Linux Netfilter / IP Tables Devel

Date Index

[Prev Page][Next Page]

[PATCH net 08/14] netfilter: nf_tables: do not leave chain stats enabled on error, (continued)
- [PATCH net 08/14] netfilter: nf_tables: do not leave chain stats enabled on error, Pablo Neira Ayuso
- [PATCH net 11/14] netfilter: nf_tables: disallow binding to already bound chain, Pablo Neira Ayuso
- [PATCH net 09/14] netfilter: nft_osf: restrict osf to ipv4, ipv6 and inet families, Pablo Neira Ayuso
- [PATCH net 04/14] netfilter: nf_tables: disallow updates of implicit chain, Pablo Neira Ayuso
- [PATCH net 13/14] netfilter: flowtable: fix stuck flows on cleanup due to pending work, Pablo Neira Ayuso
- [PATCH net 12/14] netfilter: flowtable: add function to invoke garbage collection immediately, Pablo Neira Ayuso
- [PATCH net 00/14] Netfilter fixes for net, Pablo Neira Ayuso
  - [PATCH net 01/14] netfilter: nf_tables: reject invalid set policy, Pablo Neira Ayuso
  - [PATCH net 02/14] netfilter: nf_tables: validate .maxattr at expression registration, Pablo Neira Ayuso
  - [PATCH net 03/14] netfilter: nf_tables: bail out if stateful expression provides no .clone, Pablo Neira Ayuso
  - [PATCH net 04/14] netfilter: nft_limit: do not ignore unsupported flags, Pablo Neira Ayuso
  - [PATCH net 06/14] netfilter: nf_queue: remove excess nf_bridge variable, Pablo Neira Ayuso
  - [PATCH net 05/14] netfilter: nfnetlink_log: use proper helper for fetching physinif, Pablo Neira Ayuso
  - [PATCH net 09/14] netfilter: nf_tables: check if catch-all set element is active in next generation, Pablo Neira Ayuso
  - [PATCH net 10/14] netfilter: nf_tables: do not allow mismatch field size and set key length, Pablo Neira Ayuso
  - [PATCH net 07/14] netfilter: propagate net to nf_bridge_get_physindev, Pablo Neira Ayuso
  - [PATCH net 08/14] netfilter: bridge: replace physindev with physinif in nf_bridge_info, Pablo Neira Ayuso
  - [PATCH net 12/14] netfilter: nf_tables: reject NFT_SET_CONCAT with not field length description, Pablo Neira Ayuso
  - [PATCH net 11/14] netfilter: nf_tables: skip dead set elements in netlink dump, Pablo Neira Ayuso
  - [PATCH net 14/14] netfilter: ipset: fix performance regression in swap operation, Pablo Neira Ayuso
    - Re: [PATCH net 14/14] netfilter: ipset: fix performance regression in swap operation, Eric Dumazet
      - Re: [PATCH net 14/14] netfilter: ipset: fix performance regression in swap operation, Jozsef Kadlecsik
        
        Re: [PATCH net 14/14] netfilter: ipset: fix performance regression in swap operation, Eric Dumazet
        
        Re: [PATCH net 14/14] netfilter: ipset: fix performance regression in swap operation, Paolo Abeni
        
        Re: [PATCH net 14/14] netfilter: ipset: fix performance regression in swap operation, Eric Dumazet
    - Re: [PATCH net 14/14] netfilter: ipset: fix performance regression in swap operation, Eric Dumazet
      - Re: [PATCH net 14/14] netfilter: ipset: fix performance regression in swap operation, Jozsef Kadlecsik
        
        Re: [PATCH net 14/14] netfilter: ipset: fix performance regression in swap operation, Jozsef Kadlecsik
        
        Re: [PATCH net 14/14] netfilter: ipset: fix performance regression in swap operation, David Wang
  - [PATCH net 13/14] ipvs: avoid stat macros calls from preemptible context, Pablo Neira Ayuso
- [PATCH net 00/14] Netfilter fixes for net, Pablo Neira Ayuso
  - [PATCH net 01/14] netfilter: nf_nat: don't try nat source port reallocation for reverse dir clash, Pablo Neira Ayuso
  - [PATCH net 02/14] netfilter: conntrack: add clash resolution for reverse collisions, Pablo Neira Ayuso
  - [PATCH net 03/14] selftests: netfilter: add reverse-clash resolution test case, Pablo Neira Ayuso
  - [PATCH net 04/14] selftests: netfilter: nft_tproxy.sh: add tcp tests, Pablo Neira Ayuso
  - [PATCH net 06/14] docs: tproxy: ignore non-transparent sockets in iptables, Pablo Neira Ayuso
  - [PATCH net 05/14] netfilter: ctnetlink: Guard possible unused functions, Pablo Neira Ayuso
  - [PATCH net 07/14] netfilter: nf_tables: Keep deleted flowtable hooks until after RCU, Pablo Neira Ayuso
  - [PATCH net 09/14] netfilter: ctnetlink: compile ctnetlink_label_size with CONFIG_NF_CONNTRACK_EVENTS, Pablo Neira Ayuso
  - [PATCH net 08/14] netfilter: nf_reject: Fix build warning when CONFIG_BRIDGE_NETFILTER=n, Pablo Neira Ayuso
  - [PATCH net 10/14] netfilter: nf_tables: use rcu chain hook list iterator from netlink dump path, Pablo Neira Ayuso
  - [PATCH net 11/14] netfilter: nf_tables: missing objects with no memcg accounting, Pablo Neira Ayuso
  - [PATCH net 12/14] netfilter: nfnetlink_queue: remove old clash resolution logic, Pablo Neira Ayuso
  - [PATCH net 14/14] selftests: netfilter: Avoid hanging ipvs.sh, Pablo Neira Ayuso
  - [PATCH net 13/14] kselftest: add test for nfqueue induced conntrack race, Pablo Neira Ayuso
  - Re: [PATCH net 00/14] Netfilter fixes for net, Paolo Abeni
    - Re: [PATCH net 00/14] Netfilter fixes for net, Florian Westphal
      - Re: [PATCH net 00/14] Netfilter fixes for net, Pablo Neira Ayuso
        
        Re: [PATCH net 00/14] Netfilter fixes for net, Florian Westphal
      - Re: [PATCH net 00/14] Netfilter fixes for net, Paolo Abeni
        
        Re: [PATCH net 00/14] Netfilter fixes for net, Pablo Neira Ayuso
[PATCH nf] netfilter: nf_defrag_ipv6: allow nf_conntrack_frag6_high_thresh increases, Eric Dumazet
- Re: [PATCH nf] netfilter: nf_defrag_ipv6: allow nf_conntrack_frag6_high_thresh increases, Pablo Neira Ayuso
[PATCH nft] expr: update EXPR_MAX and add missing comments, Florian Westphal
[PATCH] br_netfilter: Drop dst references before setting., Harsh Modi
- Re: [PATCH] br_netfilter: Drop dst references before setting., Pablo Neira Ayuso
[PATCH nf 1/2] netfilter: flowtable: add function to invoke garbage collection immediately, Pablo Neira Ayuso
- [PATCH nf 2/2] netfilter: flowtable: fix stuck flows on cleanup due to pending work, Pablo Neira Ayuso
  - Re: [PATCH nf 2/2] netfilter: flowtable: fix stuck flows on cleanup due to pending work, Paul Blakey
[PATCH nf] netfilter: nf_tables: disallow binding to already bound chain, Pablo Neira Ayuso
[PATCH bpf-next v4 0/5] Support direct writes to nf_conn:mark, Daniel Xu
- [PATCH bpf-next v4 4/5] bpf: Add support for writing to nf_conn:mark, Daniel Xu
  - Re: [PATCH bpf-next v4 4/5] bpf: Add support for writing to nf_conn:mark, Kumar Kartikeya Dwivedi
    - Re: [PATCH bpf-next v4 4/5] bpf: Add support for writing to nf_conn:mark, Daniel Xu
      - Re: [PATCH bpf-next v4 4/5] bpf: Add support for writing to nf_conn:mark, Kumar Kartikeya Dwivedi
        
