Linux Netfilter / IP Tables Devel
[Prev Page][Next Page]
- libmnl & rtnetlink questions,
Ian Pilcher
- [PATCH net] netfilter: flowtable: Free block_cb when being deleted,
Roi Dayan
- [PATCH AUTOSEL 5.6 003/149] netfilter: ctnetlink: be more strict when NF_CONNTRACK_MARK is not set, Sasha Levin
- [PATCH AUTOSEL 5.6 117/149] netfilter: nf_tables: silence a RCU-list warning in nft_table_lookup(), Sasha Levin
- [PATCH AUTOSEL 5.5 002/121] netfilter: ctnetlink: be more strict when NF_CONNTRACK_MARK is not set, Sasha Levin
- [PATCH AUTOSEL 5.5 095/121] netfilter: nf_tables: silence a RCU-list warning in nft_table_lookup(), Sasha Levin
- [PATCH AUTOSEL 5.4 002/108] netfilter: ctnetlink: be more strict when NF_CONNTRACK_MARK is not set, Sasha Levin
- [PATCH AUTOSEL 5.4 083/108] netfilter: nf_tables: silence a RCU-list warning in nft_table_lookup(), Sasha Levin
- [PATCH nft] segtree: broken error reporting with mappings, Pablo Neira Ayuso
- BUG: Anonymous maps with adjacent intervals broken since Linux 5.6,
Thorsten Knabe
- ipv6 rpfilter and.. fw mark? problems with wireguard,
Dominique Martinet
- [PATCH nftables] build: Allow building from tarballs without yacc/lex,
Matt Turner
- [iptables PATCH] ebtables-restore: Table line to trigger implicit commit, Phil Sutter
- [PATCH nftables] doc: Include generated man pages in dist tarball,
Matt Turner
- [nft PATCH 2/2] expr: add jool expressions,
Alberto Leiva Popper
- [libnftnl PATCH 1/2] expr: add jool support, Alberto Leiva Popper
- [PATCH nf 1/2] netfilter: nf_tables: report EOPNOTSUPP on unsupported flags/object type,
Pablo Neira Ayuso
- [iptables PATCH 0/3] nft: cache: Minor review,
Phil Sutter
- [PATCH AUTOSEL 5.5 28/35] netfilter: nft_set_rbtree: Introduce and use nft_rbtree_interval_start(), Sasha Levin
- [PATCH AUTOSEL 5.5 29/35] netfilter: nft_set_rbtree: Detect partial overlaps on insertion, Sasha Levin
- [PATCH AUTOSEL 5.4 24/32] netfilter: nf_tables: Allow set back-ends to report partial overlaps on insertion, Sasha Levin
- [PATCH AUTOSEL 5.4 26/32] netfilter: nft_set_rbtree: Detect partial overlaps on insertion, Sasha Levin
- [PATCH AUTOSEL 5.4 25/32] netfilter: nft_set_rbtree: Introduce and use nft_rbtree_interval_start(), Sasha Levin
- [PATCH AUTOSEL 4.19 08/13] netfilter: nf_tables: Allow set back-ends to report partial overlaps on insertion, Sasha Levin
- [PATCH AUTOSEL 4.19 09/13] netfilter: nft_set_rbtree: Introduce and use nft_rbtree_interval_start(), Sasha Levin
- [PATCH AUTOSEL 4.19 10/13] netfilter: nft_set_rbtree: Detect partial overlaps on insertion, Sasha Levin
- [PATCH AUTOSEL 4.14 6/9] netfilter: nf_tables: Allow set back-ends to report partial overlaps on insertion, Sasha Levin
- [PATCH AUTOSEL 4.9 3/5] netfilter: nf_tables: Allow set back-ends to report partial overlaps on insertion, Sasha Levin
- [PATCH AUTOSEL 5.5 27/35] netfilter: nf_tables: Allow set back-ends to report partial overlaps on insertion,
Sasha Levin
- [PATCH] nft_set_pipapo: remove unused pointer lt,
Colin King
- flowtable crash in nf_flow_table_indr_block_cb, wenxu
- segfault while trying to load module br_netfilter, Benjamin Doppler
- [PATCH] segtree: bail out on concatenations,
Pablo Neira Ayuso
- [ANNOUNCE] conntrack-tools 1.4.6, Pablo Neira Ayuso
- [ANNOUNCE] libnetfilter_conntrack 1.0.8 release, Pablo Neira Ayuso
