Linux Netfilter / IP Tables Devel

Date Index

[Prev Page][Next Page]

Re: [syzbot] WARNING: proc registration bug in clusterip_tg_check (3), (continued)
- Re: [syzbot] WARNING: proc registration bug in clusterip_tg_check (3), syzbot
  - Re: [syzbot] WARNING: proc registration bug in clusterip_tg_check (3), Dmitry Vyukov
[PATCH iptables] ip6tables: masquerade: use fully-random so that nft can understand the rule, Pavel Tikhomirov
- Re: [PATCH iptables] ip6tables: masquerade: use fully-random so that nft can understand the rule, Florian Westphal
[PATCH v2 nf] netfilter: conntrack: remove offload_pickup sysctl again, Florian Westphal
- Re: [PATCH v2 nf] netfilter: conntrack: remove offload_pickup sysctl again, Marcelo Ricardo Leitner
  - Re: [PATCH v2 nf] netfilter: conntrack: remove offload_pickup sysctl again, Oz Shlomo
- Re: [PATCH v2 nf] netfilter: conntrack: remove offload_pickup sysctl again, Pablo Neira Ayuso
[PATCH nf] netfilter: conntrack: remove offload_pickup sysctl again, Florian Westphal
- Re: [PATCH nf] netfilter: conntrack: remove offload_pickup sysctl again, Oz Shlomo
  - Re: [PATCH nf] netfilter: conntrack: remove offload_pickup sysctl again, Florian Westphal
    - Re: [PATCH nf] netfilter: conntrack: remove offload_pickup sysctl again, Oz Shlomo
[PATCH] netfilter: ipset: fix uninitialized variable bug, Dan Carpenter
- Re: [PATCH] netfilter: ipset: fix uninitialized variable bug, Jozsef Kadlecsik
[PATCH nf 1/2] netfilter: nfnetlink_hook: use the sequence number of the request message, Pablo Neira Ayuso
- [PATCH nf 2/2] netfilter: nfnetlink_hook: Use same family as request message, Pablo Neira Ayuso
[PATCH nft,v3] mnl: revisit hook listing, Pablo Neira Ayuso
[PATCH] netfilter: ipset: Fix maximal range check in hash_ipportnet4_uadt(), Nathan Chancellor
- Re: [PATCH] netfilter: ipset: Fix maximal range check in hash_ipportnet4_uadt(), Jozsef Kadlecsik
- Re: [PATCH] netfilter: ipset: Fix maximal range check in hash_ipportnet4_uadt(), Pablo Neira Ayuso
[PATCH nf-next] x_tables: never register tables by default, Florian Westphal
- Re: [PATCH nf-next] x_tables: never register tables by default, Pablo Neira Ayuso
[iptables PATCH] tests/shell: Assert non-verbose mode is silent, Phil Sutter
[iptables PATCH] nft: Fix for non-verbose check command, Phil Sutter
[PATCH nft,v2] mnl: revisit hook listing, Pablo Neira Ayuso
[PATCH nf 1/2] netfilter: nfnetlink_hook: strip off module name from hookfn, Pablo Neira Ayuso
- [PATCH nf 2/2] netfilter: nfnetlink_hook: missing chain family, Pablo Neira Ayuso
[PATCH nft] mnl: revisit hook listing, Pablo Neira Ayuso
[PATCH v4 0/2] netfilter: add netfilter hooks to track SRv6-encapsulated flows, proelbtn
- [PATCH v4 1/2] netfilter: add new sysctl toggle for lightweight tunnel netfilter hooks, proelbtn
  - Re: [PATCH v4 1/2] netfilter: add new sysctl toggle for lightweight tunnel netfilter hooks, kernel test robot
  - Re: [PATCH v4 1/2] netfilter: add new sysctl toggle for lightweight tunnel netfilter hooks, Pablo Neira Ayuso
    - Re: [PATCH v4 1/2] netfilter: add new sysctl toggle for lightweight tunnel netfilter hooks, Ryoga Saito
- [PATCH v4 2/2] netfilter: add netfilter hooks to SRv6 data plane, proelbtn
[PATCH] conntrack-tools: support conntrack dump status filtering, Florian Westphal
- [PATCH lnf-conntrack 1/4] include: sync uapi header with nf-next, Florian Westphal
- [PATCH lnf-conntrack 2/4] src: add support for status dump filter, Florian Westphal
- [PATCH conntrack-tools 3/4] conntrack: enable kernel-based status filtering with -L -u STATUS, Florian Westphal
- [PATCH conntrack-tools 4/4] conntrack: add shorthand mnemonic for UNREPLIED, Florian Westphal
[PATCH nf-next 0/2] netfilter: ctnetlink: allow to filter dumps via ct->status, Florian Westphal
- [PATCH nf-next 1/2] netfilter: ctnetlink: add and use a helper for mark parsing, Florian Westphal
- [PATCH nf-next 2/2] netfilter: ctnetlink: allow to filter dump by status bits, Florian Westphal
- Re: [PATCH nf-next 0/2] netfilter: ctnetlink: allow to filter dumps via ct->status, Pablo Neira Ayuso
[iptables PATCH] ebtables: Dump atomic waste, Phil Sutter
- Re: [iptables PATCH] ebtables: Dump atomic waste, Pablo Neira Ayuso
  - Re: [iptables PATCH] ebtables: Dump atomic waste, Phil Sutter
    - Re: [iptables PATCH] ebtables: Dump atomic waste, Pablo Neira Ayuso
      - Re: [iptables PATCH] ebtables: Dump atomic waste, Pablo Neira Ayuso
        
        Re: [iptables PATCH] ebtables: Dump atomic waste, Pablo Neira Ayuso
        
        Re: [iptables PATCH] ebtables: Dump atomic waste, Phil Sutter
        
        Re: [iptables PATCH] ebtables: Dump atomic waste, Pablo Neira Ayuso
[PATCH v3 0/2] netfilter: add netfilter hooks to track SRv6-encapsulated flows, Ryoga Saito
- [PATCH v3 1/2] netfilter: add new sysctl toggle for lightweight tunnel netfilter hooks, Ryoga Saito
  - Re: [PATCH v3 1/2] netfilter: add new sysctl toggle for lightweight tunnel netfilter hooks, kernel test robot
- [PATCH v3 2/2] netfilter: add netfilter hooks to SRv6 data plane, Ryoga Saito
[PATCH v2 0/2] net: add netfilter hooks to track SRv6-encapsulated flows, Ryoga Saito
- [PATCH v2 1/2] netfilter: add new sysctl toggle for lightweight tunnel netfilter hooks, Ryoga Saito
  - Re: [PATCH v2 1/2] netfilter: add new sysctl toggle for lightweight tunnel netfilter hooks, kernel test robot
- [PATCH v2 2/2] netfilter: add netfilter hooks to SRv6 data plane, Ryoga Saito
[PATCH v3] netfilter: nf_conntrack_bridge: Fix memory leak when error, Yajun Deng
- Re: [PATCH v3] netfilter: nf_conntrack_bridge: Fix memory leak when error, Pablo Neira Ayuso
[PATCH v2] netfilter: nf_conntrack_bridge: Fix memory leak when error, Yajun Deng
- Re: [PATCH v2] netfilter: nf_conntrack_bridge: Fix memory leak when error, Pablo Neira Ayuso
[iptables PATCH] doc: ebtables-nft.8: Adjust for missing atomic-options, Phil Sutter
- Re: [iptables PATCH] doc: ebtables-nft.8: Adjust for missing atomic-options, Pablo Neira Ayuso
[PATCH 0/1] ipset patch for the nf tree v2, Jozsef Kadlecsik
- [PATCH 1/1] netfilter: ipset: Limit the maximal range of consecutive elements to add/delete, Jozsef Kadlecsik
  - Re: [PATCH 1/1] netfilter: ipset: Limit the maximal range of consecutive elements to add/delete, Pablo Neira Ayuso
[ANNOUNCE] ipset 7.14 released, Jozsef Kadlecsik
[PATCH nft] tests: py: check more flag match transformations to compact syntax, Pablo Neira Ayuso
[PATCH] net: netfilter: Fix port selection of FTP for NF_NAT_RANGE_PROTO_SPECIFIED, Cole Dishington
- Re: [PATCH] net: netfilter: Fix port selection of FTP for NF_NAT_RANGE_PROTO_SPECIFIED, kernel test robot
- Re: [PATCH] net: netfilter: Fix port selection of FTP for NF_NAT_RANGE_PROTO_SPECIFIED, Florian Westphal
- Re: [PATCH] net: netfilter: Fix port selection of FTP for NF_NAT_RANGE_PROTO_SPECIFIED, kernel test robot
- Re: [PATCH] net: netfilter: Fix port selection of FTP for NF_NAT_RANGE_PROTO_SPECIFIED, kernel test robot
[PATCH nft,v2 1/3] tests: py: idempotent tcp flags & syn != 0 to tcp flag syn, Pablo Neira Ayuso
- [PATCH nft,v2 2/3] netlink_delinearize: skip flags / mask notation for singleton bitmask, Pablo Neira Ayuso
- [PATCH nft,v2 3/3] tests: py: tcp flags & (fin | syn | rst | ack) == syn, Pablo Neira Ayuso
[PATCH nft 1/2] tests: py: idempotent tcp flags & syn != 0 to tcp flag syn, Pablo Neira Ayuso
- [PATCH nft 2/2] netlink_delinearize: skip flags / mask notation for singleton bitmask, Pablo Neira Ayuso
[PATCH] netfilter: xt_NFLOG: allow 128 character log prefixes, Kyle Bowman
- Re: [PATCH] netfilter: xt_NFLOG: allow 128 character log prefixes, Pablo Neira Ayuso
  - Re: [PATCH] netfilter: xt_NFLOG: allow 128 character log prefixes, Alex Forster
    - Re: [PATCH] netfilter: xt_NFLOG: allow 128 character log prefixes, Pablo Neira Ayuso
      - Re: [PATCH] netfilter: xt_NFLOG: allow 128 character log prefixes, Alex Forster
        