        Re: [PATCH bpf-next v4 4/5] bpf: Add support for writing to nf_conn:mark, Daniel Xu
  - Re: [PATCH bpf-next v4 4/5] bpf: Add support for writing to nf_conn:mark, kernel test robot
  - Re: [PATCH bpf-next v4 4/5] bpf: Add support for writing to nf_conn:mark, kernel test robot
- [PATCH bpf-next v4 3/5] bpf: Use 0 instead of NOT_INIT for btf_struct_access() writes, Daniel Xu
- [PATCH bpf-next v4 2/5] bpf: Add stub for btf_struct_access(), Daniel Xu
- [PATCH bpf-next v4 5/5] selftests/bpf: Add tests for writing to nf_conn:mark, Daniel Xu
- [PATCH bpf-next v4 1/5] bpf: Remove duplicate PTR_TO_BTF_ID RO check, Daniel Xu
[PATCH nf-next] netfilter: remove NFPROTO_DECNET, Florian Westphal
- Re: [PATCH nf-next] netfilter: remove NFPROTO_DECNET, kernel test robot
- Re: [PATCH nf-next] netfilter: remove NFPROTO_DECNET, kernel test robot
- Re: [PATCH nf-next] netfilter: remove NFPROTO_DECNET, kernel test robot
[PATCH nf,v3 2/2] netfilter: nft_payload: do not truncate csum_offset and csum_type, Pablo Neira Ayuso
[PATCH nf 1/3] netfilter: nft_dup: validate family and chains, Pablo Neira Ayuso
- [PATCH nf 2/3] netfilter: nft_osf: restrict osf to ipv4, ipv6 and inet families, Pablo Neira Ayuso
- [PATCH nf 3/3] netfilter: nft_tunnel: restrict it to netdev family, Pablo Neira Ayuso
- Re: [PATCH nf 1/3] netfilter: nft_dup: validate family and chains, Pablo Neira Ayuso
[PATCH nf] netfilter: nf_tables: do not leave chain stats enabled on error, Pablo Neira Ayuso
[PATCH nf,v2 1/2] netfilter: nft_payload: report ERANGE for too long offset and length, Pablo Neira Ayuso
- [PATCH nf,v2 2/2] netfilter: nft_payload: do not truncate csum_offset and csum_type, Pablo Neira Ayuso
[PATCH nf,v2] netfilter: nft_dup: validate family and chains, Pablo Neira Ayuso
[PATCH nf] netfilter: nft_dup: validate family and chains, Pablo Neira Ayuso
- [PATCH nf] netfilter: nft_fwd: really validate family, Pablo Neira Ayuso
  - Re: [PATCH nf] netfilter: nft_fwd: really validate family, Pablo Neira Ayuso
[PATCH nf 1/2] netfilter: nft_payload: report ERANGE for too long offset and length, Pablo Neira Ayuso
- [PATCH nf 2/2] netfilter: nft_payload: do not truncate csum_offset and csum_type, Pablo Neira Ayuso
[PATCH nf] netfilter: nf_tables: make table handle allocation per-netns friendly, Pablo Neira Ayuso
- Re: [PATCH nf] netfilter: nf_tables: make table handle allocation per-netns friendly, Florian Westphal
[PATCH nf] netfilter: nf_tables: disallow updates of implicit chain, Pablo Neira Ayuso
[BUG] nft_tproxy: Null pointer dereference on local-send UDP, Shell Chen
- [PATCH nf] nefilter: nft_tproxy: restrict to prerouting hook, Florian Westphal
  - Message not available
    - Re: [PATCH nf] nefilter: nft_tproxy: restrict to prerouting hook, Florian Westphal
[PATCH] netfilter: ebtables: fix a NULL pointer dereference in ebt_do_table(), Harshit Mogalapalli
- Re: [PATCH] netfilter: ebtables: fix a NULL pointer dereference in ebt_do_table(), Florian Westphal
  - Re: [External] : Re: [PATCH] netfilter: ebtables: fix a NULL pointer dereference in ebt_do_table(), Harshit Mogalapalli
- [PATCH nf] netfilter: ebtables: reject blobs that don't provide all entry points, Florian Westphal
  - Re: [External] : [PATCH nf] netfilter: ebtables: reject blobs that don't provide all entry points, Harshit Mogalapalli
  - Re: [PATCH nf] netfilter: ebtables: reject blobs that don't provide all entry points, John Donnelly
  - Re: [PATCH nf] netfilter: ebtables: reject blobs that don't provide all entry points, john . p . donnelly
    - Re: [PATCH nf] netfilter: ebtables: reject blobs that don't provide all entry points, Florian Westphal
      - Re: [PATCH nf] netfilter: ebtables: reject blobs that don't provide all entry points, john . p . donnelly
[PATCH bpf-next v3 0/5] Support direct writes to nf_conn:mark, Daniel Xu
- [PATCH bpf-next v3 3/5] bpf: Use 0 instead of NOT_INIT for btf_struct_access() writes, Daniel Xu
- [PATCH bpf-next v3 5/5] selftests/bpf: Add tests for writing to nf_conn:mark, Daniel Xu
- [PATCH bpf-next v3 2/5] bpf: Add stub for btf_struct_access(), Daniel Xu
- [PATCH bpf-next v3 1/5] bpf: Remove duplicate PTR_TO_BTF_ID RO check, Daniel Xu
- [PATCH bpf-next v3 4/5] bpf: Add support for writing to nf_conn:mark, Daniel Xu
  - Re: [PATCH bpf-next v3 4/5] bpf: Add support for writing to nf_conn:mark, Kumar Kartikeya Dwivedi
    - Re: [PATCH bpf-next v3 4/5] bpf: Add support for writing to nf_conn:mark, Kumar Kartikeya Dwivedi
    - Re: [PATCH bpf-next v3 4/5] bpf: Add support for writing to nf_conn:mark, Daniel Xu
  - Re: [PATCH bpf-next v3 4/5] bpf: Add support for writing to nf_conn:mark, kernel test robot
  - Re: [PATCH bpf-next v3 4/5] bpf: Add support for writing to nf_conn:mark, kernel test robot
[PATCH 5.10 283/545] netfilter: xtables: Bring SPDX identifier back, Greg Kroah-Hartman
Re: data-race in nf_tables_newtable / nf_tables_newtable, Florian Westphal
- Re: data-race in nf_tables_newtable / nf_tables_newtable, Gabriel Ryan
  - Re: data-race in nf_tables_newtable / nf_tables_newtable, Florian Westphal
    - Re: data-race in nf_tables_newtable / nf_tables_newtable, Gabriel Ryan
Re: Raw payload matching beyond 2040 bits, Florian Westphal
[PATCH nft v3] src: Don't parse string as verdict in map, Xiao Liang
[PATCH nft v2] src: Don't parse string as verdict in map, Xiao Liang
[PATCH nf] netfilter: conntrack: work around exceeded receive window, Florian Westphal
[PATCH] netfilter: move from strlcpy with unused retval to strscpy, Wolfram Sang
- Re: [PATCH] netfilter: move from strlcpy with unused retval to strscpy, Florian Westphal
- Re: [PATCH] netfilter: move from strlcpy with unused retval to strscpy, Simon Horman
[PATCH] bridge: move from strlcpy with unused retval to strscpy, Wolfram Sang
- Re: [PATCH] bridge: move from strlcpy with unused retval to strscpy, Nikolay Aleksandrov
- Re: [PATCH] bridge: move from strlcpy with unused retval to strscpy, patchwork-bot+netdevbpf
[PATCH nft] src: Don't parse string as verdict in map, Xiao Liang
- Re: [PATCH nft] src: Don't parse string as verdict in map, Florian Westphal
  - Re: [PATCH nft] src: Don't parse string as verdict in map, Xiao Liang
    - Re: [PATCH nft] src: Don't parse string as verdict in map, Florian Westphal
[PATCH net 1/1] netfilter: flowtable: Fix use after free after freeing flow table, Paul Blakey
- Re: [PATCH net 1/1] netfilter: flowtable: Fix use after free after freeing flow table, Pablo Neira Ayuso
  - Re: [PATCH net 1/1] netfilter: flowtable: Fix use after free after freeing flow table, Paul Blakey
    - Re: [PATCH net 1/1] netfilter: flowtable: Fix use after free after freeing flow table, Pablo Neira Ayuso
      - Re: [PATCH net 1/1] netfilter: flowtable: Fix use after free after freeing flow table, Paul Blakey
        
