fix for -Werror=format-security, Phil Sutter
- Re: [iptables PATCH] extensions: NAT: Fix for -Werror=format-security, Phil Sutter
[ANNOUNCE] iptables 1.8.9 release, Phil Sutter
- Re: [ANNOUNCE] iptables 1.8.9 release, Arturo Borrero Gonzalez
  - Re: [ANNOUNCE] iptables 1.8.9 release, Pablo Neira Ayuso
    - Re: [ANNOUNCE] iptables 1.8.9 release, Phil Sutter
[PATCH net] uapi: linux: restore IPPROTO_MAX to 256, Pablo Neira Ayuso
- Re: [PATCH net] uapi: linux: restore IPPROTO_MAX to 256, Pablo Neira Ayuso
[PATCH libnetfilter_conntrack] conntrack: add sanity check to netlink socket filter API, Pablo Neira Ayuso
[PATCH nf] netfilter: nft_payload: incorrect arithmetics when rebuiling VLAN header, Pablo Neira Ayuso
[PATCH nf] netfilter: conntrack: handle tcp challenge acks during connection reuse, Florian Westphal
[PATCH v4] netfilter: conntrack: simplify sctp state machine, Sriram Yagnaraman
- Re: [PATCH v4] netfilter: conntrack: simplify sctp state machine, Marcelo Ricardo Leitner
build failure since commit 'xt: Rewrite unsupported compat expression dumping', Neels Hofmeyr
- Re: build failure since commit 'xt: Rewrite unsupported compat expression dumping', Pablo Neira Ayuso
  - Re: build failure since commit 'xt: Rewrite unsupported compat expression dumping', Neels Hofmeyr
    - Re: build failure since commit 'xt: Rewrite unsupported compat expression dumping', Pablo Neira Ayuso
      - Re: build failure since commit 'xt: Rewrite unsupported compat expression dumping', Pablo Neira Ayuso
[iptables PATCH] Makefile: Replace brace expansion, Phil Sutter
- Re: [iptables PATCH] Makefile: Replace brace expansion, Phil Sutter
[PATCH net-next v1 0/7] Allow offloading of UDP NEW connections via act_ct, Vlad Buslov
- [PATCH net-next v1 2/7] netfilter: flowtable: fixup UDP timeout depending on ct state, Vlad Buslov
- [PATCH net-next v1 4/7] netfilter: flowtable: allow updating offloaded rules asynchronously, Vlad Buslov
- [PATCH net-next v1 1/7] net: flow_offload: provision conntrack info in ct_metadata, Vlad Buslov
  - Re: [PATCH net-next v1 1/7] net: flow_offload: provision conntrack info in ct_metadata, kernel test robot
  - Re: [PATCH net-next v1 1/7] net: flow_offload: provision conntrack info in ct_metadata, kernel test robot
  - Re: [PATCH net-next v1 1/7] net: flow_offload: provision conntrack info in ct_metadata, kernel test robot
  - Re: [PATCH net-next v1 1/7] net: flow_offload: provision conntrack info in ct_metadata, kernel test robot
  - Re: [PATCH net-next v1 1/7] net: flow_offload: provision conntrack info in ct_metadata, Simon Horman
    - Re: [PATCH net-next v1 1/7] net: flow_offload: provision conntrack info in ct_metadata, Vlad Buslov
      - Re: [PATCH net-next v1 1/7] net: flow_offload: provision conntrack info in ct_metadata, Simon Horman
- [PATCH net-next v1 3/7] netfilter: flowtable: allow unidirectional rules, Vlad Buslov
- [PATCH net-next v1 5/7] net/sched: act_ct: set ctinfo in meta action depending on ct state, Vlad Buslov
- [PATCH net-next v1 7/7] netfilter: nf_conntrack: allow early drop of offloaded UDP conns, Vlad Buslov
- [PATCH net-next v1 6/7] net/sched: act_ct: offload UDP NEW connections, Vlad Buslov
[RFC PATCH v3] netfilter: conntrack: simplify sctp state machine, Sriram Yagnaraman
- Re: [RFC PATCH v3] netfilter: conntrack: simplify sctp state machine, Florian Westphal
[no subject], Gavrilov Ilia
[PATCH] netfilter: ipset: Fix overflow before widen in the bitmap_ip_create() function., Gavrilov Ilia
- Re: [PATCH] netfilter: ipset: Fix overflow before widen in the bitmap_ip_create() function., Simon Horman
  - Re: [PATCH] netfilter: ipset: Fix overflow before widen in the bitmap_ip_create() function., Gavrilov Ilia
  - [PATCH v2] netfilter: ipset: Fix overflow before widen in the bitmap_ip_create() function., Gavrilov Ilia
    - Re: [PATCH v2] netfilter: ipset: Fix overflow before widen in the bitmap_ip_create() function., Simon Horman
      - Re: [PATCH v2] netfilter: ipset: Fix overflow before widen in the bitmap_ip_create() function., Pablo Neira Ayuso
[PATCH libnetfilter_conntrack 1/1] conntrack: Allow setting of netlink buffer size, William Blough
- Re: [PATCH libnetfilter_conntrack 1/1] conntrack: Allow setting of netlink buffer size, Pablo Neira Ayuso
  - Re: [PATCH libnetfilter_conntrack 1/1] conntrack: Allow setting of netlink buffer size, Bill Blough
[nft] src: allow for updating devices on existing netdev chain - Test result, Martin Zaharinov
- Re: [nft] src: allow for updating devices on existing netdev chain - Test result, Martin Zaharinov
  - Re: [nft] src: allow for updating devices on existing netdev chain - Test result, Martin Zaharinov
    - Re: [nft] src: allow for updating devices on existing netdev chain - Test result, Pablo Neira Ayuso
- Re: [nft] src: allow for updating devices on existing netdev chain - Test result, Pablo Neira Ayuso
[PATCH nft] src: allow for updating devices on existing netdev chain, Pablo Neira Ayuso
[PATCH nf-next,v2 1/4] netfilter: nf_tables: rename function to destroy hook list, Pablo Neira Ayuso
- [PATCH nf-next,v2 3/4] netfilter: nf_tables: support for deleting devices in an existing netdev chain, Pablo Neira Ayuso
- [PATCH nf-next,v2 4/4] netfilter: nf_tables: allow to create netdev chain without device, Pablo Neira Ayuso
- [PATCH nf-next,v2 2/4] netfilter: nf_tables: support for adding new devices to an existing netdev chain, Pablo Neira Ayuso
[PATCH nf] netfilter: nf_tables: do not send complete notification of deletions, Pablo Neira Ayuso
[PATCH nf-next] netfilter: remove clusterip target, Florian Westphal
[RFC PATCH v2] netfilter: conntrack: simplify sctp state machine, Sriram Yagnaraman
- Re: [RFC PATCH v2] netfilter: conntrack: simplify sctp state machine, Long Xin
[PATCH nf] selftests: netfilter: fix transaction test script timeout handling, Florian Westphal
- Re: [PATCH nf] selftests: netfilter: fix transaction test script timeout handling, Mirsad Goran Todorovac
- Re: [PATCH nf] selftests: netfilter: fix transaction test script timeout handling, Florian Westphal
- Re: [PATCH nf] selftests: netfilter: fix transaction test script timeout handling, Pablo Neira Ayuso
[RFC PATCH] netfilter: conntrack: simplify sctp state machine, Sriram Yagnaraman
- Re: [RFC PATCH] netfilter: conntrack: simplify sctp state machine, Florian Westphal
  - RE: [RFC PATCH] netfilter: conntrack: simplify sctp state machine, Sriram Yagnaraman
- Re: [RFC PATCH] netfilter: conntrack: simplify sctp state machine, Pablo Neira Ayuso
  - RE: [RFC PATCH] netfilter: conntrack: simplify sctp state machine, Sriram Yagnaraman
    - Re: [RFC PATCH] netfilter: conntrack: simplify sctp state machine, Pablo Neira Ayuso
      - RE: [RFC PATCH] netfilter: conntrack: simplify sctp state machine, Sriram Yagnaraman
        