        Re: [PATCH] netfilter: xt_NFLOG: allow 128 character log prefixes, Pablo Neira Ayuso
        
        Re: [PATCH] netfilter: xt_NFLOG: allow 128 character log prefixes, Alex Forster
        
        Re: [PATCH] netfilter: xt_NFLOG: allow 128 character log prefixes, Pablo Neira Ayuso
        
        Re: [PATCH] netfilter: xt_NFLOG: allow 128 character log prefixes, Alex Forster
        
        Re: [PATCH] netfilter: xt_NFLOG: allow 128 character log prefixes, Pablo Neira Ayuso
        
        Re: [netfilter-core] [PATCH] netfilter: xt_NFLOG: allow 128 character log prefixes, Phil Sutter
        
        Re: [netfilter-core] [PATCH] netfilter: xt_NFLOG: allow 128 character log prefixes, Kyle Bowman
        
        Re: [netfilter-core] [PATCH] netfilter: xt_NFLOG: allow 128 character log prefixes, Jeremy Sowden
        
        Re: [netfilter-core] [PATCH] netfilter: xt_NFLOG: allow 128 character log prefixes, Jeremy Sowden
        
        Re: [netfilter-core] [PATCH] netfilter: xt_NFLOG: allow 128 character log prefixes, Jeremy Sowden
        
        Re: [netfilter-core] [PATCH] netfilter: xt_NFLOG: allow 128 character log prefixes, Jeremy Sowden
        
        Re: [netfilter-core] [PATCH] netfilter: xt_NFLOG: allow 128 character log prefixes, Kyle Bowman
        
        Re: [netfilter-core] [PATCH] netfilter: xt_NFLOG: allow 128 character log prefixes, Jeremy Sowden
        
        Re: [netfilter-core] [PATCH] netfilter: xt_NFLOG: allow 128 character log prefixes, Jeremy Sowden
[PATCH nft 1/3] expression: missing != in flagcmp expression print function, Pablo Neira Ayuso
- [PATCH nft 3/3] evaluate: disallow negation with binary operation, Pablo Neira Ayuso
- [PATCH nft 2/3] netlink_linearize: incorrect netlink bytecode with binary operation and flags, Pablo Neira Ayuso
  - Re: [PATCH nft 2/3] netlink_linearize: incorrect netlink bytecode with binary operation and flags, Tom Yan
    - Re: [PATCH nft 2/3] netlink_linearize: incorrect netlink bytecode with binary operation and flags, Pablo Neira Ayuso
      - Re: [PATCH nft 2/3] netlink_linearize: incorrect netlink bytecode with binary operation and flags, Tom Yan
        
        Re: [PATCH nft 2/3] netlink_linearize: incorrect netlink bytecode with binary operation and flags, Pablo Neira Ayuso
        
        Re: [PATCH nft 2/3] netlink_linearize: incorrect netlink bytecode with binary operation and flags, Tom Yan
        
        Re: [PATCH nft 2/3] netlink_linearize: incorrect netlink bytecode with binary operation and flags, Tom Yan
        
        Re: [PATCH nft 2/3] netlink_linearize: incorrect netlink bytecode with binary operation and flags, Tom Yan
        
        Re: [PATCH nft 2/3] netlink_linearize: incorrect netlink bytecode with binary operation and flags, Tom Yan
      - Re: [PATCH nft 2/3] netlink_linearize: incorrect netlink bytecode with binary operation and flags, Tom Yan
        
        Re: [PATCH nft 2/3] netlink_linearize: incorrect netlink bytecode with binary operation and flags, Pablo Neira Ayuso
[nft] Regarding `tcp flags` (and a potential bug), Tom Yan
- Re: [nft] Regarding `tcp flags` (and a potential bug), Tom Yan
  - Re: [nft] Regarding `tcp flags` (and a potential bug), Florian Westphal
  - Re: [nft] Regarding `tcp flags` (and a potential bug), Pablo Neira Ayuso
    - Re: [nft] Regarding `tcp flags` (and a potential bug), Tom Yan
      - Re: [nft] Regarding `tcp flags` (and a potential bug), Pablo Neira Ayuso
[ANNOUNCE] ipset 7.13 released, Jozsef Kadlecsik
- Re: [ANNOUNCE] ipset 7.13 released, Jan Engelhardt
  - Re: [ANNOUNCE] ipset 7.13 released, Jozsef Kadlecsik
  - Re: [ANNOUNCE] ipset 7.13 released, Jozsef Kadlecsik
[PATCH nf] netfilter: conntrack: collect all entries in one cycle, Florian Westphal
- Re: [PATCH nf] netfilter: conntrack: collect all entries in one cycle, Pablo Neira Ayuso
[PATCH nft] evaluate: error reporting for missing statements in set/map declaration, Pablo Neira Ayuso
[PATCH nft] src: promote 'reject with icmp CODE' syntax, Pablo Neira Ayuso
[PATCH nft] parser_bison: parse number as reject icmp code, Pablo Neira Ayuso
[nft PATCH] tests: shell: Fix bogus testsuite failure with 100Hz, Phil Sutter
- Re: [nft PATCH] tests: shell: Fix bogus testsuite failure with 100Hz, Florian Westphal
[PATCH nft] parser_bison: stateful statement support in map, Pablo Neira Ayuso
[PATCH] netfilter: nf_conntrack_bridge: Fix not free when error, Yajun Deng
- Re: [PATCH] netfilter: nf_conntrack_bridge: Fix not free when error, Pablo Neira Ayuso
- Re: [PATCH] netfilter: nf_conntrack_bridge: Fix not free when error, yajun . deng
  - Re: [PATCH] netfilter: nf_conntrack_bridge: Fix not free when error, Pablo Neira Ayuso
Nf_nat_h323 module not working with Panasonic VCs, Akshat Kakkar
- Re: Nf_nat_h323 module not working with Panasonic VCs, Jozsef Kadlecsik
  - Re: Nf_nat_h323 module not working with Panasonic VCs, Akshat Kakkar
    - Re: Nf_nat_h323 module not working with Panasonic VCs, Jozsef Kadlecsik
      - Re: Nf_nat_h323 module not working with Panasonic VCs, Akshat Kakkar
        