- [PATCH nf 1/1] netfilter: nf_tables: do not leave dangling pointer in nf_tables_set_alloc_name,
Eric Dumazet
- [PATCH libnetfilter_conntrack] expect: parse_mnl: fix gcc compile warning, Pablo Neira Ayuso
- [PATCH nft] tests: shell: add typeof with concatenations,
Pablo Neira Ayuso
- [PATCH nft] doc: add hashing expressions description,
Laura Garcia Liebana
- [PATCH nf v2] nft_set_rbtree: Drop spurious condition for overlap detection on insertion,
Stefano Brivio
- [PATCH nf] nft_set_rbtree: Drop spurious condition for overlap detection on insertion,
Stefano Brivio
- [ANNOUNCE] libnftnl 1.1.6 release, Pablo Neira Ayuso
- [ANNOUNCE] nftables 0.9.4 release,
Pablo Neira Ayuso
- [PATCH nft] concat: provide proper dtype when parsing typeof udata,
Florian Westphal
- [PATCH nf-next] netfilter: nf_tables: do not update stateful expressions if lookup is inverted, Pablo Neira Ayuso
- [PATCH nft 1/2] evaluate: check for device in non-netdev chains,
Pablo Neira Ayuso
- [ANNOUNCE] nftlb 0.6 release,
Laura Garcia
- [PATCH] netfilter: IDLETIMER target v1 - match Android layout,
Maciej Żenczykowski
- [PATCH nft 1/3] rule: add hook_spec,
Pablo Neira Ayuso
- Re: [PATCH 5.5 138/170] netfilter: nft_fwd_netdev: allow to redirect to ifb via ingress,
Pablo Neira Ayuso
- [PATCH nf-next v5 1/1] netfilter: ctnetlink: add kernel side filtering for dump,
Romain Bellan
- [PATCH 00/28] Netfilter/IPVS updates for net-next,
Pablo Neira Ayuso
- [PATCH 20/28] netfilter: nf_queue: prefer nf_queue_entry_free, Pablo Neira Ayuso
- [PATCH 21/28] netfilter: ctnetlink: be more strict when NF_CONNTRACK_MARK is not set, Pablo Neira Ayuso
- [PATCH 02/28] netfilter: nf_tables: pass context to nft_set_destroy(), Pablo Neira Ayuso
- [PATCH 23/28] netfilter: nft_dynset: validate set expression definition, Pablo Neira Ayuso
- [PATCH 05/28] netfilter: nf_tables: add nft_set_elem_expr_destroy() and use it, Pablo Neira Ayuso
- [PATCH 06/28] netfilter: flowtable: fix NULL pointer dereference in tunnel offload support, Pablo Neira Ayuso
- [PATCH 15/28] netfilter: flowtable: Use rw sem as flow block lock, Pablo Neira Ayuso
- [PATCH 18/28] netfilter: nf_queue: place bridge physports into queue_entry struct, Pablo Neira Ayuso
- [PATCH 14/28] netfilter: nf_tables: silence a RCU-list warning in nft_table_lookup(), Pablo Neira Ayuso
- [PATCH 16/28] netfilter: flowtable: Use work entry per offload command, Pablo Neira Ayuso
- [PATCH 13/28] netfilter: flowtable: Fix incorrect tc_setup_type type, Pablo Neira Ayuso
- [PATCH 10/28] netfilter: conntrack: export nf_ct_acct_update(), Pablo Neira Ayuso
- [PATCH 27/28] netfilter: nft_exthdr: fix endianness of tcp option cast, Pablo Neira Ayuso
- [PATCH 09/28] ipvs: optimize tunnel dumps for icmp errors, Pablo Neira Ayuso
- [PATCH 12/28] netfilter: flowtable: add counter support, Pablo Neira Ayuso
- [PATCH 17/28] netfilter: nf_queue: make nf_queue_entry_release_refs static, Pablo Neira Ayuso
- [PATCH 11/28] netfilter: nf_tables: add enum nft_flowtable_flags to uapi, Pablo Neira Ayuso
- [PATCH 25/28] netfilter: conntrack: add nf_ct_acct_add(), Pablo Neira Ayuso
- [PATCH 08/28] netfilter: conntrack: Add missing annotations for nf_conntrack_all_lock() and nf_conntrack_all_unlock(), Pablo Neira Ayuso