        Re: [PATCH net 1/1] netfilter: flowtable: Fix use after free after freeing flow table, Paul Blakey
[PATCH net-next] Remove DECnet support from kernel, Stephen Hemminger
- Re: [PATCH net-next] Remove DECnet support from kernel, Nikolay Aleksandrov
- Re: [PATCH net-next] Remove DECnet support from kernel, patchwork-bot+netdevbpf
- Re: [PATCH net-next] Remove DECnet support from kernel, Jiri Slaby
  - Re: [PATCH net-next] Remove DECnet support from kernel, Jan Engelhardt
    - Re: [PATCH net-next] Remove DECnet support from kernel, Jiri Slaby
      - Re: [PATCH net-next] Remove DECnet support from kernel, Arnd Bergmann
[PATCH bpf-next v2 4/4] selftests/bpf: Add tests for writing to nf_conn:mark, Daniel Xu
- Re: [PATCH bpf-next v2 4/4] selftests/bpf: Add tests for writing to nf_conn:mark, Kumar Kartikeya Dwivedi
[PATCH bpf-next v2 2/4] bpf: Add stub for btf_struct_access(), Daniel Xu
- Re: [PATCH bpf-next v2 2/4] bpf: Add stub for btf_struct_access(), Kumar Kartikeya Dwivedi
[PATCH bpf-next v2 1/4] bpf: Remove duplicate PTR_TO_BTF_ID RO check, Daniel Xu
- Re: [PATCH bpf-next v2 1/4] bpf: Remove duplicate PTR_TO_BTF_ID RO check, Kumar Kartikeya Dwivedi
[PATCH bpf-next v2 3/4] bpf: Add support for writing to nf_conn:mark, Daniel Xu
- Re: [PATCH bpf-next v2 3/4] bpf: Add support for writing to nf_conn:mark, Kumar Kartikeya Dwivedi
  - Re: [PATCH bpf-next v2 3/4] bpf: Add support for writing to nf_conn:mark, Daniel Xu
- Re: [PATCH bpf-next v2 3/4] bpf: Add support for writing to nf_conn:mark, Alexei Starovoitov
  - Re: [PATCH bpf-next v2 3/4] bpf: Add support for writing to nf_conn:mark, Martin KaFai Lau
    - Re: [PATCH bpf-next v2 3/4] bpf: Add support for writing to nf_conn:mark, Daniel Xu
- Re: [PATCH bpf-next v2 3/4] bpf: Add support for writing to nf_conn:mark, Toke Høiland-Jørgensen
  - Re: [PATCH bpf-next v2 3/4] bpf: Add support for writing to nf_conn:mark, Daniel Xu
    - Re: [PATCH bpf-next v2 3/4] bpf: Add support for writing to nf_conn:mark, Toke Høiland-Jørgensen
      - Re: [PATCH bpf-next v2 3/4] bpf: Add support for writing to nf_conn:mark, Alexei Starovoitov
[PATCH bpf-next v2 0/4] Support direct writes to nf_conn:mark, Daniel Xu
[PATCH net 00/17] netfilter: conntrack and nf_tables bug fixes, Florian Westphal
- [PATCH net 03/17] netfilter: nf_tables: possible module reference underflow in error path, Florian Westphal
- [PATCH net 05/17] netfilter: nf_ct_h323: cap packet size at 64k, Florian Westphal
- [PATCH net 01/17] netfilter: nf_tables: use READ_ONCE and WRITE_ONCE for shared generation id access, Florian Westphal
  - Re: [PATCH net 01/17] netfilter: nf_tables: use READ_ONCE and WRITE_ONCE for shared generation id access, patchwork-bot+netdevbpf
- [PATCH net 04/17] netfilter: nf_ct_sane: remove pseudo skb linearization, Florian Westphal
- [PATCH net 02/17] netfilter: nf_tables: disallow NFTA_SET_ELEM_KEY_END with NFT_SET_ELEM_INTERVAL_END flag, Florian Westphal
- [PATCH net 08/17] netfilter: nf_tables: fix scheduling-while-atomic splat, Florian Westphal
- [PATCH net 09/17] netfilter: nfnetlink: re-enable conntrack expectation events, Florian Westphal
- [PATCH net 10/17] netfilter: nf_tables: really skip inactive sets when allocating name, Florian Westphal
- [PATCH net 07/17] netfilter: nf_ct_irc: cap packet search space to 4k, Florian Westphal
- [PATCH net 06/17] netfilter: nf_ct_ftp: prefer skb_linearize, Florian Westphal
- [PATCH net 11/17] netfilter: nf_tables: validate NFTA_SET_ELEM_OBJREF based on NFT_SET_OBJECT flag, Florian Westphal
- [PATCH net 12/17] netfilter: nf_tables: NFTA_SET_ELEM_KEY_END requires concat and interval flags, Florian Westphal
- [PATCH net 13/17] netfilter: nf_tables: disallow NFT_SET_ELEM_CATCHALL and NFT_SET_ELEM_INTERVAL_END, Florian Westphal
- [PATCH net 14/17] netfilter: nf_tables: check NFT_SET_CONCAT flag if field_count is specified, Florian Westphal
- [PATCH net 15/17] netfilter: conntrack: NF_CONNTRACK_PROCFS should no longer default to y, Florian Westphal
- [PATCH net 17/17] testing: selftests: nft_flowtable.sh: rework test to detect offload failure, Florian Westphal
- [PATCH net 16/17] testing: selftests: nft_flowtable.sh: use random netns names, Florian Westphal
[PATCH nf 0/2] testing: selftests: nft_flowtable.sh: unbreak test script, Florian Westphal
- [PATCH nf 1/2] testing: selftests: nft_flowtable.sh: use random netns names, Florian Westphal
- [PATCH nf 2/2] testing: selftests: nft_flowtable.sh: rework test to detect offload failure, Florian Westphal
[PATCH 5.19 0617/1157] netfilter: xtables: Bring SPDX identifier back, Greg Kroah-Hartman
[PATCH 5.18 0573/1095] netfilter: xtables: Bring SPDX identifier back, Greg Kroah-Hartman
[PATCH bpf-next 0/3] Support direct writes to nf_conn:mark, Daniel Xu
- [PATCH bpf-next 2/3] bpf: Add support for writing to nf_conn:mark, Daniel Xu
  - Re: [PATCH bpf-next 2/3] bpf: Add support for writing to nf_conn:mark, Toke Høiland-Jørgensen
    - Re: [PATCH bpf-next 2/3] bpf: Add support for writing to nf_conn:mark, Daniel Xu
    - Re: [PATCH bpf-next 2/3] bpf: Add support for writing to nf_conn:mark, Florian Westphal
      - Re: [PATCH bpf-next 2/3] bpf: Add support for writing to nf_conn:mark, Alexei Starovoitov
        
        Re: [PATCH bpf-next 2/3] bpf: Add support for writing to nf_conn:mark, Toke Høiland-Jørgensen
      - Re: [PATCH bpf-next 2/3] bpf: Add support for writing to nf_conn:mark, Daniel Xu
        
        Re: [PATCH bpf-next 2/3] bpf: Add support for writing to nf_conn:mark, Florian Westphal
        
        Re: [PATCH bpf-next 2/3] bpf: Add support for writing to nf_conn:mark, Daniel Xu
  - Re: [PATCH bpf-next 2/3] bpf: Add support for writing to nf_conn:mark, kernel test robot
  - Re: [PATCH bpf-next 2/3] bpf: Add support for writing to nf_conn:mark, kernel test robot
- [PATCH bpf-next 1/3] bpf: Remove duplicate PTR_TO_BTF_ID RO check, Daniel Xu
- [PATCH bpf-next 3/3] selftests/bpf: Add tests for writing to nf_conn:mark, Daniel Xu
[PATCH 5.15 418/779] netfilter: xtables: Bring SPDX identifier back, Greg Kroah-Hartman
[PATCH nf,v2] netfilter: nf_tables: check NFT_SET_CONCAT flag if field_count is specified, Pablo Neira Ayuso
[PATCH nf] netfilter: nf_tables: check NFT_SET_CONCAT flag if field_count is specified, Pablo Neira Ayuso
[PATCH nf,v4 2/2] netfilter: nf_tables: NFTA_SET_ELEM_KEY_END requires concat and interval flags, Pablo Neira Ayuso
[PATCH] netfilter: conntrack: NF_CONNTRACK_PROCFS should no longer default to y, Geert Uytterhoeven
- Re: [PATCH] netfilter: conntrack: NF_CONNTRACK_PROCFS should no longer default to y, Florian Westphal
[PATCH nf,v3 2/2] netfilter: nf_tables: NFTA_SET_ELEM_KEY_END requires concat and interval flags, Pablo Neira Ayuso
[PATCH nf] netfilter: nf_tables: disallow NFT_SET_ELEM_CATCHALL and NFT_SET_ELEM_INTERVAL_END, Pablo Neira Ayuso
[PATCH nf,v2 2/2] netfilter: nf_tables: NFTA_SET_ELEM_KEY_END requires concat and interval flags, Pablo Neira Ayuso
Re: [PATCH net 1/3] netfilter: nf_conntrack_tcp: re-init for syn packets only, Thomas Backlund
- Re: [PATCH net 1/3] netfilter: nf_conntrack_tcp: re-init for syn packets only, Neal Cardwell
[PATCH nf 1/2] netfilter: nf_tables: validate NFTA_SET_ELEM_OBJREF based on NFT_SET_OBJECT flag, Pablo Neira Ayuso
- [PATCH nf 2/2] netfilter: nf_tables: validate NFTA_SET_ELEM_KEY_END based on NFT_SET_CONCAT flag, Pablo Neira Ayuso
[RFC PATCH nf-next] netfilter: ipvs: Divide estimators into groups, Jiri Wiesner
- Re: [RFC PATCH nf-next] netfilter: ipvs: Divide estimators into groups, Julian Anastasov
  - Re: [RFC PATCH nf-next] netfilter: ipvs: Divide estimators into groups, Jiri Wiesner
    - Re: [RFC PATCH nf-next] netfilter: ipvs: Divide estimators into groups, Julian Anastasov
[PATCH bpf-next v4 0/3] Add more bpf_*_ct_lookup() selftests, Daniel Xu
- [PATCH bpf-next v4 1/3] selftests/bpf: Add existing connection bpf_*_ct_lookup() test, Daniel Xu
- [PATCH bpf-next v4 2/3] selftests/bpf: Add connmark read test, Daniel Xu
  - Re: [PATCH bpf-next v4 2/3] selftests/bpf: Add connmark read test, Martin KaFai Lau
    - Re: [PATCH bpf-next v4 2/3] selftests/bpf: Add connmark read test, Daniel Xu
      - Re: [PATCH bpf-next v4 2/3] selftests/bpf: Add connmark read test, Florian Westphal
      - Re: [PATCH bpf-next v4 2/3] selftests/bpf: Add connmark read test, Martin KaFai Lau
        