        Re: Nf_nat_h323 module not working with Panasonic VCs, Akshat Kakkar
        
        Re: Nf_nat_h323 module not working with Panasonic VCs, Jozsef Kadlecsik
        
        Re: Nf_nat_h323 module not working with Panasonic VCs, Akshat Kakkar
        
        Re: Nf_nat_h323 module not working with Panasonic VCs, Akshat Kakkar
        
        Re: Nf_nat_h323 module not working with Panasonic VCs, Jozsef Kadlecsik
        
        Re: Nf_nat_h323 module not working with Panasonic VCs, Jozsef Kadlecsik
        
        Re: Nf_nat_h323 module not working with Panasonic VCs, Akshat Kakkar
        
        Re: Nf_nat_h323 module not working with Panasonic VCs, Akshat Kakkar
- Re: Nf_nat_h323 module not working with Panasonic VCs, Jozsef Kadlecsik
[PATCH nft 1/2] src: fix nft_ctx_clear_include_paths in libnftables.map, Pablo Neira Ayuso
- [PATCH nft 2/2] src: expose nft_ctx_clear_vars as API, Pablo Neira Ayuso
[PATCH net 0/6] Netfilter fixes for net, Pablo Neira Ayuso
- [PATCH net 3/6] netfilter: nft_last: avoid possible false sharing, Pablo Neira Ayuso
- [PATCH net 1/6] netfilter: nf_tables: fix audit memory leak in nf_tables_commit, Pablo Neira Ayuso
  - Re: [PATCH net 1/6] netfilter: nf_tables: fix audit memory leak in nf_tables_commit, patchwork-bot+netdevbpf
- [PATCH net 5/6] netfilter: nft_nat: allow to specify layer 4 protocol NAT only, Pablo Neira Ayuso
- [PATCH net 6/6] netfilter: nfnl_hook: fix unused variable warning, Pablo Neira Ayuso
- [PATCH net 2/6] netfilter: flowtable: avoid possible false sharing, Pablo Neira Ayuso
- [PATCH net 4/6] netfilter: conntrack: adjust stop timestamp to real expiry value, Pablo Neira Ayuso
- <Possible follow-ups>
- [PATCH net 0/6] Netfilter fixes for net, Pablo Neira Ayuso
  - [PATCH net 1/6] netfilter: conntrack: don't refresh sctp entries in closed state, Pablo Neira Ayuso
    - Re: [PATCH net 1/6] netfilter: conntrack: don't refresh sctp entries in closed state, patchwork-bot+netdevbpf
  - [PATCH nf-next] netfilter: nft_cmp: optimize comparison for up to 16-bytes, Pablo Neira Ayuso
    - Re: [PATCH nf-next] netfilter: nft_cmp: optimize comparison for up to 16-bytes, kernel test robot
  - [PATCH net 2/6] netfilter: nft_payload: don't allow th access for fragments, Pablo Neira Ayuso
  - [PATCH net 3/6] netfilter: conntrack: move synack init code to helper, Pablo Neira Ayuso
  - [PATCH net 6/6] netfilter: ctnetlink: disable helper autoassign, Pablo Neira Ayuso
  - [PATCH net 5/6] MAINTAINERS: netfilter: update git links, Pablo Neira Ayuso
  - [PATCH net 4/6] netfilter: conntrack: re-init state for retransmitted syn-ack, Pablo Neira Ayuso
- [PATCH net 0/6] Netfilter fixes for net, Pablo Neira Ayuso
  - [PATCH net 2/6] netfilter: xt_socket: fix a typo in socket_mt_destroy(), Pablo Neira Ayuso
  - [PATCH net 3/6] selftests: netfilter: fix exit value for nft_concat_range, Pablo Neira Ayuso
  - [PATCH net 1/6] selftests: netfilter: add synproxy test, Pablo Neira Ayuso
    - Re: [PATCH net 1/6] selftests: netfilter: add synproxy test, patchwork-bot+netdevbpf
  - [PATCH net 4/6] netfilter: nft_synproxy: unregister hooks on init error path, Pablo Neira Ayuso
  - [PATCH net 5/6] selftests: netfilter: synproxy test requires nf_conntrack, Pablo Neira Ayuso
  - [PATCH net 6/6] selftests: netfilter: disable rp_filter on router, Pablo Neira Ayuso
- [PATCH net 0/6] Netfilter fixes for net, Pablo Neira Ayuso
  - [PATCH net 1/6] lib/ts_bm: reset initial match offset for every block of text, Pablo Neira Ayuso
    - Re: [PATCH net 1/6] lib/ts_bm: reset initial match offset for every block of text, patchwork-bot+netdevbpf
  - [PATCH net 3/6] linux/netfilter.h: fix kernel-doc warnings, Pablo Neira Ayuso
  - [PATCH net 2/6] netfilter: conntrack: dccp: copy entire header to stack buffer, not just basic one, Pablo Neira Ayuso
  - [PATCH net 4/6] netfilter: nf_conntrack_sip: fix the ct_sip_parse_numerical_param() return value., Pablo Neira Ayuso
  - [PATCH net 6/6] netfilter: nf_tables: fix underflow in chain reference counter, Pablo Neira Ayuso
  - [PATCH net 5/6] netfilter: nf_tables: unbind non-anonymous set if rule construction fails, Pablo Neira Ayuso
- [PATCH net 0/6] Netfilter fixes for net, Pablo Neira Ayuso
  - [PATCH net 2/6] netfilter: conntrack: gre: don't set assured flag for clash entries, Pablo Neira Ayuso
  - [PATCH net 3/6] netfilter: conntrack: Avoid nf_ct_helper_hash uses after free, Pablo Neira Ayuso
  - [PATCH net 1/6] netfilter: nf_tables: report use refcount overflow, Pablo Neira Ayuso
    - Re: [PATCH net 1/6] netfilter: nf_tables: report use refcount overflow, Paolo Abeni
    - Re: [PATCH net 1/6] netfilter: nf_tables: report use refcount overflow, patchwork-bot+netdevbpf
  - [PATCH net 4/6] netfilter: conntrack: don't fold port numbers into addresses before hashing, Pablo Neira Ayuso
  - [PATCH net 5/6] netfilter: nf_tables: do not ignore genmask when looking up chain by id, Pablo Neira Ayuso
  - [PATCH net 6/6] netfilter: nf_tables: prevent OOB access in nft_byteorder_eval, Pablo Neira Ayuso
- [PATCH net 0/6] Netfilter fixes for net, Pablo Neira Ayuso
  - [PATCH net 4/6] netfilter: nf_tables: bogus ENOENT when destroying element which does not exist, Pablo Neira Ayuso
  - [PATCH net 2/6] netfilter: nf_conntrack_bridge: initialize err to 0, Pablo Neira Ayuso
  - [PATCH net 1/6] netfilter: nft_set_rbtree: Remove unused variable nft_net, Pablo Neira Ayuso
    - Re: [PATCH net 1/6] netfilter: nft_set_rbtree: Remove unused variable nft_net, patchwork-bot+netdevbpf
  - [PATCH net 6/6] netfilter: nf_tables: split async and sync catchall in two functions, Pablo Neira Ayuso
  - [PATCH net 3/6] netfilter: nf_tables: fix pointer math issue in nft_byteorder_eval(), Pablo Neira Ayuso
  - [PATCH net 5/6] netfilter: ipset: fix race condition between swap/destroy and kernel side add/del/test, Pablo Neira Ayuso
- [PATCH net 0/6] Netfilter fixes for net, Pablo Neira Ayuso
  - [PATCH net 1/6] netfilter: bpf: fix bad registration on nf_defrag, Pablo Neira Ayuso
    - Re: [PATCH net 1/6] netfilter: bpf: fix bad registration on nf_defrag, patchwork-bot+netdevbpf
  - [PATCH net 2/6] netfilter: nft_set_pipapo: skip inactive elements during set walk, Pablo Neira Ayuso
  - [PATCH net 3/6] netfilter: nf_tables: fix 'exist' matching on bigendian arches, Pablo Neira Ayuso
  - [PATCH net 5/6] netfilter: nf_tables: validate family when identifying table via handle, Pablo Neira Ayuso
  - [PATCH net 6/6] netfilter: xt_owner: Fix for unsafe access of sk->sk_socket, Pablo Neira Ayuso
  - [PATCH net 4/6] netfilter: nf_tables: bail out on mismatching dynset and set expressions, Pablo Neira Ayuso
- [PATCH net 0/6] Netfilter fixes for net, Pablo Neira Ayuso
  - [PATCH net 2/6] netfilter: nft_chain_filter: handle NETDEV_UNREGISTER for inet/ingress basechain, Pablo Neira Ayuso
  - [PATCH net 3/6] netfilter: nft_limit: reject configurations that cause integer overflow, Pablo Neira Ayuso
  - [PATCH net 4/6] netfilter: nf_tables: restrict anonymous set and map names to 16 bytes, Pablo Neira Ayuso
  - [PATCH net 5/6] netfilter: nf_tables: reject QUEUE/DROP verdict parameters, Pablo Neira Ayuso
  - [PATCH net 6/6] netfilter: nf_tables: validate NFPROTO_* family, Pablo Neira Ayuso
  - [PATCH net 1/6] netfilter: nf_tables: cleanup documentation, Pablo Neira Ayuso
    - Re: [PATCH net 1/6] netfilter: nf_tables: cleanup documentation, patchwork-bot+netdevbpf
- [PATCH net 0/6] Netfilter fixes for net, Pablo Neira Ayuso
  - [PATCH net 1/6] netfilter: conntrack: correct window scaling with retransmitted SYN, Pablo Neira Ayuso
    - Re: [PATCH net 1/6] netfilter: conntrack: correct window scaling with retransmitted SYN, patchwork-bot+netdevbpf
  - [PATCH net 6/6] netfilter: nft_ct: sanitize layer 3 and 4 protocol number in custom expectations, Pablo Neira Ayuso
  - [PATCH net 5/6] netfilter: nf_log: replace BUG_ON by WARN_ON_ONCE when putting logger, Pablo Neira Ayuso
  - [PATCH net 2/6] netfilter: nf_tables: restrict tunnel object to NFPROTO_NETDEV, Pablo Neira Ayuso
  - [PATCH net 3/6] netfilter: conntrack: check SCTP_CID_SHUTDOWN_ACK for vtag setting in sctp_new, Pablo Neira Ayuso
  - [PATCH net 4/6] netfilter: ipset: fix performance regression in swap operation, Pablo Neira Ayuso
- [PATCH net 0/6] Netfilter fixes for net, Pablo Neira Ayuso
  - [PATCH net 1/6] netfilter: nf_tables: release batch on table validation from abort path, Pablo Neira Ayuso
    - Re: [PATCH net 1/6] netfilter: nf_tables: release batch on table validation from abort path, patchwork-bot+netdevbpf
  - [PATCH net 2/6] netfilter: nf_tables: release mutex after nft_gc_seq_end from abort path, Pablo Neira Ayuso
  - [PATCH net 4/6] netfilter: nf_tables: reject new basechain after table flag update, Pablo Neira Ayuso
  - [PATCH net 3/6] netfilter: nf_tables: flush pending destroy work before exit_net release, Pablo Neira Ayuso
  - [PATCH net 6/6] netfilter: nf_tables: discard table flag update with pending basechain deletion, Pablo Neira Ayuso
  - [PATCH net 5/6] netfilter: nf_tables: Fix potential data-race in __nft_flowtable_type_get(), Pablo Neira Ayuso
    - Re: [PATCH net 5/6] netfilter: nf_tables: Fix potential data-race in __nft_flowtable_type_get(), Pablo Neira Ayuso
- [PATCH net 0/6] Netfilter fixes for net, Pablo Neira Ayuso
  - [PATCH net 2/6] netfilter: ipset: Add list flush to cancel_gc, Pablo Neira Ayuso