- [PATCH 28/28] ipvs: fix uninitialized variable warning, Pablo Neira Ayuso
- [PATCH 07/28] netfilter: ctnetlink: Add missing annotation for ctnetlink_parse_nat_setup(), Pablo Neira Ayuso
- [PATCH 26/28] netfilter: flowtable: add counter support in HW offload, Pablo Neira Ayuso
- [PATCH 04/28] netfilter: nf_tables: fix double-free on set expression from the error path, Pablo Neira Ayuso
- [PATCH 24/28] netfilter: nf_tables: skip set types that do not support for expressions, Pablo Neira Ayuso
- [PATCH 03/28] netfilter: nf_tables: allow to specify stateful expression in set definition, Pablo Neira Ayuso
- [PATCH 22/28] netfilter: nft_set_bitmap: initialize set element extension in lookups, Pablo Neira Ayuso
- [PATCH 01/28] netfilter: nf_tables: move nft_expr_clone() to nf_tables_api.c, Pablo Neira Ayuso
- [PATCH 19/28] netfilter: nf_queue: do not release refcouts until nf_reinject is done, Pablo Neira Ayuso
- Re: [PATCH 00/28] Netfilter/IPVS updates for net-next, David Miller
- [PATCH nf-next] ipvs: fix uninitialized variable warning,
Haishuang Yan
- [PATCH 00/26] Netfilter/IPVS updates for net-next,
Pablo Neira Ayuso
- [PATCH 05/26] netfilter: nf_tables: add nft_set_elem_expr_destroy() and use it, Pablo Neira Ayuso
- [PATCH 14/26] netfilter: nf_tables: silence a RCU-list warning in nft_table_lookup(), Pablo Neira Ayuso
- [PATCH 22/26] netfilter: nft_set_bitmap: initialize set element extension in lookups, Pablo Neira Ayuso
- [PATCH 25/26] netfilter: conntrack: add nf_ct_acct_add(), Pablo Neira Ayuso
- [PATCH 24/26] netfilter: nf_tables: skip set types that do not support for expressions, Pablo Neira Ayuso
- [PATCH 26/26] netfilter: flowtable: add counter support in HW offload, Pablo Neira Ayuso
- [PATCH 23/26] netfilter: nft_dynset: validate set expression definition, Pablo Neira Ayuso
- [PATCH 21/26] netfilter: ctnetlink: be more strict when NF_CONNTRACK_MARK is not set, Pablo Neira Ayuso
- [PATCH 19/26] netfilter: nf_queue: do not release refcouts until nf_reinject is done, Pablo Neira Ayuso
- [PATCH 18/26] netfilter: nf_queue: place bridge physports into queue_entry struct, Pablo Neira Ayuso
- [PATCH 16/26] netfilter: flowtable: Use work entry per offload command, Pablo Neira Ayuso
- [PATCH 20/26] netfilter: nf_queue: prefer nf_queue_entry_free, Pablo Neira Ayuso
- [PATCH 15/26] netfilter: flowtable: Use rw sem as flow block lock, Pablo Neira Ayuso
- [PATCH 17/26] netfilter: nf_queue: make nf_queue_entry_release_refs static, Pablo Neira Ayuso
- [PATCH 09/26] ipvs: optimize tunnel dumps for icmp errors, Pablo Neira Ayuso
- [PATCH 13/26] netfilter: flowtable: Fix incorrect tc_setup_type type, Pablo Neira Ayuso
- [PATCH 12/26] netfilter: flowtable: add counter support, Pablo Neira Ayuso
- [PATCH 11/26] netfilter: nf_tables: add enum nft_flowtable_flags to uapi, Pablo Neira Ayuso
- [PATCH 10/26] netfilter: conntrack: export nf_ct_acct_update(), Pablo Neira Ayuso
- [PATCH 04/26] netfilter: nf_tables: fix double-free on set expression from the error path, Pablo Neira Ayuso
- [PATCH 07/26] netfilter: ctnetlink: Add missing annotation for ctnetlink_parse_nat_setup(), Pablo Neira Ayuso
- [PATCH 08/26] netfilter: conntrack: Add missing annotations for nf_conntrack_all_lock() and nf_conntrack_all_unlock(), Pablo Neira Ayuso