        Re: [PATCH bpf-next v4 2/3] selftests/bpf: Add connmark read test, Daniel Xu
- [PATCH bpf-next v4 3/3] selftests/bpf: Update CI kconfig, Daniel Xu
- Re: [PATCH bpf-next v4 0/3] Add more bpf_*_ct_lookup() selftests, patchwork-bot+netdevbpf
[PATCH] ipset-translate: allow invoking with a path name, Quentin Armitage
- Re: [PATCH] ipset-translate: allow invoking with a path name, Pablo Neira Ayuso
[PATCH nf] netfilter: nf_tables: fix scheduling-while-atomic splat, Florian Westphal
- Re: [PATCH nf] netfilter: nf_tables: fix scheduling-while-atomic splat, Pablo Neira Ayuso
[PATCH nft] tests: shell: check for a tainted kernel, Florian Westphal
Re: Upgrading iptables firewall on Red Hat Enterprise Linux 9.0, Phil Sutter
- Re: Upgrading iptables firewall on Red Hat Enterprise Linux 9.0, Reindl Harald
  - Re: Upgrading iptables firewall on Red Hat Enterprise Linux 9.0, Phil Sutter
    - Re: Upgrading iptables firewall on Red Hat Enterprise Linux 9.0, Reindl Harald
      - Re: Upgrading iptables firewall on Red Hat Enterprise Linux 9.0, Phil Sutter
[PATCH nft] evaluate: allow implicit ether -> vlan dep, Florian Westphal
Re: [PATCH bpf-next v3 0/3] Add more bpf_*_ct_lookup() selftests, Kumar Kartikeya Dwivedi
- Re: [PATCH bpf-next v3 0/3] Add more bpf_*_ct_lookup() selftests, Daniel Xu
[PATCH nft 0/2] --optimize fixes, Pablo Neira Ayuso
- [PATCH nft 2/2] optimize: check for mergeable rules, Pablo Neira Ayuso
- [PATCH nft 1/2] optimize: merging concatenation is unsupported, Pablo Neira Ayuso
- Re: [PATCH nft 0/2] --optimize fixes, Pablo Neira Ayuso
[ANNOUNCE] nftables 1.0.5 release, Pablo Neira Ayuso
- Optimization works only on specific syntax? (was [ANNOUNCE] nftables 1.0.5 release), Amish
  - Re: Optimization works only on specific syntax? (was [ANNOUNCE] nftables 1.0.5 release), Amish
    - Re: Optimization works only on specific syntax? (was [ANNOUNCE] nftables 1.0.5 release), Pablo Neira Ayuso
[ANNOUNCE] libnftnl 1.2.3 release, Pablo Neira Ayuso
[PATCH 1/3] netfilter: nf_tables: do not allow SET_ID to refer to another table, Thadeu Lima de Souza Cascardo
- [PATCH 3/3] netfilter: nf_tables: do not allow RULE_ID to refer to another chain, Thadeu Lima de Souza Cascardo
  - Re: [PATCH 3/3] netfilter: nf_tables: do not allow RULE_ID to refer to another chain, Pablo Neira Ayuso
- [PATCH 2/3] netfilter: nf_tables: do not allow CHAIN_ID to refer to another table, Thadeu Lima de Souza Cascardo
[PATCH nf] netfilter: nf_tables: fix null deref due to zeroed list head, Florian Westphal
- Re: [PATCH nf] netfilter: nf_tables: fix null deref due to zeroed list head, Pablo Neira Ayuso
[PATCH] netfilter: nf_tables: possible module reference underflow in error path, Pablo Neira Ayuso
- [PATCH] netfilter: nf_tables: really skip inactive sets when allocating name, Pablo Neira Ayuso
[PATCH nf 0/4] netfilter: conntrack: remove 64kb max size assumptions, Florian Westphal
- [PATCH nf 3/4] netfilter: conntrack_ftp: prefer skb_linearize, Florian Westphal
  - RE: [PATCH nf 3/4] netfilter: conntrack_ftp: prefer skb_linearize, Alexander Duyck
    - Re: [PATCH nf 3/4] netfilter: conntrack_ftp: prefer skb_linearize, Florian Westphal
      - RE: [PATCH nf 3/4] netfilter: conntrack_ftp: prefer skb_linearize, Alexander Duyck
        