  - [PATCH net 3/6] netfilter: nft_payload: restore vlan q-in-q match support, Pablo Neira Ayuso
  - [PATCH net 1/6] netfilter: nfnetlink_queue: acquire rcu_read_lock() in instance_destroy_rcu(), Pablo Neira Ayuso
  - [PATCH net 6/6] netfilter: nft_fib: allow from forward/input without iif selector, Pablo Neira Ayuso
  - [PATCH net 5/6] netfilter: tproxy: bail out if IP has been disabled on the device, Pablo Neira Ayuso
  - [PATCH net 4/6] netfilter: nft_payload: skbuff vlan metadata mangle support, Pablo Neira Ayuso
    - Re: [PATCH net 4/6] netfilter: nft_payload: skbuff vlan metadata mangle support, Paolo Abeni
      - Re: [PATCH net 4/6] netfilter: nft_payload: skbuff vlan metadata mangle support, Pablo Neira Ayuso
[PATCH nf-next] netfilter: ebtables: do not hook tables by default, Florian Westphal
- Re: [PATCH nf-next] netfilter: ebtables: do not hook tables by default, Pablo Neira Ayuso
[PATCH nft 1/2] parser_bison: missing initialization of ct timeout policy list, Pablo Neira Ayuso
- [PATCH nft 2/2] parser_json: inconditionally initialize ct timeout list, Pablo Neira Ayuso
[PATCH nf-next 0/3] netfilter: clusterip: don't register hook in all netns, Florian Westphal
- [PATCH nf-next 1/3] netfilter: ipt_CLUSTERIP: only add arp mangle hook when required, Florian Westphal
- [PATCH nf-next 2/3] netfilter: ipt_CLUSTERIP: use clusterip_net to store pernet warning, Florian Westphal
- [PATCH nf-next 3/3] netfilter: remove xt pernet data, Florian Westphal
- Re: [PATCH nf-next 0/3] netfilter: clusterip: don't register hook in all netns, Pablo Neira Ayuso
[PATCH v28 18/25] LSM: security_secid_to_secctx in netlink netfilter, Casey Schaufler
[PATCH v28 16/25] LSM: Use lsmcontext in security_secid_to_secctx, Casey Schaufler
[PATCH v28 15/25] LSM: Ensure the correct LSM context releaser, Casey Schaufler
[PATCH v28 08/25] LSM: Use lsmblob in security_secid_to_secctx, Casey Schaufler
[PATCH v28 07/25] LSM: Use lsmblob in security_secctx_to_secid, Casey Schaufler
[PATCH] netfilter: nfnl_hook: fix unused variable warning, Arnd Bergmann
- Re: [PATCH] netfilter: nfnl_hook: fix unused variable warning, Pablo Neira Ayuso
[PATCH nf] netfilter: nft_nat: allow to specify layer 4 protocol NAT only, Pablo Neira Ayuso
[PATCH nft] evaluate: fix inet nat with no layer 3 info, Pablo Neira Ayuso
[PATCH nft] src: add --define key=value, Pablo Neira Ayuso
[PATCH nf-next,v2] netfilter: flowtable: remove nf_ct_l4proto_find() call, Pablo Neira Ayuso
[PATCH nf] netfilter: conntrack: adjust stop timestamp to real expiry value, Florian Westphal
- Re: [PATCH nf] netfilter: conntrack: adjust stop timestamp to real expiry value, Pablo Neira Ayuso
[PATCH libnetfilter_queue] src: Stop users from accidentally using legacy linux_nfnetlink_queue.h, Duncan Roe
- Re: [PATCH libnetfilter_queue] src: Stop users from accidentally using legacy linux_nfnetlink_queue.h, Duncan Roe
[PATCH libnetfilter_queue] build: doc: get rid of the need for manual updating of Makefile, Duncan Roe
[PATCH libmnl] build: doc: get rid of the need for manual updating of Makefile, Duncan Roe
- Re: [PATCH libmnl] build: doc: get rid of the need for manual updating of Makefile, Pablo Neira Ayuso
[PATCH nf 1/2] netfilter: flowtable: avoid possible false sharing, Pablo Neira Ayuso
- [PATCH nf 2/2] netfilter: nft_last: avoid possible false sharing, Pablo Neira Ayuso
[PATCH nf-next] netfilter: flowtable: remove nf_ct_l4proto_find() call, Pablo Neira Ayuso
[PATCH nf 1/2] netfilter: nft_last: avoid possible false sharing, Pablo Neira Ayuso
- [PATCH nf 2/2] netfilter: flowtable: remove nf_ct_l4proto_find() call, Pablo Neira Ayuso
  - Re: [PATCH nf 2/2] netfilter: flowtable: remove nf_ct_l4proto_find() call, kernel test robot
[syzbot] general protection fault in nf_tables_dump_flowtable, syzbot
[PATCH nf-next,v2] netfilter: nft_compat: use nfnetlink_unicast(), Pablo Neira Ayuso
[PATCH v3] audit: fix memory leak in nf_tables_commit, Dongliang Mu
- Re: [PATCH v3] audit: fix memory leak in nf_tables_commit, Pablo Neira Ayuso
[PATCH] xtables: Call init_extensions6() for static builds, Erik Wilson
- Re: [PATCH] xtables: Call init_extensions6() for static builds, Florian Westphal
[PATCH nftables,v3 1/3] src: remove STMT_NAT_F_INTERVAL flags and interval keyword, Pablo Neira Ayuso
- [PATCH nftables,v3 2/3] src: infer NAT mapping with concatenation from set, Pablo Neira Ayuso
- [PATCH nftables,v3 3/3] src: support for nat with interval concatenation, Pablo Neira Ayuso
[PATCH nf] netfilter: nft_compat: use nfnetlink_unicast(), Pablo Neira Ayuso
[PATCH v2] audit: fix memory leak in nf_tables_commit, Dongliang Mu
- Re: [PATCH v2] audit: fix memory leak in nf_tables_commit, Florian Westphal
  - Re: [PATCH v2] audit: fix memory leak in nf_tables_commit, Dongliang Mu
    - Re: [PATCH v2] audit: fix memory leak in nf_tables_commit, Florian Westphal
      - Re: [PATCH v2] audit: fix memory leak in nf_tables_commit, Dongliang Mu
[PATCH nftables,v2 1/2] src: infer interval from set, Pablo Neira Ayuso
- [PATCH nftables,v2 2/2] src: support for nat with interval concatenation, Pablo Neira Ayuso
- Re: [PATCH nftables,v2 1/2] src: infer interval from set, Jeremy Sowden
[issue] conntrack: lack of lock during nat, ze wang
[PATCH] audit: fix memory leak in nf_tables_commit, Dongliang Mu
- Re: [PATCH] audit: fix memory leak in nf_tables_commit, Lukas Bulwahn
  - Re: [PATCH] audit: fix memory leak in nf_tables_commit, Dongliang Mu
    - Re: [PATCH] audit: fix memory leak in nf_tables_commit, Lukas Bulwahn
[PATCH v2] net: Use nlmsg_unicast() instead of netlink_unicast(), Yajun Deng
- Re: [PATCH v2] net: Use nlmsg_unicast() instead of netlink_unicast(), David Ahern
- Re: [PATCH v2] net: Use nlmsg_unicast() instead of netlink_unicast(), patchwork-bot+netdevbpf
[PATCH nftables] src: support for nat with interval concatenation, Pablo Neira Ayuso
[PATCH nftables] netlink_delinearize: stmt and expr error path memleaks, Pablo Neira Ayuso
[PATCH] net: Use nlmsg_unicast() instead of netlink_unicast(), Yajun Deng
- Re: [PATCH] net: Use nlmsg_unicast() instead of netlink_unicast(), Pablo Neira Ayuso
[PATCH net 00/11] Netfilter fixes for net, Pablo Neira Ayuso
- [PATCH net 01/11] selftest: netfilter: add test case for unreplied tcp connections, Pablo Neira Ayuso
  - Re: [PATCH net 01/11] selftest: netfilter: add test case for unreplied tcp connections, patchwork-bot+netdevbpf
- [PATCH net 02/11] netfilter: conntrack: do not renew entry stuck in tcp SYN_SENT state, Pablo Neira Ayuso
- [PATCH net 03/11] netfilter: nf_tables: Fix dereference of null pointer flow, Pablo Neira Ayuso
- [PATCH net 04/11] netfilter: conntrack: nf_ct_gre_keymap_flush() removal, Pablo Neira Ayuso
- [PATCH net 05/11] netfilter: ctnetlink: suspicious RCU usage in ctnetlink_dump_helpinfo, Pablo Neira Ayuso
- [PATCH net 07/11] netfilter: conntrack: add new sysctl to disable RST check, Pablo Neira Ayuso
- [PATCH net 06/11] netfilter: conntrack: improve RST handling when tuple is re-used, Pablo Neira Ayuso
- [PATCH net 08/11] netfilter: conntrack: Mark access for KCSAN, Pablo Neira Ayuso
- [PATCH net 09/11] netfilter: nft_last: honor NFTA_LAST_SET on restoration, Pablo Neira Ayuso
- [PATCH net 10/11] netfilter: nft_last: incorrect arithmetics when restoring last used, Pablo Neira Ayuso
- [PATCH net 11/11] netfilter: uapi: refer to nfnetlink_conntrack.h, not nf_conntrack_netlink.h, Pablo Neira Ayuso
- <Possible follow-ups>
- [PATCH net 00/11] Netfilter fixes for net, Pablo Neira Ayuso
  - [PATCH net 01/11] selftests: netfilter: add a vrf+conntrack testcase, Pablo Neira Ayuso
    - Re: [PATCH net 01/11] selftests: netfilter: add a vrf+conntrack testcase, patchwork-bot+netdevbpf
  - [PATCH net 02/11] selftests: netfilter: extend nfqueue tests to cover vrf device, Pablo Neira Ayuso
  - [PATCH net 04/11] selftests: nft_nat: Improve port shadow test stability, Pablo Neira Ayuso
  - [PATCH net 06/11] netfilter: ctnetlink: fix filtering with CTA_TUPLE_REPLY, Pablo Neira Ayuso
  - [PATCH net 07/11] netfilter: ctnetlink: do not erase error code with EINVAL, Pablo Neira Ayuso
  - [PATCH net 03/11] netfilter: nft_payload: Remove duplicated include in nft_payload.c, Pablo Neira Ayuso
  - [PATCH net 08/11] netfilter: ipvs: Fix reuse connection if RS weight is 0, Pablo Neira Ayuso
  - [PATCH net 05/11] selftests: nft_nat: Simplify port shadow notrack test, Pablo Neira Ayuso
  - [PATCH net 10/11] netfilter: flowtable: fix IPv6 tunnel addr match, Pablo Neira Ayuso
  - [PATCH net 09/11] netfilter: xt_IDLETIMER: replace snprintf in show functions with sysfs_emit, Pablo Neira Ayuso
  - [PATCH net 11/11] selftests: nft_nat: switch port shadow test cases to socat, Pablo Neira Ayuso
Netdevconf 0x15 update, Jamal Hadi Salim
Re: netfilter: Use netlink_ns_capable to verify the permisions of netlink messages, Pablo Neira Ayuso
- Re: netfilter: Use netlink_ns_capable to verify the permisions of netlink messages, iLifetruth
[PATCH] net: Add netfilter hooks to track SRv6-encapsulated flows, Ryoga Saito
- Re: [PATCH] net: Add netfilter hooks to track SRv6-encapsulated flows, Andrea Mayer
  - Re: [PATCH] net: Add netfilter hooks to track SRv6-encapsulated flows, Pablo Neira Ayuso
    - Re: [PATCH] net: Add netfilter hooks to track SRv6-encapsulated flows, Andrea Mayer
      - Message not available
        