- [PATCH 02/26] netfilter: nf_tables: pass context to nft_set_destroy(), Pablo Neira Ayuso
- [PATCH 03/26] netfilter: nf_tables: allow to specify stateful expression in set definition, Pablo Neira Ayuso
- [PATCH 06/26] netfilter: flowtable: fix NULL pointer dereference in tunnel offload support, Pablo Neira Ayuso
- [PATCH 01/26] netfilter: nf_tables: move nft_expr_clone() to nf_tables_api.c, Pablo Neira Ayuso
- Re: [PATCH 00/26] Netfilter/IPVS updates for net-next, David Miller
- Suggestion: replacement for physdev-is-bridged in nft,
jaroslav
- [PATCH nf] netfilter: nft_exthdr: fix endianness of tcp option cast,
Sergey Marinkevich
- [iptables] avoid raw sockets which requires CAP_NET_RAW, Youfu Zhang
- [PATCH 1/2] netfilter: conntrack: add nf_ct_acct_add(),
wenxu
- [PATCH nft] evaluate: display error if statement is missing, Pablo Neira Ayuso
- [PATCH nf-next 1/3] netfilter: nft_set_bitmap: initialize set element extension in lookups,
Pablo Neira Ayuso
- [PATCH net-next v2 0/3] netfilter: flowtable: Support offload of tuples in parallel,
Paul Blakey
- [PATCH nf-next v4 1/2] netfilter: ctnetlink: add kernel side filtering for dump,
Romain Bellan
- [PATCH nf-next 0/4] netfilter: nf_queue: rework refcount handling,
Florian Westphal
- [PATCH nf-next v3 1/2] netfilter: ctnetlink: add kernel side filtering for dump,
Romain Bellan
- [PATCH nft] netlink: Show the handles of unknown rules in "nft monitor trace",
Luis Ressel
- [PATCH nft] src: add support for flowtable counter, Pablo Neira Ayuso
- [PATCH] netfilter/nf_tables: silence a RCU-list warning,
Qian Cai
- [PATCH net] net: Fix CONFIG_NET_CLS_ACT=n and CONFIG_NFT_FWD_NETDEV={y,m} build,
Pablo Neira Ayuso
- [PATCH net-next] netfilter: flowtable: Fix accessing null dst entry,
Paul Blakey
- [PATCH] netfilter: nft_fwd_netdev: Fix CONFIG_NET_CLS_ACT=n build,
Geert Uytterhoeven
- [PATCH nf-next 1/3] netfilter: conntrack: export nf_ct_acct_update(),
Pablo Neira Ayuso
- [PATCH net-next 0/3] netfilter: flowtable: Support offload of tuples in parallel,
Paul Blakey
- [PATCH nf 1/2] netfilter: nft_fwd_netdev: validate family and chain type,
Pablo Neira Ayuso
- [PATCH net-next v2] netfilter: Fix incorrect tc_setup_type type for flowtable offload,
wenxu
- [PATCH v3 nf] selftests: netfilter: add nfqueue test case,
Florian Westphal
- [PATCH nf v2 0/4] nftables: Consistently report partial and entire set overlaps,
Stefano Brivio
- [PATCH NOMERGE iptables 0/2] man: xt_set: Describe existing behaviour and new counters update flag,
Stefano Brivio
- [PATCH nf-next 0/3] netfilter: nf_flow_table_offload: add nf_conn_acct for flowtable offload,
wenxu
- [PATCH nf-next v2] netfilter: nf_flow_table_offload: set hw_stats_type of flow_action_entry to FLOW_ACTION_HW_STATS_ANY,
wenxu
- [PATCH nft] tests: py: update nat expressions payload to include proto flags, Pablo Neira Ayuso
- [PATCH libnftnl 1/2] expr: masq: revisit _snprintf(),
Pablo Neira Ayuso
- [PATCH nf-next] netfilter:nf_flow_table: add HW stats type support in flowtable,
wenxu
- [PATCH] iptables: open eBPF programs in read only mode,
Maciej Żenczykowski
- [PATCH net] netfilter: nf_flow_table: populate addr_type mask,
Edward Cree
- [PATCH net] netfilter: flowtable: Fix flushing of offloaded flows on free,
Paul Blakey