        Re: [PATCH nf 3/4] netfilter: conntrack_ftp: prefer skb_linearize, Florian Westphal
- [PATCH nf 1/4] netfilter: conntrack: sane: remove pseudo skb linearization, Florian Westphal
- [PATCH nf 2/4] netfilter: conntrack: h323: cap packet size at 64k, Florian Westphal
- [PATCH nf 4/4] netfilter: conntrack_irc: cap packet search space to 4k, Florian Westphal
- Re: [PATCH nf 0/4] netfilter: conntrack: remove 64kb max size assumptions, Pablo Neira Ayuso
[PATCH nf] netfilter: nf_tables: disallow NFTA_SET_ELEM_KEY_END with NFT_SET_ELEM_INTERVAL_END flag, Pablo Neira Ayuso
[PATCH] netfilter: nf_tables: use READ_ONCE and WRITE_ONCE for shared generation id access, Pablo Neira Ayuso
[PATCH nf,v4] netfilter: nf_tables: validate variable length element extension, Pablo Neira Ayuso
- Re: [PATCH nf,v4] netfilter: nf_tables: validate variable length element extension, Pablo Neira Ayuso
[PATCH] tests/py: disable arp family for queue statement, Pablo Neira Ayuso
[PATCH nftables] meta: don't use non-POSIX formats in strptime(), Jo-Philipp Wich
- Re: [PATCH nftables] meta: don't use non-POSIX formats in strptime(), Pablo Neira Ayuso
[PATCH libmnl v3 1/2] libmnl: update attribute function comments to use \return, Jacob Keller
- [PATCH libmnl v3 2/2] libmnl: add support for signed types, Jacob Keller
  - Re: [PATCH libmnl v3 2/2] libmnl: add support for signed types, Pablo Neira Ayuso
- Re: [PATCH libmnl v3 1/2] libmnl: update attribute function comments to use \return, Pablo Neira Ayuso
[PATCH nf,v2 1/2] netfilter: nf_tables: upfront validation of data via nft_data_init(), Pablo Neira Ayuso
- [PATCH nf 2/2] netfilter: nf_tables: disallow jump to implicit chain from set element, Pablo Neira Ayuso
- Re: [PATCH nf,v2 1/2] netfilter: nf_tables: upfront validation of data via nft_data_init(), Pablo Neira Ayuso
[PATCH nf] netfilter: nf_tables: upfront validation of data via nft_data_init(), Pablo Neira Ayuso
[PATCH nf,v3] netfilter: nf_tables: validate variable length element extension, Pablo Neira Ayuso
[net] 2638eb8b50: WARNING:suspicious_RCU_usage, kernel test robot
[RESEND (v2) PATCH] netfilter: Fix a typo in a comment, Christophe JAILLET
- Re: [RESEND (v2) PATCH] netfilter: Fix a typo in a comment, Pablo Neira Ayuso
[RESEND PATCH] netfilter: Fix a typo in a comment, Christophe JAILLET
[PATCH libmnl v2 1/2] libmnl: update attribute function comments to use \return, Jacob Keller
- [PATCH libmnl v2 2/2] libmnl: add support for signed types, Jacob Keller
  - Re: [PATCH libmnl v2 2/2] libmnl: add support for signed types, Pablo Neira Ayuso
    - RE: [PATCH libmnl v2 2/2] libmnl: add support for signed types, Keller, Jacob E
    - RE: [PATCH libmnl v2 2/2] libmnl: add support for signed types, Keller, Jacob E
      - Re: [PATCH libmnl v2 2/2] libmnl: add support for signed types, Pablo Neira Ayuso
- Re: [PATCH libmnl v2 1/2] libmnl: update attribute function comments to use \return, Duncan Roe
- Re: [PATCH libmnl v2 1/2] libmnl: update attribute function comments to use \return, Pablo Neira Ayuso
[PATCH nf] netfilter: nfnetlink: re-enable conntrack expectation events, Florian Westphal
- Re: [PATCH nf] netfilter: nfnetlink: re-enable conntrack expectation events, Pablo Neira Ayuso
[PATCH libnetfilter_queue] build: doc: Update build_man.sh to find bash in PATH, Duncan Roe
[PATCH nf,v2] netfilter: nf_tables: validate variable length element extension, Pablo Neira Ayuso
[PATCH libmnl] libmnl: add support for signed types, Jacob Keller
- Re: [PATCH libmnl] libmnl: add support for signed types, Jan Engelhardt
  - RE: [PATCH libmnl] libmnl: add support for signed types, Keller, Jacob E
  - Re: [PATCH libmnl] libmnl: add support for signed types, Duncan Roe
[PATCH nf] netfilter: flowtable: fix incorrect Kconfig dependencies, Pablo Neira Ayuso
[PATCH libmnl 0/6] Doxygen Build Improvements, Jeremy Sowden
- [PATCH libmnl 1/6] build: add `make dist` tar-balls to .gitignore, Jeremy Sowden
- [PATCH libmnl 2/6] doc: add .gitignore for Doxygen artefacts, Jeremy Sowden
- [PATCH libmnl 5/6] doc: move man-page sym-link shell-script into a separate file, Jeremy Sowden
  - Re: [PATCH libmnl 5/6] doc: move man-page sym-link shell-script into a separate file, Jan Engelhardt
    - Re: [PATCH libmnl 5/6] doc: move man-page sym-link shell-script into a separate file, Jeremy Sowden
- [PATCH libmnl 6/6] doc: fix doxygen `clean-local` rule, Jeremy Sowden
- [PATCH libmnl 3/6] doc: change `INPUT` doxygen setting to `@top_srcdir@`, Jeremy Sowden
- [PATCH libmnl 4/6] doc: move doxygen config file into doxygen directory, Jeremy Sowden
- Re: [PATCH libmnl 0/6] Doxygen Build Improvements, Duncan Roe
  - Re: [PATCH libmnl 0/6] Doxygen Build Improvements, Jeremy Sowden
[syzbot] general protection fault in br_nf_pre_routing_finish (2), syzbot
[PATCH iptables] tests: add ebtables among testcase, Florian Westphal
[PATCH iptables] nft: fix ebtables among match when mac+ip addresses are used, Florian Westphal
[PATCH nft,v3] parser_json: fix device parsing in netdev family, Pablo Neira Ayuso
[PATCH nft,v2] parser_json: fix device parsing in netdev family, Pablo Neira Ayuso
[PATCH nf-next v2] netfilter: nf_flow_table: delay teardown the offload flow until fin packet recv from both direction, wenxu
iptables v1.6.2 EOS date, Nicolas MAFFRE
- Re: iptables v1.6.2 EOS date, Jan Engelhardt
- Re: iptables v1.6.2 EOS date, Florian Westphal
[PATCH AUTOSEL 4.19 3/4] netfilter: nf_tables: add rescheduling points during loop detection walks, Sasha Levin
[PATCH AUTOSEL 5.4 5/6] netfilter: nf_tables: add rescheduling points during loop detection walks, Sasha Levin
[PATCH AUTOSEL 5.10 6/7] netfilter: nf_tables: add rescheduling points during loop detection walks, Sasha Levin
[PATCH AUTOSEL 5.15 7/8] netfilter: nf_tables: add rescheduling points during loop detection walks, Sasha Levin
[PATCH AUTOSEL 5.18 09/10] netfilter: nft_queue: only allow supported familes and hooks, Sasha Levin
[PATCH AUTOSEL 5.18 08/10] netfilter: nf_tables: add rescheduling points during loop detection walks, Sasha Levin
[PATCH libmnl] build: doc: refer to bash as bash, not /bin/bash, Mark Mentovai
- Re: [PATCH libmnl] build: doc: refer to bash as bash, not /bin/bash, Duncan Roe
  - Re: [PATCH libmnl] build: doc: refer to bash as bash, not /bin/bash, Mark Mentovai
    - Re: [PATCH libmnl] build: doc: refer to bash as bash, not /bin/bash, Duncan Roe
- Re: [PATCH libmnl] build: doc: refer to bash as bash, not /bin/bash, Duncan Roe
[PATCH nf 0/2] netfilter: nf_tables: fix nf_trace related crash, Florian Westphal
- [PATCH nf 2/2] selftests: netfilter: add test case for nf trace infrastructure, Florian Westphal
- [PATCH nf 1/2] netfilter: nf_tables: fix crash when nf_trace is enabled, Florian Westphal
[PATCH nft] parser_json: fix device parsing in netdev family, Pablo Neira Ayuso
[PATCH nft v2 0/8] really handle stacked l2 headers, Florian Westphal
- [PATCH nft v2 1/8] netlink_delinearize: allow postprocessing on concatenated elements, Florian Westphal
- [PATCH nft v2 2/8] netlink_delinearize: postprocess binary ands in concatenations, Florian Westphal
- [PATCH nft v2 3/8] proto: track full stack of seen l2 protocols, not just cumulative offset, Florian Westphal
- [PATCH nft v2 4/8] debug: dump the l2 protocol stack, Florian Westphal
- [PATCH nft v2 5/8] tests: add a test case for ether and vlan listing, Florian Westphal
- [PATCH nft v2 6/8] netlink_delinearize: also postprocess OP_AND in set element context, Florian Westphal
- [PATCH nft v2 7/8] evaluate: search stacked header list for matching payload dep, Florian Westphal
- [PATCH nft v2 8/8] src: allow anon set concatenation with ether and vlan, Florian Westphal
- Re: [PATCH nft v2 0/8] really handle stacked l2 headers, Pablo Neira Ayuso
  - Re: [PATCH nft v2 0/8] really handle stacked l2 headers, Florian Westphal
[PATCH] ebtables: add "allstatic" build target, Justin Swartz
[RFC] Remove DECNET support from kernel, Stephen Hemminger
- Re: [RFC] Remove DECNET support from kernel, Pali Rohár
- Re: [RFC] Remove DECNET support from kernel, David Ahern
- RE: [RFC] Remove DECNET support from kernel, David Laight
[PATCH libnftnl RFC 1/3] src: add string API support, Pablo Neira Ayuso
- [PATCH libnftnl RFC 2/3] expr: add string expression, Pablo Neira Ayuso
- [PATCH libnftnl RFC 3/3] examples: update nft-rule-add to match on string, Pablo Neira Ayuso
[PATCH RFC 1/3] src: add string API support, Pablo Neira Ayuso
[PATCH RFC 0/3] nf_tables string match support, Pablo Neira Ayuso
- [PATCH RFC 1/3] netfilter: add Aho-Corasick string match implementation, Pablo Neira Ayuso
- [PATCH RFC 3/3] netfilter: nf_tables: add string expression, Pablo Neira Ayuso
- [PATCH RFC 2/3] netfilter: nf_tables: add string set API, Pablo Neira Ayuso
[iptables PATCH 1/3] tests: shell: Fix testcases for changed ip6tables opts output, Phil Sutter
- [iptables PATCH 2/3] xshared: Fix for missing space after 'prot' column, Phil Sutter
- [iptables PATCH 3/3] xshared: Print protocol numbers if --numeric was given, Phil Sutter
- Re: [iptables PATCH 1/3] tests: shell: Fix testcases for changed ip6tables opts output, Florian Westphal
  - Re: [iptables PATCH 1/3] tests: shell: Fix testcases for changed ip6tables opts output, Phil Sutter
    - Re: [iptables PATCH 1/3] tests: shell: Fix testcases for changed ip6tables opts output, Erik Skultety
[PATCH nft 0/7] really handle stacked l2 headers, Florian Westphal
- [PATCH nft 2/7] netlink_delinearize: postprocess binary ands in set expressions, Florian Westphal
  - Re: [PATCH nft 2/7] netlink_delinearize: postprocess binary ands in set expressions, Pablo Neira Ayuso
    - Re: [PATCH nft 2/7] netlink_delinearize: postprocess binary ands in set expressions, Florian Westphal
- [PATCH nft 1/7] netlink_delinearize: allow postprocessing on concatenated elements, Florian Westphal
- [PATCH nft 3/7] proto: track full stack of seen l2 protocols, not just cumulative offset, Florian Westphal
- [PATCH nft 7/7] src: allow anon set concatenation with ether and vlan, Florian Westphal
- [PATCH nft 6/7] evaluate: search stacked header list for matching payload dep, Florian Westphal
- [PATCH nft 4/7] debug: dump the l2 protocol stack, Florian Westphal
- [PATCH nft 5/7] tests: add a test case for ether and vlan listing, Florian Westphal
[PATCH v2 nf] netfilter: nft_queue: only allow supported familes and hooks, Florian Westphal
[PATCH nf] netfilter: nf_tables: add rescheduling points during loop detection walks, Florian Westphal
- Re: [PATCH nf] netfilter: nf_tables: add rescheduling points during loop detection walks, Pablo Neira Ayuso
[PATCH nf] netfilter: nft_queue: only allow supported families, Florian Westphal
- Re: [PATCH nf] netfilter: nft_queue: only allow supported families, Pablo Neira Ayuso
  - Re: [PATCH nf] netfilter: nft_queue: only allow supported families, Florian Westphal
[PATCH nf] netfilter: nf_queue: do not allow packet truncation below transport header offset, Florian Westphal
- Re: [PATCH nf] netfilter: nf_queue: do not allow packet truncation below transport header offset, Pablo Neira Ayuso
[PATCH nf-next] netfilter: nf_flow_table: delay teardown the offload flow until fin packet recv from both direction, wenxu
- Re: [PATCH nf-next] netfilter: nf_flow_table: delay teardown the offload flow until fin packet recv from both direction, Pablo Neira Ayuso
  - Message not available
    - Re: Re: [PATCH nf-next] netfilter: nf_flow_table: delay teardown the offload flow until fin packet recv from both direction, wenxu@xxxxxxxxxxxxxxx
[PATCH bpf-next] net: netfilter: Remove ifdefs for code shared by BPF and ctnetlink, Kumar Kartikeya Dwivedi
- Re: [PATCH bpf-next] net: netfilter: Remove ifdefs for code shared by BPF and ctnetlink, Kumar Kartikeya Dwivedi
- Re: [PATCH bpf-next] net: netfilter: Remove ifdefs for code shared by BPF and ctnetlink, patchwork-bot+netdevbpf
A probable bug in nftables doc, Eve Adam
iptables 1.8.8 misses -j CT calls, Jan Engelhardt
- Re: iptables 1.8.8 misses -j CT calls, Pablo Neira Ayuso
  - Re: iptables 1.8.8 misses -j CT calls, Pablo Neira Ayuso
[PATCH bpf-next v7 00/13] New nf_conntrack kfuncs for insertion, changing timeout, status, Kumar Kartikeya Dwivedi
- [PATCH bpf-next v7 04/13] bpf: Add support for forcing kfunc args to be trusted, Kumar Kartikeya Dwivedi
  - Re: [PATCH bpf-next v7 04/13] bpf: Add support for forcing kfunc args to be trusted, Alexei Starovoitov
    - Re: [PATCH bpf-next v7 04/13] bpf: Add support for forcing kfunc args to be trusted, Kumar Kartikeya Dwivedi
  - RE: [PATCH bpf-next v7 04/13] bpf: Add support for forcing kfunc args to be trusted, Roberto Sassu
    - Re: [PATCH bpf-next v7 04/13] bpf: Add support for forcing kfunc args to be trusted, Kumar Kartikeya Dwivedi
      - RE: [PATCH bpf-next v7 04/13] bpf: Add support for forcing kfunc args to be trusted, Roberto Sassu
        
        Re: [PATCH bpf-next v7 04/13] bpf: Add support for forcing kfunc args to be trusted, Kumar Kartikeya Dwivedi
        
        RE: [PATCH bpf-next v7 04/13] bpf: Add support for forcing kfunc args to be trusted, Roberto Sassu
- [PATCH bpf-next v7 09/13] net: netfilter: Add kfuncs to set and change CT status, Kumar Kartikeya Dwivedi
- [PATCH bpf-next v7 03/13] bpf: Switch to new kfunc flags infrastructure, Kumar Kartikeya Dwivedi
- [PATCH bpf-next v7 01/13] bpf: Introduce 8-byte BTF set, Kumar Kartikeya Dwivedi
- [PATCH bpf-next v7 07/13] net: netfilter: Add kfuncs to allocate and insert CT, Kumar Kartikeya Dwivedi
  - Re: [PATCH bpf-next v7 07/13] net: netfilter: Add kfuncs to allocate and insert CT, Pablo Neira Ayuso
    - Re: [PATCH bpf-next v7 07/13] net: netfilter: Add kfuncs to allocate and insert CT, Kumar Kartikeya Dwivedi
      - Re: [PATCH bpf-next v7 07/13] net: netfilter: Add kfuncs to allocate and insert CT, Pablo Neira Ayuso
        