        Re: [PATCH] net: Add netfilter hooks to track SRv6-encapsulated flows, Ryoga Saito
        
        Re: [PATCH] net: Add netfilter hooks to track SRv6-encapsulated flows, Andrea Mayer
        
        Re: [PATCH] net: Add netfilter hooks to track SRv6-encapsulated flows, Ryoga Saito
        
        Re: [PATCH] net: Add netfilter hooks to track SRv6-encapsulated flows, Andrea Mayer
        
        Re: [PATCH] net: Add netfilter hooks to track SRv6-encapsulated flows, Pablo Neira Ayuso
        
        Re: [PATCH] net: Add netfilter hooks to track SRv6-encapsulated flows, Ryoga Saito
        
        Re: [PATCH] net: Add netfilter hooks to track SRv6-encapsulated flows, Pablo Neira Ayuso
        
        Re: [PATCH] net: Add netfilter hooks to track SRv6-encapsulated flows, Andrea Mayer
[PATCH nftables] src: add last statement, Pablo Neira Ayuso
[PATCH libnftnl] expr: last: add NFTNL_EXPR_LAST_SET, Pablo Neira Ayuso
[PATCH nf 1/2] netfilter: nft_last: honor NFTA_LAST_SET on restoration, Pablo Neira Ayuso
- [PATCH nf 2/2] netfilter: nft_last: incorrect arithmetics when restoring last used, Pablo Neira Ayuso
[PATCH nf-next] include: fix header file name in 3 comments, Duncan Roe
- Re: [PATCH nf-next] include: fix header file name in 3 comments, Pablo Neira Ayuso
  - Re: [PATCH nf-next] include: fix header file name in 3 comments, Pablo Neira Ayuso
[PATCH nftables] build: get `make distcheck` to pass again, Duncan Roe
- Re: [PATCH nftables] build: get `make distcheck` to pass again, Pablo Neira Ayuso
[PATCH libnetfilter_queue] src: annotation: Correctly identify item for which header is needed, Duncan Roe
- Re: [PATCH libnetfilter_queue] src: annotation: Correctly identify item for which header is needed, Pablo Neira Ayuso
  - Re: [PATCH libnetfilter_queue] src: annotation: Correctly identify item for which header is needed, Duncan Roe
    - Re: [PATCH libnetfilter_queue] src: annotation: Correctly identify item for which header is needed, Pablo Neira Ayuso
    - [PATCH libnetfilter_queue v2] src: annotation: Correctly identify item for which header is needed, Duncan Roe
      - Re: [PATCH libnetfilter_queue v2] src: annotation: Correctly identify item for which header is needed, Pablo Neira Ayuso
        
        Re: [PATCH libnetfilter_queue v2] src: annotation: Correctly identify item for which header is needed, Duncan Roe
        
        Re: [PATCH libnetfilter_queue v2] src: annotation: Correctly identify item for which header is needed, Pablo Neira Ayuso
        
        [PATCH nf] netfilter: uapi: refer to nfnetlink_conntrack.h, not nf_conntrack_netlink.h, Duncan Roe
        
        Re: [PATCH nf] netfilter: uapi: refer to nfnetlink_conntrack.h, not nf_conntrack_netlink.h, Pablo Neira Ayuso
        
        [PATCH libnetfilter_queue] src: annotation: Correctly identify item for which header is needed, Duncan Roe
        