- [PATCH nf-next] netfilter: nf_flow_table_offload: fix potential NULL pointer dereference for dst_cache in handling lwtstate,
wenxu
- Re: Bug URGENT Report with new kernel 5.5.10-5.6-rc6,
Stefano Brivio
[PATCH AUTOSEL 5.4 20/73] netfilter: cthelper: add missing attribute validation for cthelper, Sasha Levin
[PATCH AUTOSEL 5.4 21/73] netfilter: nft_payload: add missing attribute validation for payload csum flags, Sasha Levin
[PATCH AUTOSEL 5.4 26/73] netfilter: nf_tables: dump NFTA_CHAIN_FLAGS attribute, Sasha Levin
[PATCH AUTOSEL 5.4 27/73] netfilter: nf_tables: fix infinite loop when expr is not available, Sasha Levin
[PATCH AUTOSEL 5.4 31/73] netfilter: nft_chain_nat: inet family is missing module ownership, Sasha Levin
[PATCH AUTOSEL 4.19 16/37] netfilter: nft_payload: add missing attribute validation for payload csum flags, Sasha Levin
[PATCH AUTOSEL 4.19 15/37] netfilter: cthelper: add missing attribute validation for cthelper, Sasha Levin
[PATCH AUTOSEL 4.19 17/37] netfilter: nft_tunnel: add missing attribute validation for tunnels, Sasha Levin
[PATCH AUTOSEL 4.14 13/28] netfilter: cthelper: add missing attribute validation for cthelper, Sasha Levin
[PATCH AUTOSEL 4.14 14/28] netfilter: nft_payload: add missing attribute validation for payload csum flags, Sasha Levin
[PATCH AUTOSEL 4.9 08/15] netfilter: cthelper: add missing attribute validation for cthelper, Sasha Levin
[PATCH AUTOSEL 4.4 06/12] netfilter: cthelper: add missing attribute validation for cthelper, Sasha Levin
[PATCH AUTOSEL 5.4 22/73] netfilter: nft_tunnel: add missing attribute validation for tunnels, Sasha Levin
[PATCH nft] evaluate: add range specified flag setting (missing NF_NAT_RANGE_PROTO_SPECIFIED),
Pablo Neira Ayuso
[PATCH nf-next] netfilter: nf_tables: add nft_set_elem_expr_destroy() and use it, Pablo Neira Ayuso
[PATCH nf-next] netfilter: nf_flow_table_offload: fix kernel NULL pointer dereference in nf_flow_table_indr_block_cb,
wenxu
[bug report] netfilter: nf_tables: add elements with stateful expressions,
Dan Carpenter
[PATCH net-next] flow_offload: add TC_SETP_FT type in flow_indr_block_call,
wenxu
[PATCH nf-next] netfilter: nf_tables: fix double-free on set expression from the error path, Pablo Neira Ayuso
[PATCH ghak25 v3 0/3] Address NETFILTER_CFG issues,
Richard Guy Briggs
[PATCH nft] src: support for counter in set definition, Pablo Neira Ayuso
[PATCH libnftnl] set: support for NFTNL_SET_EXPR, Pablo Neira Ayuso
[PATCH nf-next 0/3] support for stateful expressions in set definition,
Pablo Neira Ayuso
[PATCH v2 1/2] netfilter: nf_flow_table: reload ip{v6}h in nf_flow_nat_ip{v6},
Haishuang Yan
compilation of netfilter missing libnftnl functions - undefined reference - (RASPBERRY pi 3B),
MELCHOR PENA, Bernardo Santiago
[PATCH] netfilter: nft_masq: add range specified flag setting, Sergey Marinkevich
[PATCH 1/4] netfilter: nf_flow_table: reload ipv6h in nf_flow_nat_ipv6,
Haishuang Yan
[PATCH v2] ipvs: optimize tunnel dumps for icmp errors,
Haishuang Yan
[PATCH] ipvs: optimize tunnel dumps for icmp errors,
Haishuang Yan
[iptables PATCH] nft: cache: Fix iptables-save segfault under stress,
Phil Sutter
[iptables PATCH] nft: cache: Fix for unused variable warnings, Phil Sutter
linux-next: manual merge of the netfilter-next tree with the net-next tree, Stephen Rothwell