        Re: [PATCH bpf-next v7 07/13] net: netfilter: Add kfuncs to allocate and insert CT, Kumar Kartikeya Dwivedi
- [PATCH bpf-next v7 06/13] net: netfilter: Deduplicate code in bpf_{xdp,skb}_ct_lookup, Kumar Kartikeya Dwivedi
- [PATCH bpf-next v7 05/13] bpf: Add documentation for kfuncs, Kumar Kartikeya Dwivedi
- [PATCH bpf-next v7 02/13] tools/resolve_btfids: Add support for 8-byte BTF sets, Kumar Kartikeya Dwivedi
  - Re: [PATCH bpf-next v7 02/13] tools/resolve_btfids: Add support for 8-byte BTF sets, Jiri Olsa
- [PATCH bpf-next v7 08/13] net: netfilter: Add kfuncs to set and change CT timeout, Kumar Kartikeya Dwivedi
- [PATCH bpf-next v7 10/13] selftests/bpf: Add verifier tests for trusted kfunc args, Kumar Kartikeya Dwivedi
- [PATCH bpf-next v7 11/13] selftests/bpf: Add tests for new nf_conntrack kfuncs, Kumar Kartikeya Dwivedi
- [PATCH bpf-next v7 13/13] selftests/bpf: Fix test_verifier failed test in unprivileged mode, Kumar Kartikeya Dwivedi
- [PATCH bpf-next v7 12/13] selftests/bpf: Add negative tests for new nf_conntrack kfuncs, Kumar Kartikeya Dwivedi
- Re: [PATCH bpf-next v7 00/13] New nf_conntrack kfuncs for insertion, changing timeout, status, Zvi Effron
  - Re: [PATCH bpf-next v7 00/13] New nf_conntrack kfuncs for insertion, changing timeout, status, Kumar Kartikeya Dwivedi
- Re: [PATCH bpf-next v7 00/13] New nf_conntrack kfuncs for insertion, changing timeout, status, patchwork-bot+netdevbpf
[PATCH nf-next 00/18] Netfilter/IPVS updates for net-next, Pablo Neira Ayuso
- [PATCH nf-next 01/18] netfilter: conntrack: use fallthrough to cleanup, Pablo Neira Ayuso
  - Re: [PATCH nf-next 01/18] netfilter: conntrack: use fallthrough to cleanup, patchwork-bot+netdevbpf
- [PATCH nf-next 04/18] netfilter: nf_flow_table: count pending offload workqueue tasks, Pablo Neira Ayuso
- [PATCH nf-next 06/18] netfilter: nf_conntrack: use rcu accessors where needed, Pablo Neira Ayuso
- [PATCH nf-next 05/18] netfilter: nf_conntrack: add missing __rcu annotations, Pablo Neira Ayuso
- [PATCH nf-next 08/18] netfilter: nft_set_bitmap: Fix spelling mistake, Pablo Neira Ayuso
- [PATCH nf-next 02/18] netfilter: conntrack: use correct format characters, Pablo Neira Ayuso
- [PATCH nf-next 07/18] netfilter: h323: merge nat hook pointers into one, Pablo Neira Ayuso
- [PATCH nf-next 03/18] net/sched: act_ct: set 'net' pointer when creating new nf_flow_table, Pablo Neira Ayuso
- [PATCH nf-next 10/18] netfilter: x_tables: use correct integer types, Pablo Neira Ayuso
- [PATCH nf-next 09/18] netfilter: nfnetlink: add missing __be16 cast, Pablo Neira Ayuso
- [PATCH nf-next 11/18] netfilter: nf_tables: use the correct get/put helpers, Pablo Neira Ayuso
- [PATCH nf-next 12/18] netfilter: nf_tables: add and use BE register load-store helpers, Pablo Neira Ayuso
- [PATCH nf-next 18/18] netfilter: xt_TPROXY: remove pr_debug invocations, Pablo Neira Ayuso
- [PATCH nf-next 15/18] netfilter: nf_nat: in nf_nat_initialized(), use const struct nf_conn *, Pablo Neira Ayuso
- [PATCH nf-next 14/18] netfilter: nf_tables: move nft_cmp_fast_mask to where its used, Pablo Neira Ayuso
- [PATCH nf-next 16/18] netfilter: ipvs: Use the bitmap API to allocate bitmaps, Pablo Neira Ayuso
- [PATCH nf-next 13/18] netfilter: nf_tables: use correct integer types, Pablo Neira Ayuso
- [PATCH nf-next 17/18] netfilter: flowtable: prefer refcount_inc, Pablo Neira Ayuso
[PATCH nf-next 0/3] netfilter: conntrack: ignore overly delayed tcp packets, Florian Westphal
- [PATCH nf-next 1/3] netfilter: conntrack: prepare tcp_in_window for ternary return value, Florian Westphal
- [PATCH nf-next 2/3] netfilter: conntrack: ignore overly delayed tcp packets, Florian Westphal
- [PATCH nf-next 3/3] netfilter: conntrack: remove unneeded indent level, Florian Westphal
[iptables PATCH] iptables: xshared: Ouptut '--' in the opt field in ipv6's fake mode, Erik Skultety
- Re: [iptables PATCH] iptables: xshared: Ouptut '--' in the opt field in ipv6's fake mode, Florian Westphal
  - Re: [iptables PATCH] iptables: xshared: Ouptut '--' in the opt field in ipv6's fake mode, Erik Skultety
    - Re: [iptables PATCH] iptables: xshared: Ouptut '--' in the opt field in ipv6's fake mode, Phil Sutter
      - Re: [iptables PATCH] iptables: xshared: Ouptut '--' in the opt field in ipv6's fake mode, Florian Westphal
- Re: [iptables PATCH] iptables: xshared: Ouptut '--' in the opt field in ipv6's fake mode, Jan Engelhardt
  - Re: [iptables PATCH] iptables: xshared: Ouptut '--' in the opt field in ipv6's fake mode, Erik Skultety
    - Re: [iptables PATCH] iptables: xshared: Ouptut '--' in the opt field in ipv6's fake mode, Jan Engelhardt
- Re: [iptables PATCH] iptables: xshared: Ouptut '--' in the opt field in ipv6's fake mode, Florian Westphal
  - Re: [iptables PATCH] iptables: xshared: Ouptut '--' in the opt field in ipv6's fake mode, Erik Skultety
[PATCH v2] net-next: improve handling of ICMP_EXT_ECHO icmp type, Mathias Lark
- Re: [PATCH v2] net-next: improve handling of ICMP_EXT_ECHO icmp type, Eric Dumazet
[PATCH bpf-next v6 00/13] New nf_conntrack kfuncs for insertion, changing timeout, status, Kumar Kartikeya Dwivedi
- [PATCH bpf-next v6 01/13] bpf: Introduce BTF ID flags and 8-byte BTF set, Kumar Kartikeya Dwivedi
  - Re: [PATCH bpf-next v6 01/13] bpf: Introduce BTF ID flags and 8-byte BTF set, Alexei Starovoitov
    - Re: [PATCH bpf-next v6 01/13] bpf: Introduce BTF ID flags and 8-byte BTF set, Kumar Kartikeya Dwivedi
- [PATCH bpf-next v6 02/13] tools/resolve_btfids: Add support for resolving kfunc flags, Kumar Kartikeya Dwivedi
- [PATCH bpf-next v6 08/13] net: netfilter: Add kfuncs to set and change CT timeout, Kumar Kartikeya Dwivedi
- [PATCH bpf-next v6 10/13] selftests/bpf: Add verifier tests for trusted kfunc args, Kumar Kartikeya Dwivedi
- [PATCH bpf-next v6 09/13] net: netfilter: Add kfuncs to set and change CT status, Kumar Kartikeya Dwivedi
- [PATCH bpf-next v6 06/13] net: netfilter: Deduplicate code in bpf_{xdp,skb}_ct_lookup, Kumar Kartikeya Dwivedi
- [PATCH bpf-next v6 12/13] selftests/bpf: Add negative tests for new nf_conntrack kfuncs, Kumar Kartikeya Dwivedi
- [PATCH bpf-next v6 04/13] bpf: Add support for forcing kfunc args to be trusted, Kumar Kartikeya Dwivedi
- [PATCH bpf-next v6 07/13] net: netfilter: Add kfuncs to allocate and insert CT, Kumar Kartikeya Dwivedi
- [PATCH bpf-next v6 13/13] selftests/bpf: Fix test_verifier failed test in unprivileged mode, Kumar Kartikeya Dwivedi
- [PATCH bpf-next v6 11/13] selftests/bpf: Add tests for new nf_conntrack kfuncs, Kumar Kartikeya Dwivedi
- [PATCH bpf-next v6 05/13] bpf: Add documentation for kfuncs, Kumar Kartikeya Dwivedi
  - Re: [PATCH bpf-next v6 05/13] bpf: Add documentation for kfuncs, Toke Høiland-Jørgensen
    - Re: [PATCH bpf-next v6 05/13] bpf: Add documentation for kfuncs, Kumar Kartikeya Dwivedi
- [PATCH bpf-next v6 03/13] bpf: Switch to new kfunc flags infrastructure, Kumar Kartikeya Dwivedi
[PATCH nft 2/2,v4] cache: validate handle string length, Pablo Neira Ayuso
[PATCH nft] cache: report an error message if cache initialization fails, Pablo Neira Ayuso
[PATCH nft 2/2,v3] cache: validate handle string length, Pablo Neira Ayuso
[PATCH nft 1/2] cache: prepare nft_cache_evaluate() to return error, Pablo Neira Ayuso
- [PATCH nft 2/2] cache: validate handle string length, Pablo Neira Ayuso
[PATCH nft] parser_bison: bail out on too long names, Pablo Neira Ayuso
- Re: [PATCH nft] parser_bison: bail out on too long names, Phil Sutter
  - Re: [PATCH nft] parser_bison: bail out on too long names, Pablo Neira Ayuso
    - Re: [PATCH nft] parser_bison: bail out on too long names, Phil Sutter
      - Re: [PATCH nft] parser_bison: bail out on too long names, Pablo Neira Ayuso
[PATCH net-next] improve handling of ICMP_EXT_ECHO icmp type, Mathias Lark
- Re: [PATCH net-next] improve handling of ICMP_EXT_ECHO icmp type, Jakub Kicinski
- Re: [PATCH net-next] improve handling of ICMP_EXT_ECHO icmp type, kernel test robot
- Re: [PATCH net-next] improve handling of ICMP_EXT_ECHO icmp type, kernel test robot
[IPTABLES][PATCHv3] xt_sctp: support a couple of new chunk types, Yuxuan Luo
- Re: [IPTABLES][PATCHv3] xt_sctp: support a couple of new chunk types, Phil Sutter
[IPTABLES][PATCHv2] xt_sctp: support a couple of new chunk types, Yuxuan Luo
[PATCH v2] src: proto: support DF, LE PHB, VA for DSCP, Oleksandr Natalenko
- Re: [PATCH v2] src: proto: support DF, LE PHB, VA for DSCP, Pablo Neira Ayuso
FTBS on Debian Bullseye with xtables-addons-dkms 3.13-1 and kernel 5.10.0-16-amd64, Lupe Christoph
- Re: FTBS on Debian Bullseye with xtables-addons-dkms 3.13-1 and kernel 5.10.0-16-amd64, Jeremy Sowden
  - Re: FTBS on Debian Bullseye with xtables-addons-dkms 3.13-1 and kernel 5.10.0-16-amd64, Lupe Christoph
[PATCH nf,v3] netfilter: nf_tables: replace BUG_ON by element length check, Pablo Neira Ayuso
libnftnl broken examples, Serg
- Re: libnftnl broken examples, Jeremy Sowden
[PATCH conntrack-tools 1/3] conntrack: update manpage with new -A command, Pablo Neira Ayuso
- [PATCH conntrack-tools 3/3] conntrack: slightly simplify parse_proto_num() by using strtoul(), Pablo Neira Ayuso
- [PATCH conntrack-tools 2/3] conntrack: use IPPROTO_RAW, Pablo Neira Ayuso
[PATCH nf,v2 1/2] netfilter: nf_tables: release element key when parser fails, Pablo Neira Ayuso
- [PATCH nf,v2 2/2] netfilter: nf_tables: replace BUG_ON by element length check, Pablo Neira Ayuso
- Re: [PATCH nf,v2 1/2] netfilter: nf_tables: release element key when parser fails, Pablo Neira Ayuso
  - Re: [PATCH nf,v2 1/2] netfilter: nf_tables: release element key when parser fails, Pablo Neira Ayuso
- Re: [PATCH nf, v2 1/2] netfilter: nf_tables: release element key when parser fails, Dan Carpenter
[PATCH nf] netfilter: nf_tables: release key_end if element deletion fails, Pablo Neira Ayuso
[PATCH nf-next] netfilter: nf_tables: validate variable length element extension, Pablo Neira Ayuso
[PATCH nf] netfilter: nf_tables: release key if get element fails, Pablo Neira Ayuso
[PATCH nf-next] netfilter: flowtable: prefer refcount_inc, Florian Westphal
- Re: [PATCH nf-next] netfilter: flowtable: prefer refcount_inc, Pablo Neira Ayuso
[PATCH] netfilter: xt_TPROXY: fix clang -Wformat warnings:, Justin Stitt
- Re: [PATCH] netfilter: xt_TPROXY: fix clang -Wformat warnings:, Nick Desaulniers
- Re: [PATCH] netfilter: xt_TPROXY: fix clang -Wformat warnings:, Pablo Neira Ayuso
  - Re: [PATCH] netfilter: xt_TPROXY: fix clang -Wformat warnings:, Justin Stitt
    - Re: [PATCH] netfilter: xt_TPROXY: fix clang -Wformat warnings:, Pablo Neira Ayuso
      - [PATCH] netfilter: xt_TPROXY: remove pr_debug invocations, Justin Stitt
        