        [PATCH libnetfilter_queue] include: refer to nfnetlink_conntrack.h, not nf_conntrack_netlink.h, Duncan Roe
[PATCH NETFILTER v2] netfilter: nfnetlink: suspicious RCU usage in ctnetlink_dump_helpinfo, Vasily Averin
- Re: [PATCH NETFILTER v2] netfilter: nfnetlink: suspicious RCU usage in ctnetlink_dump_helpinfo, Pablo Neira Ayuso
[PATCH NETFILTER v2] netfilter: gre: nf_ct_gre_keymap_flush() removal, Vasily Averin
- Re: [PATCH NETFILTER v2] netfilter: gre: nf_ct_gre_keymap_flush() removal, Pablo Neira Ayuso
Re: [PATCH NETFILTER] netfilter: gre: nf_ct_gre_keymap_flush() removal, Florian Westphal
Re: [PATCH NETFILTER] netfilter: nfnetlink: suspicious RCU usage in ctnetlink_dump_helpinfo, Florian Westphal
- Re: [PATCH NETFILTER] netfilter: nfnetlink: suspicious RCU usage in ctnetlink_dump_helpinfo, Pablo Neira Ayuso
  - Re: [PATCH NETFILTER] netfilter: nfnetlink: suspicious RCU usage in ctnetlink_dump_helpinfo, Vasily Averin
[PATCH nft] cmd: incorrect error reporting when table declaration exists, Pablo Neira Ayuso
[PATCH nftables] cmd: incorrect table location in error reporting, Pablo Neira Ayuso
Netfilter rules to replicate, consume ingress packet locally and forward clone packet., rakesh goyal
Re: Reload IPtables, Neal P. Murphy
- Message not available
  - Re: Reload IPtables, Pablo Neira Ayuso
    - Re: Reload IPtables, Neal P. Murphy
- Re: Reload IPtables, slow_speed
  - Re: Reload IPtables, Reindl Harald
    - Re: Reload IPtables, slow_speed
  - Re: Reload IPtables, Neal P. Murphy
[PATCH] extensions: masquerade: Add RFC-7597 section 5.1 PSID support, Cole Dishington
- Re: [PATCH] extensions: masquerade: Add RFC-7597 section 5.1 PSID support, Florian Westphal
  - [PATCH] extensions: masquerade: Add RFC-7597 section 5.1 PSID support, Cole Dishington
    - [PATCH] extensions: masquerade: Add RFC-7597 section 5.1 PSID support, Cole Dishington
[PATCH 0/2] Fixes for KCSAN findings, Manfred Spraul
- [PATCH 1/2] net/netfilter/nf_conntrack_core: Mark access for KCSAN, Manfred Spraul
  - Re: [PATCH 1/2] net/netfilter/nf_conntrack_core: Mark access for KCSAN, Pablo Neira Ayuso
- [PATCH 2/2] ipc/sem.c: use READ_ONCE()/WRITE_ONCE() for use_global_lock, Manfred Spraul
[PATCH iptables] extensions: libxt_multiport: add translation for -m multiport --ports, Pablo Neira Ayuso
[PATCH ipset,v4 0/4] nftables to ipset translation infrastructure, Pablo Neira Ayuso
- [PATCH ipset,v4 1/4] lib: split parser from command execution, Pablo Neira Ayuso
- [PATCH ipset,v4 2/4] lib: Detach restore routine from parser, Pablo Neira Ayuso
- [PATCH ipset,v4 4/4] tests: add tests ipset to nftables, Pablo Neira Ayuso
- [PATCH ipset,v4 3/4] add ipset to nftables translation infrastructure, Pablo Neira Ayuso
- Re: [PATCH ipset,v4 0/4] nftables to ipset translation infrastructure, Jozsef Kadlecsik
[PATCH][next] netfilter: nf_tables: Fix dereference of null pointer flow, Colin King
- Re: [PATCH][next] netfilter: nf_tables: Fix dereference of null pointer flow, Dan Carpenter
  - Re: [PATCH][next] netfilter: nf_tables: Fix dereference of null pointer flow, Pablo Neira Ayuso
    - Re: [PATCH][next] netfilter: nf_tables: Fix dereference of null pointer flow, Dan Carpenter
- AW: [PATCH][next] netfilter: nf_tables: Fix dereference of null pointer flow, Walter Harms
  - Re: [PATCH][next] netfilter: nf_tables: Fix dereference of null pointer flow, Pablo Neira Ayuso
- Re: [PATCH][next] netfilter: nf_tables: Fix dereference of null pointer flow, Pablo Neira Ayuso
[PATCH ipset 3/3,v3] add ipset to nftables translation infrastructure, Pablo Neira Ayuso
[PATCH nf-next 0/2] netfilter: conntrack: do not renew timeout while in tcp SYN_SENT state, Florian Westphal
- [PATCH nf-next 1/2] selftest: netfilter: add test case for unreplied tcp connections, Florian Westphal
- [PATCH nf-next 2/2] netfilter: conntrack: do not renew entry stuck in tcp SYN_SENT state, Florian Westphal
- Re: [PATCH nf-next 0/2] netfilter: conntrack: do not renew timeout while in tcp SYN_SENT state, Pablo Neira Ayuso
[PATCH net] ipv6/netfilter: Drop Packet Too Big with invalid payload, Georg Kohmann
- Re: [PATCH net] ipv6/netfilter: Drop Packet Too Big with invalid payload, Florian Westphal
  - Re: [PATCH net] ipv6/netfilter: Drop Packet Too Big with invalid payload, Georg Kohmann (geokohma)
[PATCH net-next 0/6] Netfilter updates for net-next, Pablo Neira Ayuso
- [PATCH net-next 1/6] netfilter: nft_exthdr: Search chunks in SCTP packets only, Pablo Neira Ayuso
- [PATCH net-next 2/6] netfilter: nft_extdhr: Drop pointless check of tprot_set, Pablo Neira Ayuso
- [PATCH net-next 3/6] netfilter: nf_tables: add last expression, Pablo Neira Ayuso
- [PATCH net-next 4/6] netfilter: conntrack: pass hook state to log functions, Pablo Neira Ayuso
- <Possible follow-ups>
- [PATCH net-next 0/6] Netfilter updates for net-next, Pablo Neira Ayuso
  - [PATCH net-next 1/6] netfilter: nft_exthdr: Search chunks in SCTP packets only, Pablo Neira Ayuso
    - Re: [PATCH net-next 1/6] netfilter: nft_exthdr: Search chunks in SCTP packets only, patchwork-bot+netdevbpf
  - [PATCH net-next 2/6] netfilter: nft_extdhr: Drop pointless check of tprot_set, Pablo Neira Ayuso
  - [PATCH net-next 3/6] netfilter: nf_tables: add last expression, Pablo Neira Ayuso
  - [PATCH net-next 4/6] netfilter: conntrack: pass hook state to log functions, Pablo Neira Ayuso
  - [PATCH net-next 5/6] docs: networking: Update connection tracking offload sysctl parameters, Pablo Neira Ayuso
  - [PATCH net-next 6/6] netfilter: nfnetlink_hook: fix check for snprintf() overflow, Pablo Neira Ayuso
- [PATCH net-next 0/6] Netfilter updates for net-next, Pablo Neira Ayuso
  - [PATCH net-next 1/6] netfilter: nft_payload: use __be16 to store gre version, Pablo Neira Ayuso
  - [PATCH net-next 6/6] netfilter: conntrack: use siphash_4u64, Pablo Neira Ayuso
    - Re: [PATCH net-next 6/6] netfilter: conntrack: use siphash_4u64, Jakub Kicinski
  - [PATCH net-next 2/6] netfilter: nft_inner: fix return value check in nft_inner_parse_l2l3(), Pablo Neira Ayuso
  - [PATCH net-next 4/6] netfilter: nf_tables: Introduce NFT_MSG_GETRULE_RESET, Pablo Neira Ayuso
  - [PATCH net-next 3/6] netfilter: nf_tables: Extend nft_expr_ops::dump callback parameters, Pablo Neira Ayuso
    - Re: [PATCH net-next 3/6] netfilter: nf_tables: Extend nft_expr_ops::dump callback parameters, Jakub Kicinski
      - Re: [PATCH net-next 3/6] netfilter: nf_tables: Extend nft_expr_ops::dump callback parameters, Pablo Neira Ayuso
  - [PATCH net-next 5/6] netfilter: rpfilter/fib: clean up some inconsistent indenting, Pablo Neira Ayuso
[PATCH nft] rule: obj_free() releases timeout state string, Pablo Neira Ayuso
[PATCH nft] parser_bison: memleak in rate limit parser, Pablo Neira Ayuso
[PATCH nft] libnftables: fix memleak when first message in batch is used to report error, Pablo Neira Ayuso
[PATCH nft] libnftables: fix memleak when EOPNOTSUPP, Pablo Neira Ayuso
[PATCH nft] parser_bison: string memleak in YYERROR path, Pablo Neira Ayuso
[PATCH nft] parser_bison: string memleak when datatype is incorrect, Pablo Neira Ayuso
[syzbot] WARNING: zero-size vmalloc in corrupted, syzbot
- Re: [syzbot] WARNING: zero-size vmalloc in corrupted, Pavel Skripkin
  - Re: [syzbot] WARNING: zero-size vmalloc in corrupted, Pavel Skripkin
    - Re: [syzbot] WARNING: zero-size vmalloc in corrupted, syzbot
    - Re: [syzbot] WARNING: zero-size vmalloc in corrupted, syzbot
      - Re: [syzbot] WARNING: zero-size vmalloc in corrupted, Dmitry Vyukov
  - Re: [syzbot] WARNING: zero-size vmalloc in corrupted, syzbot
[PATCH nft] evaluate: fix maps with key and data concatenations, Pablo Neira Ayuso
[PATCH nf 2/2,v2] netfilter: nf_tables: do not allow to delete table with owner by handle, Pablo Neira Ayuso
[PATCH nf 1/2] netfilter: nf_tables: skip netlink portID validation if zero, Pablo Neira Ayuso
- [PATCH nf 2/2] netfilter: nf_tables: do not allow to delete table with owner by handle, Pablo Neira Ayuso
  - Re: [PATCH nf 2/2] netfilter: nf_tables: do not allow to delete table with owner by handle, kernel test robot
  - Re: [PATCH nf 2/2] netfilter: nf_tables: do not allow to delete table with owner by handle, kernel test robot
[PATCH libmnl 0/1] build: doc: "make" builds & installs a full set of man pages, Duncan Roe
- [PATCH libmnl 1/1] build: doc: "make" builds & installs a full set of man pages, Duncan Roe
  - Re: [PATCH libmnl 1/1] build: doc: "make" builds & installs a full set of man pages, Pablo Neira Ayuso
    - Re: [PATCH libmnl 1/1] build: doc: "make" builds & installs a full set of man pages, Duncan Roe
      - Re: [PATCH libmnl 1/1] build: doc: "make" builds & installs a full set of man pages, Duncan Roe
      - Re: [PATCH libmnl 1/1] build: doc: "make" builds & installs a full set of man pages, Pablo Neira Ayuso
        
        Re: [PATCH libmnl 1/1] build: doc: "make" builds & installs a full set of man pages, Duncan Roe
        
        Re: [PATCH libmnl 1/1] build: doc: "make" builds & installs a full set of man pages, Duncan Roe
        
        Re: [PATCH libmnl 1/1] build: doc: "make" builds & installs a full set of man pages, Duncan Roe
        
        [PATCH RFC libnetfilter_queue 1/1] src: doc: supply missing SYNOPSIS in pktbuff man pages, Duncan Roe
        
        Re: [PATCH RFC libnetfilter_queue 1/1] src: doc: supply missing SYNOPSIS in pktbuff man pages, Pablo Neira Ayuso
        
        Re: [PATCH RFC libnetfilter_queue 1/1] src: doc: supply missing SYNOPSIS in pktbuff man pages, Duncan Roe
        
        Re: [PATCH RFC libnetfilter_queue 1/1] src: doc: supply missing SYNOPSIS in pktbuff man pages, Pablo Neira Ayuso
        
        Re: [PATCH RFC libnetfilter_queue 1/1] src: doc: supply missing SYNOPSIS in pktbuff man pages, Duncan Roe
        
        Re: [PATCH RFC libnetfilter_queue 1/1] src: doc: supply missing SYNOPSIS in pktbuff man pages, Duncan Roe
        
        Re: [PATCH libmnl 1/1] build: doc: "make" builds & installs a full set of man pages, Duncan Roe
        