[PATCH 0/3] treewide: Convert unscriptable /* fallthrough */ comments to fallthrough;,
Joe Perches
Re: WARNING in geneve_exit_batch_net (2),
syzbot
[PATCH nf-next 1/1] netfilter: conntrack: re-visit sysctls in unprivileged namespaces,
Florian Westphal
[PATCH nft 1/2] netlink: remove unused parameter from netlink_gen_stmt_stateful(),
Pablo Neira Ayuso
[PATCH 0/5 nf-next,v2] enhance stateful expression support,
Pablo Neira Ayuso
[PATCH libnftnl] set_elem: missing set and build for NFTNL_SET_ELEM_EXPR, Pablo Neira Ayuso
[PATCH nf-next 0/4] enhance stateful expression support,
Pablo Neira Ayuso
[PATCH nft] src: Support netdev egress hook,
Lukas Wunner
[PATCH nf-next 0/3] Netfilter egress hook,
Lukas Wunner
[PATCH 4/8] netfilter: Add missing annotation for ctnetlink_parse_nat_setup(),
Jules Irenge
[PATCH 5/8] netfilter: conntrack: Add missing annotations for nf_conntrack_all_lock() and nf_conntrack_all_unlock(),
Jules Irenge
[nft PATCH] tests/py: Move tcpopt.t to any/ directory,
Phil Sutter
Re: Restoring rulesets containing dynamic sets with counters,
Pablo Neira Ayuso
[PATCH nft] parser_bison: fix rshift statement expression.,
Jeremy Sowden
shift_stmt_expr grammar question,
Jeremy Sowden
[PATCH nf-next v2 0/6] nft_set_pipapo: Performance improvements: Season 1,
Stefano Brivio
[nft PATCH v2 1/2] parser_json: Support ranges in concat expressions,
Phil Sutter
[nft PATCH] tests/py: Fix JSON output for changed timezone, Phil Sutter
[PATCH nf] netfilter: nf_tables: missing module ownership in chain type definitions,
Pablo Neira Ayuso
[PATCH nf] netfilter: nft_chain_nat: inet family is missing module ownership,
Pablo Neira Ayuso
[nft PATCH] parser_json: Support ranges in concat expressions,
Phil Sutter
[PATCH nft] tests: Introduce test for insertion of overlapping and non-overlapping ranges,
Stefano Brivio
[PATCH nf 0/4] nftables: Consistently report partial and entire set overlaps,
Stefano Brivio
[PATCH AUTOSEL 5.4 24/58] netfilter: ipset: Fix "INFO: rcu detected stall in hash_xxx" reports, Sasha Levin
[PATCH AUTOSEL 5.4 25/58] netfilter: ipset: Fix forceadd evaluation path, Sasha Levin
[PATCH AUTOSEL 5.5 29/67] netfilter: ipset: Fix forceadd evaluation path, Sasha Levin
[PATCH AUTOSEL 5.5 28/67] netfilter: ipset: Fix "INFO: rcu detected stall in hash_xxx" reports, Sasha Levin
[PATCH nft 0/4] Help and getopt improvements,
Jeremy Sowden
[PATCH nf] netfilter: nf_tables: fix infinite loop when expr is not available,
Florian Westphal
[iptables PATCH v2] connlabel: Allow numeric labels even if connlabel.conf exists, Phil Sutter
[iptables PATCH] connlabel: Allow numeric labels even if connlabel.conf exists,
Phil Sutter
[PATCH nft] main: add more information to `nft -V`.,
Pablo Neira Ayuso
[PATCH nf] netfilter: nf_tables: dump NFTA_CHAIN_FLAGS attribute, Pablo Neira Ayuso
[PATCH nft] src: support for offload chain flags, Pablo Neira Ayuso
[PATCH libnftnl] chain: add NFTNL_CHAIN_FLAGS, Pablo Neira Ayuso
[PATCH nft v3 00/18] Support for boolean binops with variable RHS operands.,
Jeremy Sowden
- [PATCH nft v3 01/18] evaluate: add separate variables for lshift and xor binops., Jeremy Sowden
- [PATCH nft v3 02/18] evaluate: simplify calculation of payload size., Jeremy Sowden
- [PATCH nft v3 06/18] netlink_delinearize: set shift RHS byte-order., Jeremy Sowden
