Linux Netfilter / IP Tables Devel

Date Index

[Prev Page][Next Page]

Re: [PATCH nft v3 2/6] tests/shell: check and generate JSON dump files, (continued)
[PATCH nft,v2] src: expand create commands, Pablo Neira Ayuso
[PATCH nf] netfilter: nf_tables: split async and sync catchall in two functions, Pablo Neira Ayuso
[PATCH 0/1] ipset patch to fix race condition between swap/destroy and add/del/test, v3, Jozsef Kadlecsik
- [PATCH 1/1] netfilter: ipset: fix race condition between swap/destroy and kernel side add/del/test, v2, Jozsef Kadlecsik
- <Possible follow-ups>
- [PATCH 0/1] ipset patch to fix race condition between swap/destroy and add/del/test, v3, Jozsef Kadlecsik
  - [PATCH 1/1] netfilter: ipset: fix race condition between swap/destroy and kernel side add/del/test, v3, Jozsef Kadlecsik
    - Re: [PATCH 1/1] netfilter: ipset: fix race condition between swap/destroy and kernel side add/del/test, v3, Florian Westphal
[PATCH nf] netfilter: nf_tables: bogus ENOENT when destroying element which does not exist, Pablo Neira Ayuso
[PATCH nft] src: expand create commands, Pablo Neira Ayuso
[PATCH nft,v2 01/11] tests: shell: skip pipapo tests if kernel lacks support, Pablo Neira Ayuso
- [PATCH nft,v2 06/11] tests: shell: skip multidevice chain tests if kernel lacks support, Pablo Neira Ayuso
- [PATCH nft,v2 03/11] tests: shell: skip stateful expression in sets tests if kernel lacks support, Pablo Neira Ayuso
- [PATCH nft,v2 02/11] tests: shell: skip prerouting reject tests if kernel lacks support, Pablo Neira Ayuso
- [PATCH nft,v2 04/11] tests: shell: skip NAT netmap tests if kernel lacks support, Pablo Neira Ayuso
- [PATCH nft,v2 05/11] tests: shell: skip comment tests if kernel lacks support, Pablo Neira Ayuso
- [PATCH nft,v2 07/11] tests: shell: skip if kernel does not support bitshift, Pablo Neira Ayuso
- [PATCH nft,v2 10/11] tests: shell: split single element in anonymous set, Pablo Neira Ayuso
- [PATCH nft,v2 08/11] tests: shell: split set NAT interval test, Pablo Neira Ayuso
- [PATCH nft,v2 09/11] tests: shell: split map test, Pablo Neira Ayuso
- [PATCH nft,v2 11/11] tests: shell: split merge nat optimization in two tests, Pablo Neira Ayuso
ebtables documentation updates, Jan Engelhardt
- [PATCH 1/7] man: make TH word match Name line, Jan Engelhardt
- [PATCH 2/7] man: consistent use of \(em in Name sections, Jan Engelhardt
- [PATCH 3/7] man: layout and colorize synopsis similar to iptables, Jan Engelhardt
- [PATCH 4/7] man: display number ranges with an en dash, Jan Engelhardt
- [PATCH 7/7] ebtables: better error message when -j is missing, Jan Engelhardt
- [PATCH 6/7] man: fix one spello, Jan Engelhardt
- [PATCH 5/7] man: perform backslash-encoding, Jan Engelhardt
- Re: ebtables documentation updates, Florian Westphal
iptables manpage updates, Jan Engelhardt
- [PATCH 4/7] man: stop putting non-terminals in italic, Jan Engelhardt
- [PATCH 1/7] man: consistent use of \(em in Name sections, Jan Engelhardt
- [PATCH 2/7] man: remove lone .nh command, Jan Engelhardt
- [PATCH 3/7] man: repeal manual hyphenation, Jan Engelhardt
- [PATCH 5/7] man: copy synopsis markup from iptables.8 to arptables-nft.8, Jan Engelhardt
- [PATCH 6/7] man: limit targets for -P option synopsis, Jan Engelhardt
- [PATCH 7/7] man: more backslash-encoding of characters, Jan Engelhardt
- Re: iptables manpage updates, Florian Westphal
libnfnetlink dependency elimination, Duncan Roe
- [PATCH libnetfilter_queue 1/1] doc: First update for libnfnetlink-based API over libmnl, Duncan Roe
- Re: libnfnetlink dependency elimination, Pablo Neira Ayuso
  - Re: libnfnetlink dependency elimination (doc), Duncan Roe
    - *** Scrub that last message, Duncan Roe
    - Re: libnfnetlink dependency elimination (doc), Pablo Neira Ayuso
      - Re: libnfnetlink dependency elimination (doc), Duncan Roe
        