        Re: [PATCH libmnl 1/1] build: doc: "make" builds & installs a full set of man pages, Duncan Roe
[PATCH nf,v4] netfilter: nf_tables: memleak in hw offload abort path, Pablo Neira Ayuso
[PATCH nf] netfilter: nf_tables_offload: check FLOW_DISSECTOR_KEY_BASIC in VLAN transfer logic, Pablo Neira Ayuso
[PATCH nf,v3] netfilter: nf_tables: memleak in hw offload abort path, Pablo Neira Ayuso
[PATCH nf,v2] netfilter: nf_tables: memleak in hw offload abort path, Pablo Neira Ayuso
[syzbot] general protection fault in smc_tx_sendmsg, syzbot
- Re: [syzbot] general protection fault in smc_tx_sendmsg, Pavel Skripkin
  - Re: [syzbot] general protection fault in smc_tx_sendmsg, Guvenc Gulce
    - Re: [syzbot] general protection fault in smc_tx_sendmsg, Pavel Skripkin
can't compile with CLANG + ThinLTO, Pascal Dupuis
Re: [syzbot] KASAN: use-after-free Read in check_all_holdout_tasks_trace, syzbot
- Re: [syzbot] KASAN: use-after-free Read in check_all_holdout_tasks_trace, Paul E. McKenney
  - Re: [syzbot] KASAN: use-after-free Read in check_all_holdout_tasks_trace, Dmitry Vyukov
[PATCH net-next] netfilter: nfnetlink_hook: fix check for snprintf() overflow, Dan Carpenter
- Re: [PATCH net-next] netfilter: nfnetlink_hook: fix check for snprintf() overflow, Florian Westphal
- Re: [PATCH net-next] netfilter: nfnetlink_hook: fix check for snprintf() overflow, Pablo Neira Ayuso
[PATCH] netfilter: nf_tables: memleak in hw offload abort path, Pablo Neira Ayuso
[PATCH nf] netfilter: nf_tables_offload: skip VLAN handling if FLOW_DISSECTOR_KEY_CONTROL is unset, Pablo Neira Ayuso
- <Possible follow-ups>
- [PATCH nf] netfilter: nf_tables_offload: skip VLAN handling if FLOW_DISSECTOR_KEY_CONTROL is unset, Pablo Neira Ayuso
[PATCH nft,v2] rule: memleak of list of timeout policies, Pablo Neira Ayuso
[PATCH nft] rule: memleak of list of timeout policies, Pablo Neira Ayuso
[PATCH nft] parser_bison: memleak in osf flags, Pablo Neira Ayuso
[PATCH nft] netlink_delinearize: memleak when listing ct event rule, Pablo Neira Ayuso
[PATCH nft] segtree: memleak in error path of the set to segtree conversion, Pablo Neira Ayuso
[PATCH nf-next] docs: networking: Update connection tracking offload sysctl parameters, Oz Shlomo
- Re: [PATCH nf-next] docs: networking: Update connection tracking offload sysctl parameters, Pablo Neira Ayuso
- Re: [PATCH nf-next] docs: networking: Update connection tracking offload sysctl parameters, Arturo Borrero Gonzalez
  - Re: [PATCH nf-next] docs: networking: Update connection tracking offload sysctl parameters, Pablo Neira Ayuso
    - Re: [PATCH nf-next] docs: networking: Update connection tracking offload sysctl parameters, Arturo Borrero Gonzalez
[PATCH nf-next,v6] netfilter: nf_tables: add last expression, Pablo Neira Ayuso
[PATCH nft] netlink_delinearize: memleak in string netlink postprocessing, Pablo Neira Ayuso
[PATCH nft] evaluate: memleak in binary operation transfer to RHS, Pablo Neira Ayuso
[PATCH nft 0/8] Enableruntime queue selection via jhash, numgen and map statement, Florian Westphal
- [PATCH nft 1/8] evaluate: fix hash expression maxval, Florian Westphal
- [PATCH nft 2/8] parser: restrict queue num expressiveness, Florian Westphal
- [PATCH nft 3/8] src: add queue expr and flags to queue_stmt_alloc, Florian Westphal
- [PATCH nft 4/8] parser: add queue_stmt_compat, Florian Westphal
- [PATCH nft 5/8] parser: new queue flag input format, Florian Westphal
- [PATCH nft 6/8] src: queue: allow use of arbitrary queue expressions, Florian Westphal
- [PATCH nft 7/8] tests: extend queue testcases for new sreg support, Florian Westphal
- [PATCH nft 8/8] src: queue: allow use of MAP statement for queue number retrieval, Florian Westphal
[PATCH nf-next,v5] netfilter: nf_tables: add last expression, Pablo Neira Ayuso
[PATCH nf-next] netfilter: conntrack: pass hook state to log functions, Florian Westphal
- Re: [PATCH nf-next] netfilter: conntrack: pass hook state to log functions, Pablo Neira Ayuso
[PATCH nf,v2 1/2] netfilter: nft_exthdr: check for IPv6 packet before further processing, Pablo Neira Ayuso
- [PATCH nf,v2 2/2] netfilter: nft_osf: check for TCP packet before further processing, Pablo Neira Ayuso
[PATCH nft 1/2] evaluate: do not skip evaluation of mapping set elements, Pablo Neira Ayuso
- [PATCH nft 2/2] evaluate: unbreak verdict maps with implicit map with interval concatenations, Pablo Neira Ayuso
[PATCH nft v2 0/3] fix icmpv6 id dependeny handling, Florian Westphal
- [PATCH nft v2 1/3] netlink_delinearize: add missing icmp id/sequence support, Florian Westphal
  - Re: [PATCH nft v2 1/3] netlink_delinearize: add missing icmp id/sequence support, Phil Sutter
    - Re: [PATCH nft v2 1/3] netlink_delinearize: add missing icmp id/sequence support, Florian Westphal
    - Re: [PATCH nft v2 1/3] netlink_delinearize: add missing icmp id/sequence support, Florian Westphal
      - Re: [PATCH nft v2 1/3] netlink_delinearize: add missing icmp id/sequence support, Phil Sutter
- [PATCH nft v2 2/3] payload: do not remove icmp echo dependency, Florian Westphal
- [PATCH nft v2 3/3] tests: add a icmp-reply only and icmpv6 id test cases, Florian Westphal
nfqueue hashing on TCP/UDP port, Jake Owen
- Re: nfqueue hashing on TCP/UDP port, Florian Westphal
  - Re: nfqueue hashing on TCP/UDP port, Jake Owen
[PATCH nf] Revert "netfilter: flowtable: Remove redundant hw refresh bit", Aleksander Jan Bajkowski
- Re: [PATCH nf] Revert "netfilter: flowtable: Remove redundant hw refresh bit", Pablo Neira Ayuso
  - Re: [PATCH nf] Revert "netfilter: flowtable: Remove redundant hw refresh bit", Martin Blumenstingl
    - Re: [PATCH nf] Revert "netfilter: flowtable: Remove redundant hw refresh bit", Aleksander Bajkowski
    - Re: [PATCH nf] Revert "netfilter: flowtable: Remove redundant hw refresh bit", Pablo Neira Ayuso
      - Re: [PATCH nf] Revert "netfilter: flowtable: Remove redundant hw refresh bit", Felix Fietkau
[PATCH nft 0/3] fix icmpv6 id dependeny handling, Florian Westphal
- [PATCH nft 1/3] netlink_delinearize: add missing icmp id/sequence support, Florian Westphal
- [PATCH nft 2/3] payload: do not remove icmp echo dependency, Florian Westphal
- [PATCH nft 3/3] tests: add a icmp-reply only and icmpv6 id test cases, Florian Westphal
[PATCH nftables] src: use opencoded NFT_SET_ANONYMOUS set flag check by set_is_anonymous(), Pablo Neira Ayuso
- Re: [PATCH nftables] src: use opencoded NFT_SET_ANONYMOUS set flag check by set_is_anonymous(), Phil Sutter
- Re: [PATCH nftables] src: use opencoded NFT_SET_ANONYMOUS set flag check by set_is_anonymous(), Pablo Neira Ayuso
[PATCH nftables] src: add xzalloc_array() and use it to allocate the expression hashtable, Pablo Neira Ayuso
- Re: [PATCH nftables] src: add xzalloc_array() and use it to allocate the expression hashtable, Phil Sutter
[PATCH nftables] evaluate: add set to cache once, Pablo Neira Ayuso
- Re: [PATCH nftables] evaluate: add set to cache once, Phil Sutter
[PATCH nftables,v2] src: add vlan dei, Pablo Neira Ayuso
[PATCH nf] netfilter: nft_tproxy: restrict support to TCP and UDP transport protocols, Pablo Neira Ayuso
[PATCH nft 2/2] evaluate: restore interval + concatenation in anonymous set, Pablo Neira Ayuso
- Re: [PATCH nft 2/2] evaluate: restore interval + concatenation in anonymous set, Phil Sutter
  - Re: [PATCH nft 2/2] evaluate: restore interval + concatenation in anonymous set, Pablo Neira Ayuso
    - Re: [PATCH nft 2/2] evaluate: restore interval + concatenation in anonymous set, Pablo Neira Ayuso
      - Re: [PATCH nft 2/2] evaluate: restore interval + concatenation in anonymous set, Pablo Neira Ayuso
[PATCH nft] src: add vlan dei, Pablo Neira Ayuso
[nf-next PATCH] netfilter: nft_extdhr: Drop pointless check of tprot_set, Phil Sutter
- Re: [nf-next PATCH] netfilter: nft_extdhr: Drop pointless check of tprot_set, Pablo Neira Ayuso
[nf-next PATCH v2] netfilter: nft_exthdr: Search chunks in SCTP packets only, Phil Sutter
- Re: [nf-next PATCH v2] netfilter: nft_exthdr: Search chunks in SCTP packets only, Pablo Neira Ayuso
[nft PATCH 00/10] Some covscan fixes, Phil Sutter
- [nft PATCH 08/10] netlink: Avoid memleak in error path of netlink_delinearize_obj(), Phil Sutter
- [nft PATCH 04/10] json: Drop pointless assignment in exthdr_expr_json(), Phil Sutter
- [nft PATCH 06/10] netlink: Avoid memleak in error path of netlink_delinearize_chain(), Phil Sutter
- [nft PATCH 03/10] evaluate: Mark fall through case in str2hooknum(), Phil Sutter
- [nft PATCH 01/10] parser_bison: Fix for implicit declaration of isalnum, Phil Sutter
- [nft PATCH 02/10] parser_json: Fix for memleak in tcp option error path, Phil Sutter
- [nft PATCH 05/10] netlink: Avoid memleak in error path of netlink_delinearize_set(), Phil Sutter
- [nft PATCH 09/10] netlink_delinearize: Fix suspicious calloc() call, Phil Sutter
- [nft PATCH 07/10] netlink: Avoid memleak in error path of netlink_delinearize_table(), Phil Sutter
- [nft PATCH 10/10] rule: Fix for potential off-by-one in cmd_add_loc(), Phil Sutter
[PATCH v27 18/25] LSM: security_secid_to_secctx in netlink netfilter, Casey Schaufler
[PATCH v27 16/25] LSM: Use lsmcontext in security_secid_to_secctx, Casey Schaufler
[PATCH v27 15/25] LSM: Ensure the correct LSM context releaser, Casey Schaufler
[PATCH v27 08/25] LSM: Use lsmblob in security_secid_to_secctx, Casey Schaufler
[PATCH v27 07/25] LSM: Use lsmblob in security_secctx_to_secid, Casey Schaufler
[PATCH libnftnl 1/2] expr: add last match time support, Pablo Neira Ayuso
- [PATCH libnftnl 2/2] expr: missing netlink attribute in last expression, Pablo Neira Ayuso
[PATCH nft] tests: shell: extend connlimit test, Pablo Neira Ayuso
[PATCH nf 1/2] netfilter: nft_exthdr: check for IPv6 packet before further processing, Pablo Neira Ayuso
- [PATCH nf 2/2] netfilter: nft_osf: check for TCP packet before further processing, Pablo Neira Ayuso
  - Re: [PATCH nf 2/2] netfilter: nft_osf: check for TCP packet before further processing, kernel test robot
- Re: [PATCH nf 1/2] netfilter: nft_exthdr: check for IPv6 packet before further processing, kernel test robot
- Re: [PATCH nf 1/2] netfilter: nft_exthdr: check for IPv6 packet before further processing, kernel test robot
- Re: [PATCH nf 1/2] netfilter: nft_exthdr: check for IPv6 packet before further processing, kernel test robot
[nf-next PATCH] netfilter: nft_exthdr: Search chunks in SCTP packets only, Phil Sutter
- Re: [nf-next PATCH] netfilter: nft_exthdr: Search chunks in SCTP packets only, Pablo Neira Ayuso
  - Re: [nf-next PATCH] netfilter: nft_exthdr: Search chunks in SCTP packets only, Phil Sutter
    - Re: [nf-next PATCH] netfilter: nft_exthdr: Search chunks in SCTP packets only, Pablo Neira Ayuso
      - Re: [nf-next PATCH] netfilter: nft_exthdr: Search chunks in SCTP packets only, Phil Sutter
        