- [PATCH nft v3 03/18] evaluate: don't evaluate payloads twice., Jeremy Sowden
- [PATCH nft v3 07/18] src: fix leaks., Jeremy Sowden
- [PATCH nft v3 08/18] include: update nf_tables.h., Jeremy Sowden
- [PATCH nft v3 04/18] evaluate: convert the byte-order of payload statement arguments., Jeremy Sowden
- [PATCH nft v3 09/18] src: support (de)linearization of bitwise op's with variable right operands., Jeremy Sowden
- [PATCH nft v3 05/18] evaluate: no need to swap byte-order for values of fewer than 16 bits., Jeremy Sowden
- [PATCH nft v3 14/18] netlink_delinearize: add support for processing variable payload statement arguments., Jeremy Sowden
- [PATCH nft v3 15/18] netlink_delinearize: add postprocessing for payload binops., Jeremy Sowden
- [PATCH nft v3 16/18] tests: shell: remove stray debug flag., Jeremy Sowden
- [PATCH nft v3 13/18] netlink_delinearize: refactor stmt_payload_binop_postprocess., Jeremy Sowden
- [PATCH nft v3 18/18] tests: py: add variable binop RHS tests., Jeremy Sowden
- [PATCH nft v3 12/18] netlink_delinearize: fix typo., Jeremy Sowden
- [PATCH nft v3 17/18] tests: shell: add variable binop RHS tests., Jeremy Sowden
- [PATCH nft v3 11/18] evaluate: don't clobber binop bitmask lengths., Jeremy Sowden
- [PATCH nft v3 10/18] evaluate: allow boolean binop expressions with variable righthand arguments., Jeremy Sowden
- Re: [PATCH nft v3 00/18] Support for boolean binops with variable RHS operands., Florian Westphal
Re: + seq_read-info-message-about-buggy-next-functions.patch added to -mm tree, Vasily Averin
[PATCH netfilter 0/3] netfilter: add missing attribute validation,
Jakub Kicinski
[PATCH nft v2 00/18] Support for boolean binops with variable RHS operands.,
Jeremy Sowden
- [PATCH nft v2 02/18] evaluate: simplify calculation of payload size., Jeremy Sowden
- [PATCH nft v2 01/18] evaluate: add separate variables for lshift and xor binops., Jeremy Sowden
- [PATCH nft v2 03/18] evaluate: don't evaluate payloads twice., Jeremy Sowden
- [PATCH nft v2 06/18] netlink_delinearize: set shift RHS byte-order., Jeremy Sowden
- [PATCH nft v2 08/18] include: update nf_tables.h., Jeremy Sowden
- [PATCH nft v2 07/18] src: fix leaks., Jeremy Sowden
- [PATCH nft v2 05/18] evaluate: no need to swap byte-order for values of fewer than 16 bits., Jeremy Sowden
- [PATCH nft v2 09/18] src: support (de)linearization of bitwise op's with variable right operands., Jeremy Sowden
- [PATCH nft v2 04/18] evaluate: convert the byte-order of payload statement arguments., Jeremy Sowden
- [PATCH nft v2 15/18] netlink_delinearize: add postprocessing for payload binops., Jeremy Sowden
- [PATCH nft v2 11/18] netlink_linearize: round binop bitmask length up., Jeremy Sowden
- [PATCH nft v2 13/18] netlink_delinearize: refactor stmt_payload_binop_postprocess., Jeremy Sowden
- [PATCH nft v2 18/18] tests: py: add variable binop RHS tests., Jeremy Sowden
- [PATCH nft v2 16/18] tests: shell: remove stray debug flag., Jeremy Sowden
- [PATCH nft v2 17/18] tests: shell: add variable binop RHS tests., Jeremy Sowden
- [PATCH nft v2 10/18] evaluate: allow boolean binop expressions with variable righthand arguments., Jeremy Sowden
- [PATCH nft v2 12/18] netlink_delinearize: fix typo., Jeremy Sowden