        Re: [PATCH] netfilter: xt_TPROXY: remove pr_debug invocations, Nathan Chancellor
        
        Re: [PATCH] netfilter: xt_TPROXY: remove pr_debug invocations, Justin Stitt
        
        [PATCH v2] netfilter: xt_TPROXY: remove pr_debug invocations, Justin Stitt
        
        Re: [PATCH v2] netfilter: xt_TPROXY: remove pr_debug invocations, Justin Stitt
        
        Re: [PATCH v2] netfilter: xt_TPROXY: remove pr_debug invocations, Pablo Neira Ayuso
[PATCH] Extends py/nftables.py, Peter Collinson
- Re: [PATCH] Extends py/nftables.py, Pablo Neira Ayuso
- <Possible follow-ups>
- [PATCH] Extends py/nftables.py, Peter Collinson
[PATCH nft] rule: crash when uncollapsing command with unexisting table or set, Pablo Neira Ayuso
[linux-next:master] BUILD REGRESSION 088b9c375534d905a4d337c78db3b3bfbb52c4a0, kernel test robot
- Re: [linux-next:master] BUILD REGRESSION 088b9c375534d905a4d337c78db3b3bfbb52c4a0, Greg KH
  - Re: [linux-next:master] BUILD REGRESSION 088b9c375534d905a4d337c78db3b3bfbb52c4a0, Chen, Rong A
  - Re: [linux-next:master] BUILD REGRESSION 088b9c375534d905a4d337c78db3b3bfbb52c4a0, Guenter Roeck
    - Re: [linux-next:master] BUILD REGRESSION 088b9c375534d905a4d337c78db3b3bfbb52c4a0, Dan Carpenter
[PATCH nft] scanner: allow prefix in ip6 scope, Florian Westphal
[PATCH AUTOSEL 4.14 3/8] netfilter: br_netfilter: do not skip all hooks with 0 priority, Sasha Levin
[PATCH AUTOSEL 4.19 3/8] netfilter: br_netfilter: do not skip all hooks with 0 priority, Sasha Levin
[PATCH AUTOSEL 5.4 3/9] netfilter: br_netfilter: do not skip all hooks with 0 priority, Sasha Levin
[PATCH AUTOSEL 5.10 03/11] netfilter: br_netfilter: do not skip all hooks with 0 priority, Sasha Levin
[PATCH AUTOSEL 5.15 07/18] netfilter: br_netfilter: do not skip all hooks with 0 priority, Sasha Levin
[PATCH AUTOSEL 5.18 08/22] netfilter: nf_tables: avoid skb access on nf_stolen, Sasha Levin
[PATCH AUTOSEL 5.18 09/22] netfilter: br_netfilter: do not skip all hooks with 0 priority, Sasha Levin
[PATCH nft] cache: release pending rules when chain binding lookup fails, Pablo Neira Ayuso
[linux-next:master] BUILD REGRESSION 2a2aa3f05338270aecbe2492fda910d6c17e0102, kernel test robot
[PATCH nf] netfilter: nf_tables: replace BUG_ON by element length check, Pablo Neira Ayuso
[PATCH] netfilter: nf_log: incorrect offset to network header, Pablo Neira Ayuso
[linux-next:master] BUILD REGRESSION b6f1f2fa2bddd69ff46a190b8120bd440fd50563, kernel test robot
[PATCH] netfilter: ipvs: Use the bitmap API to allocate bitmaps, Christophe JAILLET
- Re: [PATCH] netfilter: ipvs: Use the bitmap API to allocate bitmaps, Julian Anastasov
  - Re: [PATCH] netfilter: ipvs: Use the bitmap API to allocate bitmaps, Simon Horman
- Re: [PATCH] netfilter: ipvs: Use the bitmap API to allocate bitmaps, Pablo Neira Ayuso
[BUG] ARP packet "parsing" broken in output hook of arp and netdev family table, Tom Yan
Re: [PATCH v1] netfilter: nf_tables: fix nft_set_elem_init heap buffer overflow, Pablo Neira Ayuso
- Re: [PATCH v1] netfilter: nf_tables: fix nft_set_elem_init heap buffer overflow, Pablo Neira Ayuso
  - Re: [PATCH v1] netfilter: nf_tables: fix nft_set_elem_init heap buffer overflow, Hugues ANGUELKOV
[PATCH] netfilter: nf_tables: stricter validation of element data, Pablo Neira Ayuso
- [PATCH] netfilter: nft_set_pipapo: release elements in clone from abort path, Pablo Neira Ayuso
[linux-next:master] BUILD REGRESSION c4185b16aba73929aa76f0d030efbe79ae867808, kernel test robot
[vs] Netfilter vulnerability disclosure, Hugues ANGUELKOV
[Regression] stress-ng udp-flood causes kernel panic on Ampere Altra, Kajetan Puchalski
- Re: [Regression] stress-ng udp-flood causes kernel panic on Ampere Altra #forregzbot, Thorsten Leemhuis
- Re: [Regression] stress-ng udp-flood causes kernel panic on Ampere Altra, Florian Westphal
  - Re: [Regression] stress-ng udp-flood causes kernel panic on Ampere Altra, Kajetan Puchalski
    - Re: [Regression] stress-ng udp-flood causes kernel panic on Ampere Altra, Willy Tarreau
    - Re: [Regression] stress-ng udp-flood causes kernel panic on Ampere Altra, Florian Westphal
      - Re: [Regression] stress-ng udp-flood causes kernel panic on Ampere Altra, Kajetan Puchalski
        
        Re: [Regression] stress-ng udp-flood causes kernel panic on Ampere Altra, Kajetan Puchalski
        
        Re: [Regression] stress-ng udp-flood causes kernel panic on Ampere Altra, Kajetan Puchalski
        
        Re: [Regression] stress-ng udp-flood causes kernel panic on Ampere Altra, Will Deacon
        
        Re: [Regression] stress-ng udp-flood causes kernel panic on Ampere Altra, Will Deacon
        
        Re: [Regression] stress-ng udp-flood causes kernel panic on Ampere Altra, Will Deacon
        
        Re: [Regression] stress-ng udp-flood causes kernel panic on Ampere Altra, Kajetan Puchalski
        