        Re: [nf-next PATCH] netfilter: nft_exthdr: Search chunks in SCTP packets only, Pablo Neira Ayuso
Re: [syzbot] KASAN: use-after-free Read in blk_mq_exit_sched, syzbot
Re: linux-next: Tree for Jun 9 (net/netfilter/nfnetlink_hook.c), Randy Dunlap
- Re: linux-next: Tree for Jun 9 (net/netfilter/nfnetlink_hook.c), Pablo Neira Ayuso
linux-next: Fixes tags need some work in the netfilter-next tree, Stephen Rothwell
[PATCH net-next 00/13] Netfilter updates for net-next, Pablo Neira Ayuso
- [PATCH net-next 01/13] netfilter: nfnetlink: add struct nfgenmsg to struct nfnl_info and use it, Pablo Neira Ayuso
- [PATCH net-next 02/13] netfilter: nf_tables: remove nft_ctx_init_from_elemattr(), Pablo Neira Ayuso
- [PATCH net-next 03/13] netfilter: nf_tables: remove nft_ctx_init_from_setattr(), Pablo Neira Ayuso
- [PATCH net-next 04/13] netfilter: nftables: add nf_ct_pernet() helper function, Pablo Neira Ayuso
- [PATCH net-next 05/13] netfilter: conntrack: Introduce tcp offload timeout configuration, Pablo Neira Ayuso
- [PATCH net-next 06/13] netfilter: conntrack: Introduce udp offload timeout configuration, Pablo Neira Ayuso
- [PATCH net-next 07/13] netfilter: flowtable: Set offload timeouts according to proto values, Pablo Neira Ayuso
- [PATCH net-next 08/13] netfilter: annotate nf_tables base hook ops, Pablo Neira Ayuso
- [PATCH net-next 09/13] netfilter: add new hook nfnl subsystem, Pablo Neira Ayuso
- [PATCH net-next 10/13] netfilter: nft_exthdr: Fix for unsafe packet data read, Pablo Neira Ayuso
- [PATCH net-next 11/13] netfilter: nfnetlink_hook: fix array index out-of-bounds error, Pablo Neira Ayuso
- [PATCH net-next 12/13] netfilter: nfnetlink_hook: add depends-on nftables, Pablo Neira Ayuso
- [PATCH net-next 13/13] netfilter: nf_tables: move base hook annotation to init helper, Pablo Neira Ayuso
[PATCH nf-next,v4] netfilter: nf_tables: add last expression, Pablo Neira Ayuso
- Re: [PATCH nf-next,v4] netfilter: nf_tables: add last expression, kernel test robot
[nft PATCH] segtree: Fix segfault when restoring a huge interval set, Phil Sutter
[PATCH -next] netfilter: Make NETFILTER_NETLINK_HOOK depends on NF_TABLES, He Ying
[PATCH nf-next] netfilter: move nf_tables base hook annotation to init helper, Florian Westphal
- Re: [PATCH nf-next] netfilter: move nf_tables base hook annotation to init helper, Pablo Neira Ayuso
[PATCH v2 nf-next] netfilter: nfnetlink_hook: add depends-on nftables, Florian Westphal
- Re: [PATCH v2 nf-next] netfilter: nfnetlink_hook: add depends-on nftables, Pablo Neira Ayuso
Re: [syzbot] WARNING in cancel_delayed_work, syzbot
[PATCH nft,v2] netlink: quick sort array of devices, Pablo Neira Ayuso
[PATCH][next] etfilter: fix array index out-of-bounds error, Colin King
- Re: [PATCH][next] etfilter: fix array index out-of-bounds error, Pablo Neira Ayuso
[PATCH nf-next] nfilter: nf_hooks: fix build failure with NF_TABLES=n, Florian Westphal
- Re: [PATCH nf-next] nfilter: nf_hooks: fix build failure with NF_TABLES=n, Pablo Neira Ayuso
  - Re: [PATCH nf-next] nfilter: nf_hooks: fix build failure with NF_TABLES=n, Florian Westphal
    - Re: [PATCH nf-next] nfilter: nf_hooks: fix build failure with NF_TABLES=n, Pablo Neira Ayuso
      - Re: [PATCH nf-next] nfilter: nf_hooks: fix build failure with NF_TABLES=n, Florian Westphal
[PATCH nft] cmd: check for table mismatch first in error reporting, Pablo Neira Ayuso
- [PATCH nft] netlink: quick sort array of devices, Pablo Neira Ayuso
[PATCH nf 0/2] netfilter: nft_fib: ignore icmpv6 packets from ::, Florian Westphal
- [PATCH nf 1/2] selftests: netfilter: add fib test case, Florian Westphal
- [PATCH nf 2/2] netfilter: ipv6: skip ipv6 packets from any to link-local, Florian Westphal
- Re: [PATCH nf 0/2] netfilter: nft_fib: ignore icmpv6 packets from ::, Pablo Neira Ayuso
[nf-next PATCH v2] netfilter: nft_exthdr: Fix for unsafe packet data read, Phil Sutter
- Re: [nf-next PATCH v2] netfilter: nft_exthdr: Fix for unsafe packet data read, Florian Westphal
- Re: [nf-next PATCH v2] netfilter: nft_exthdr: Fix for unsafe packet data read, Pablo Neira Ayuso
  - Re: [nf-next PATCH v2] netfilter: nft_exthdr: Fix for unsafe packet data read, Florian Westphal
    - Re: [nf-next PATCH v2] netfilter: nft_exthdr: Fix for unsafe packet data read, Pablo Neira Ayuso
- Re: [nf-next PATCH v2] netfilter: nft_exthdr: Fix for unsafe packet data read, Pablo Neira Ayuso
[nf-next PATCH] netfilter: nft_exthdr: Fix for unsafe packet data read, Phil Sutter
- Re: [nf-next PATCH] netfilter: nft_exthdr: Fix for unsafe packet data read, Florian Westphal
Re: [syzbot] KASAN: use-after-free Read in hci_chan_del, syzbot
[PATCH nf-next,v3] netfilter: nf_tables: add last expression, Pablo Neira Ayuso
Re: [syzbot] BUG: using smp_processor_id() in preemptible code in radix_tree_node_alloc, syzbot
- Re: [syzbot] BUG: using smp_processor_id() in preemptible code in radix_tree_node_alloc, Matthew Wilcox
[syzbot] general protection fault in kcm_sendmsg, syzbot
- Re: [syzbot] general protection fault in kcm_sendmsg, Pavel Skripkin
- Re: [syzbot] general protection fault in kcm_sendmsg, Pavel Skripkin
[PATCH nft v2 1/3] scanner: add list cmd parser scope, Florian Westphal
- [PATCH nft v2 2/3] src: add support for base hook dumping, Florian Westphal
- [PATCH nft v2 3/3] doc: add LISTING section, Florian Westphal
[PATCH nf-next,v2] netfilter: nf_tables: add last expression, Pablo Neira Ayuso
- Re: [PATCH nf-next,v2] netfilter: nf_tables: add last expression, kernel test robot
- Re: [PATCH nf-next,v2] netfilter: nf_tables: add last expression, kernel test robot
- Re: [PATCH nf-next,v2] netfilter: nf_tables: add last expression, kernel test robot
[PATCH nftables] rule: rework CMD_OBJ_SETELEMS logic, Pablo Neira Ayuso
[PATCH nft 0/4] nftables: convert single-elem anon sets to compare operation, Florian Westphal
- [PATCH nft 1/4] tests: ct: prefer normal cmp, Florian Westphal
- [PATCH nft 2/4] tests: remove redundant test cases, Florian Westphal
- [PATCH nft 3/4] evaluate: remove anon sets with exactly one element, Florian Westphal
- [PATCH nft 4/4] tests: add test case for removal of anon sets with only a single element, Florian Westphal
[PATCH nf-next v2 0/2] netfilter: new hook nfnl subsystem, Florian Westphal
- [PATCH nf-next v2 1/2] netfilter: annotate nf_tables base hook ops, Florian Westphal
- [PATCH nf-next v2 2/2] netfilter: add new hook nfnl subsystem, Florian Westphal
- Re: [PATCH nf-next v2 0/2] netfilter: new hook nfnl subsystem, Pablo Neira Ayuso

[Index of Archives] [LARTC] [Berkeley Packet Filter] [Bugtraq] [Yosemite Discussion]