        Re: [RFC PATCH] netfilter: conntrack: simplify sctp state machine, Pablo Neira Ayuso
        
        RE: [RFC PATCH] netfilter: conntrack: simplify sctp state machine, Sriram Yagnaraman
        
        Re: [RFC PATCH] netfilter: conntrack: simplify sctp state machine, Marcelo Ricardo Leitner
        
        RE: [RFC PATCH] netfilter: conntrack: simplify sctp state machine, Sriram Yagnaraman
        
        Re: [RFC PATCH] netfilter: conntrack: simplify sctp state machine, Pablo Neira Ayuso
        
        RE: [RFC PATCH] netfilter: conntrack: simplify sctp state machine, Sriram Yagnaraman
        
        RE: [RFC PATCH] netfilter: conntrack: simplify sctp state machine, Sriram Yagnaraman
[PATCH nft] optimize: payload expression requires inner_desc comparison, Pablo Neira Ayuso
[PATCH net-next 04/14] netlink: add macro for checking dump ctx size, Jakub Kicinski
- Re: [PATCH net-next 04/14] netlink: add macro for checking dump ctx size, Jiri Pirko
[PATCH nf-next,v1 1/3] netfilter: nf_tables: rename function to destroy hook list, Pablo Neira Ayuso
- [PATCH nf-next,v1 2/3] netfilter: nf_tables: support for adding new devices to an existing netdev chain, Pablo Neira Ayuso
- [PATCH nf-next,v1 3/3] netfilter: nf_tables: support for deleting devices in an existing netdev chain, Pablo Neira Ayuso
[PATCH nft,v1] src: allow for updating devices on existing netdev chain, Pablo Neira Ayuso
[PATCH libnftnl] chain: relax logic to build NFTA_CHAIN_HOOK, Pablo Neira Ayuso
[PATCH nf-next 0/3] netfilter: nf_tables: extend retpoline workarounds, Florian Westphal
- [PATCH nf-next 3/3] netfilter: nf_tables: avoid retpoline overhead for some ct expression calls, Florian Westphal
- [PATCH nf-next 1/3] netfilter: nf_tables: add static key to skip retpoline workarounds, Florian Westphal
- [PATCH nf-next 2/3] netfilter: nf_tables: avoid retpoline overhead for objref calls, Florian Westphal
[PATCH nf-next v5] netfilter: nf_tables: add support to destroy operation, Fernando Fernandez Mancera

[Index of Archives] [LARTC] [Berkeley Packet Filter] [Bugtraq] [Yosemite Discussion]