        Re: [Regression] stress-ng udp-flood causes kernel panic on Ampere Altra, Kajetan Puchalski
        
        Re: [Regression] stress-ng udp-flood causes kernel panic on Ampere Altra, Florian Westphal
        
        Re: [Regression] stress-ng udp-flood causes kernel panic on Ampere Altra, Peter Zijlstra
        
        Re: [Regression] stress-ng udp-flood causes kernel panic on Ampere Altra, Will Deacon
        
        Re: [Regression] stress-ng udp-flood causes kernel panic on Ampere Altra, Florian Westphal
        
        [PATCH nf v3] netfilter: conntrack: fix crash due to confirmed bit load reordering, Florian Westphal
        
        Re: [PATCH nf v3] netfilter: conntrack: fix crash due to confirmed bit load reordering, Will Deacon
        
        Re: [PATCH nf v3] netfilter: conntrack: fix crash due to confirmed bit load reordering, Florian Westphal
        
        Re: [PATCH nf v3] netfilter: conntrack: fix crash due to confirmed bit load reordering, Thorsten Leemhuis
        
        Re: [PATCH nf v3] netfilter: conntrack: fix crash due to confirmed bit load reordering, Kajetan Puchalski
        
        Re: [Regression] stress-ng udp-flood causes kernel panic on Ampere Altra, Peter Zijlstra
[linux-next:master] BUILD REGRESSION 6cc11d2a1759275b856e464265823d94aabd5eaf, kernel test robot
- Re: [linux-next:master] BUILD REGRESSION 6cc11d2a1759275b856e464265823d94aabd5eaf, Roman Gushchin
[iptables PATCH] libxtables: Fix unsupported extension warning corner case, Phil Sutter
- Re: [iptables PATCH] libxtables: Fix unsupported extension warning corner case, Phil Sutter
[PATCH 0/6] netfilter: ipset: Add support for new bitmask parameter, Vishwanath Pai
- [PATCH 3/6] netfilter: ipset: Add bitmask support to hash:ip, Vishwanath Pai
- [PATCH 2/6] netfilter: ipset: Add support for new bitmask parameter, Vishwanath Pai
- [PATCH 5/6] netfilter: ipset: Add bitmask support to hash:netnet, Vishwanath Pai
- [PATCH 1/6] netfilter: ipset: include linux/nf_inet_addr.h, Vishwanath Pai
  - Re: [PATCH 1/6] netfilter: ipset: include linux/nf_inet_addr.h, Jozsef Kadlecsik
    - Re: [PATCH 1/6] netfilter: ipset: include linux/nf_inet_addr.h, Vishwanath Pai
- [PATCH 6/6] netfilter: ipset: Update the man page to include netmask/bitmask options, Vishwanath Pai
- [PATCH 4/6] netfilter: ipset: Add bitmask support to hash:ipport, Vishwanath Pai
[PATCH] netfilter: ipset: ipset list may return wrong member count on bitmap types, Vishwanath Pai
- [PATCH] netfilter: ipset: regression in ip_set_hash_ip.c, Vishwanath Pai
  - Re: [PATCH] netfilter: ipset: regression in ip_set_hash_ip.c, Jozsef Kadlecsik
    - Re: [PATCH] netfilter: ipset: regression in ip_set_hash_ip.c, Vishwanath Pai
- [PATCH] netfilter: ipset: Add support for new bitmask parameter, Vishwanath Pai
  - Re: [PATCH] netfilter: ipset: Add support for new bitmask parameter, Jozsef Kadlecsik
    - Re: [PATCH] netfilter: ipset: Add support for new bitmask parameter, Vishwanath Pai
- Re: [PATCH] netfilter: ipset: ipset list may return wrong member count on bitmap types, Jozsef Kadlecsik
  - Re: [PATCH] netfilter: ipset: ipset list may return wrong member count on bitmap types, Vishwanath Pai
    - Re: [PATCH] netfilter: ipset: ipset list may return wrong member count on bitmap types, Jozsef Kadlecsik
[PATCH] xt_sctp: support a couple of new chunk types, Yuxuan Luo
- Re: [PATCH] xt_sctp: support a couple of new chunk types, Xin Long
- Re: [PATCH] xt_sctp: support a couple of new chunk types, Marcelo Ricardo Leitner
- Re: [PATCH] xt_sctp: support a couple of new chunk types, Pablo Neira Ayuso
[PATCH] netfilter: in nf_nat_initialized(), use const struct nf_conn *, James Yonan
- Re: [PATCH] netfilter: in nf_nat_initialized(), use const struct nf_conn *, Pablo Neira Ayuso
[PATCH v2 0/3] conntrack: -A command implementation, Mikhail Sennikovsky
- [PATCH v2 3/3] conntrack: introduce new -A command, Mikhail Sennikovsky
- [PATCH v2 2/3] conntrack: use C99 initializer syntax for opts map, Mikhail Sennikovsky
- [PATCH v2 1/3] conntrack: generalize command parsing, Mikhail Sennikovsky
- Re: [PATCH v2 0/3] conntrack: -A command implementation, Pablo Neira Ayuso
[PATCH libmnl] nlmsg: Only print ECMA-48 colour sequences to terminals, Pablo Neira Ayuso
[PATCH nft] evaluate: report missing interval flag when using prefix/range in concatenation, Pablo Neira Ayuso
[PATCH nf] netfilter: nft_set_pipapo: release elements in clone from abort path, Pablo Neira Ayuso
- Re: [PATCH nf] netfilter: nft_set_pipapo: release elements in clone from abort path, Stefano Brivio
  - Re: [PATCH nf] netfilter: nft_set_pipapo: release elements in clone from abort path, Pablo Neira Ayuso
    - Re: [PATCH nf] netfilter: nft_set_pipapo: release elements in clone from abort path, Stefano Brivio
[PATCH v37 19/33] LSM: security_secid_to_secctx in netlink netfilter, Casey Schaufler
[PATCH v37 15/33] LSM: Ensure the correct LSM context releaser, Casey Schaufler
[PATCH v37 16/33] LSM: Use lsmcontext in security_secid_to_secctx, Casey Schaufler
[PATCH v37 09/33] LSM: Use lsmblob in security_secid_to_secctx, Casey Schaufler
[PATCH v37 08/33] LSM: Use lsmblob in security_secctx_to_secid, Casey Schaufler
[PATCH nftables] Allow resetting the include search path, Daniel Gröber
- Re: [PATCH nftables] Allow resetting the include search path, Pablo Neira Ayuso
  - Re: [PATCH nftables] Allow resetting the include search path, Pablo Neira Ayuso
    - Re: [PATCH nftables] Allow resetting the include search path, Daniel Gröber
      - Re: [PATCH nftables] Allow resetting the include search path, Pablo Neira Ayuso
        
        Re: [PATCH nftables] Allow resetting the include search path, Daniel Gröber
        
        Re: [PATCH nftables] Allow resetting the include search path, Peter Tirsek
        
        Re: [PATCH nftables] Allow resetting the include search path, Daniel Gröber
[PATCH][next] treewide: uapi: Replace zero-length arrays with flexible-array members, Gustavo A. R. Silva
- Re: [PATCH][next] treewide: uapi: Replace zero-length arrays with flexible-array members, Daniel Borkmann
  - Re: [PATCH][next] treewide: uapi: Replace zero-length arrays with flexible-array members, Gustavo A. R. Silva
  - Re: [PATCH][next] treewide: uapi: Replace zero-length arrays with flexible-array members, Jason Gunthorpe
    - Re: [PATCH][next] treewide: uapi: Replace zero-length arrays with flexible-array members, Gustavo A. R. Silva
      - Re: [PATCH][next] treewide: uapi: Replace zero-length arrays with flexible-array members, Gustavo A. R. Silva
        
        Re: [PATCH][next] treewide: uapi: Replace zero-length arrays with flexible-array members, Jason Gunthorpe
        
        Re: [PATCH][next] treewide: uapi: Replace zero-length arrays with flexible-array members, Gustavo A. R. Silva
    - Re: [PATCH][next] treewide: uapi: Replace zero-length arrays with flexible-array members, Kees Cook
      - Re: [PATCH][next] treewide: uapi: Replace zero-length arrays with flexible-array members, Jason Gunthorpe
- Re: [PATCH][next] treewide: uapi: Replace zero-length arrays with flexible-array members, Stephen Hemminger
  - Re: [PATCH][next] treewide: uapi: Replace zero-length arrays with flexible-array members, Gustavo A. R. Silva
- RE: [PATCH][next] treewide: uapi: Replace zero-length arrays with flexible-array members, Dan Williams
- Re: [PATCH][next] treewide: uapi: Replace zero-length arrays with flexible-array members, Geert Uytterhoeven
  - Re: [PATCH][next] treewide: uapi: Replace zero-length arrays with flexible-array members, Kees Cook
[PATCH nf-next] flow_table: do not try to add already offloaded entries, Marcelo Ricardo Leitner
- Re: [PATCH nf-next] flow_table: do not try to add already offloaded entries, Oz Shlomo
  - Re: [PATCH nf-next] flow_table: do not try to add already offloaded entries, Marcelo Ricardo Leitner
    - Re: [PATCH nf-next] flow_table: do not try to add already offloaded entries, Oz Shlomo
      - Re: [PATCH nf-next] flow_table: do not try to add already offloaded entries, Marcelo Ricardo Leitner
        
        Re: [PATCH nf-next] flow_table: do not try to add already offloaded entries, Oz Shlomo
        
        Re: [PATCH nf-next] flow_table: do not try to add already offloaded entries, Marcelo Ricardo Leitner
[PATCH nft] segtree: fix map listing with interface wildcard, Pablo Neira Ayuso

[Index of Archives] [LARTC] [Berkeley Packet Filter] [Bugtraq] [Yosemite Discussion]