- [PATCH nft v2 14/18] netlink_delinearize: add support for processing variable payload statement arguments., Jeremy Sowden
[PATCH nf] netfilter: nf_tables: free flowtable hooks on hook register error,
Florian Westphal
memory leak in nf_tables_parse_netdev_hooks (2), syzbot
[iptables PATCH 0/4] Fix for iptables-nft-restore under pressure,
Phil Sutter
general protection fault in gc_worker, syzbot
0x14: COVID-19 update, postponement of Netdev conf 0x14, Jamal Hadi Salim
Re: [patch net-next v2 01/12] flow_offload: Introduce offload of HW stats type,
Pablo Neira Ayuso
[PATCH nft 00/18] Support for boolean binops with variable RHS operands.,
Jeremy Sowden
- [PATCH nft 08/18] include: update nf_tables.h., Jeremy Sowden
- [PATCH nft 07/18] src: fix leaks., Jeremy Sowden
- [PATCH nft 09/18] src: support (de)linearization of bitwise op's with variable right operands., Jeremy Sowden
- [PATCH nft 01/18] evaluate: add separate variables for lshift and xor binops., Jeremy Sowden
- [PATCH nft 02/18] evaluate: simplify calculation of payload size., Jeremy Sowden
- [PATCH nft 03/18] evaluate: don't evaluate payloads twice., Jeremy Sowden
- [PATCH nft 05/18] evaluate: no need to swap byte-order for values of fewer than 16 bits., Jeremy Sowden
- [PATCH nft 06/18] netlink_delinearize: set shift RHS byte-order., Jeremy Sowden
- [PATCH nft 04/18] evaluate: convert the byte-order of payload statement arguments., Jeremy Sowden
- [PATCH nft 11/18] netlink_linearize: round binop bitmask length up., Jeremy Sowden
- [PATCH nft 18/18] tests: py: add variable binop RHS tests., Jeremy Sowden
- [PATCH nft 17/18] tests: shell: add variable binop RHS tests., Jeremy Sowden
- [PATCH nft 13/18] netlink_delinearize: refactor stmt_payload_binop_postprocess., Jeremy Sowden
- [PATCH nft 14/18] netlink_delinearize: add support for processing variable payload statement arguments., Jeremy Sowden
- [PATCH nft 10/18] evaluate: allow boolean binop expressions with variable righthand arguments., Jeremy Sowden
- [PATCH nft 15/18] netlink_delinearize: add postprocessing for payload binops., Jeremy Sowden
- [PATCH nft 12/18] netlink_delinearize: fix typo., Jeremy Sowden
- [PATCH nft 16/18] tests: shell: remove stray debug flag., Jeremy Sowden
Ipv6 address in concatenation,
Serguei Bezverkhi (sbezverk)
[PATCH net] netlink: Use netlink header as base to calculate bad attribute offset,
Pablo Neira Ayuso
[PATCH nft 1/2] expressions: concat: add typeof support,
Florian Westphal
Null Pointer Dereference in nf_nat, Alex Buie
[PATCH] netfilter: clean up some indenting,
Dan Carpenter
[PATCH nf] netfilter: ensure rcu_read_lock() in ipv4_find_option(),
Matteo Croce
[PATCH 7/6 nft,v2] src: nat concatenation support with anonymous maps,
Pablo Neira Ayuso
[PATCH] ipset: Update byte and packet counters regardless of whether they match,
Stefano Brivio
[PATCH libnftnl 0/3] bitwise: support for passing mask and xor via registers,
Jeremy Sowden
[PATCH nft 7/6] src: nat concatenation support with anonymous maps, Pablo Neira Ayuso
[PATCH nf-next 0/2] netfilter: bitwise: support variable RHS operands,
Jeremy Sowden
[PATCH nf-next v5 0/4] netfilter: flowtable: add indr-block offload,
wenxu
[PATCH nft 0/6] allow s/dnat to map to both addr and port,
Florian Westphal
[Index of Archives]
[LARTC]
[Berkeley Packet Filter]
[Bugtraq]
[Yosemite Discussion]