        Re: libnfnetlink dependency elimination (doc), Pablo Neira Ayuso
  - Re: libnfnetlink dependency elimination (doc), Duncan Roe
[PATCH libnetfilter_queue] utils: Add example of setting socket buffer size, Duncan Roe
- Re: [PATCH libnetfilter_queue] utils: Add example of setting socket buffer size, Pablo Neira Ayuso
  - Re: [PATCH libnetfilter_queue] utils: Add example of setting socket buffer size, Duncan Roe
[PATCH nft 1/3] parser: don't mark "string" as const, Thomas Haller
- [PATCH nft 3/3] parser: use size_t type for strlen() results, Thomas Haller
  - Re: [PATCH nft 3/3] parser: use size_t type for strlen() results, Florian Westphal
- [PATCH nft 2/3] parser: remove "const" from argument of input_descriptor_destroy(), Thomas Haller
  - Re: [PATCH nft 2/3] parser: remove "const" from argument of input_descriptor_destroy(), Florian Westphal
- Re: [PATCH nft 1/3] parser: don't mark "string" as const, Pablo Neira Ayuso
  - Re: [PATCH nft 1/3] parser: don't mark "string" as const, Thomas Haller
    - Re: [PATCH nft 1/3] parser: don't mark "string" as const, Florian Westphal
      - Re: [PATCH nft 1/3] parser: don't mark "string" as const, Thomas Haller
[PATCH nft 00/12] update tests/shell for 5.4 kernels, Pablo Neira Ayuso
- [PATCH nft 02/12] tests: shell: skip pipapo tests if kernel lacks support, Pablo Neira Ayuso
  - Re: [PATCH nft 02/12] tests: shell: skip pipapo tests if kernel lacks support, Florian Westphal
- [PATCH nft 03/12] tests: shell: skip prerouting reject tests if kernel lacks support, Pablo Neira Ayuso
  - Re: [PATCH nft 03/12] tests: shell: skip prerouting reject tests if kernel lacks support, Florian Westphal
- [PATCH nft 01/12] tests: shell: export DIFF to use it from feature scripts, Pablo Neira Ayuso
  - Re: [PATCH nft 01/12] tests: shell: export DIFF to use it from feature scripts, Thomas Haller
    - Re: [PATCH nft 01/12] tests: shell: export DIFF to use it from feature scripts, Pablo Neira Ayuso
      - Re: [PATCH nft 01/12] tests: shell: export DIFF to use it from feature scripts, Thomas Haller
        
        Re: [PATCH nft 01/12] tests: shell: export DIFF to use it from feature scripts, Florian Westphal
      - Re: [PATCH nft 01/12] tests: shell: export DIFF to use it from feature scripts, Florian Westphal
- [PATCH nft 06/12] tests: shell: skip comment tests if kernel lacks support, Pablo Neira Ayuso
- [PATCH nft 08/12] tests: shell: skip if kernel does not support bitshift, Pablo Neira Ayuso
- [PATCH nft 04/12] tests: shell: skip stateful expression in sets tests if kernel lacks support, Pablo Neira Ayuso
  - Re: [PATCH nft 04/12] tests: shell: skip stateful expression in sets tests if kernel lacks support, Florian Westphal
- [PATCH nft 12/12] tests: shell: split merge nat optimization in two tests, Pablo Neira Ayuso
- [PATCH nft 05/12] tests: shell: skip NAT netmap tests if kernel lacks support, Pablo Neira Ayuso
- [PATCH nft 09/12] tests: shell: split set NAT interval test, Pablo Neira Ayuso
- [PATCH nft 10/12] tests: shell: split map test, Pablo Neira Ayuso
- [PATCH nft 11/12] tests: shell: split single element in anonymous set, Pablo Neira Ayuso
- [PATCH nft 07/12] tests: shell: skip multidevice chain tests if kernel lacks support, Pablo Neira Ayuso
- Re: [PATCH nft 00/12] update tests/shell for 5.4 kernels, Florian Westphal
[nf-next PATCH v4 0/3] Add locking for NFT_MSG_GETSETELEM_RESET, Phil Sutter
- [nf-next PATCH v4 1/3] netfilter: nf_tables: Pass const set to nft_get_set_elem, Phil Sutter
- [nf-next PATCH v4 2/3] netfilter: nf_tables: Introduce nft_set_dump_ctx_init(), Phil Sutter
- [nf-next PATCH v4 3/3] netfilter: nf_tables: Add locking for NFT_MSG_GETSETELEM_RESET requests, Phil Sutter
[PATCH nft 1/2] utils: add memory_allocation_check() helper, Thomas Haller
- [PATCH nft 2/2] netlink: add and use _nftnl_udata_buf_alloc() helper, Thomas Haller
  - Re: [PATCH nft 2/2] netlink: add and use _nftnl_udata_buf_alloc() helper, Pablo Neira Ayuso
    - Re: [PATCH nft 2/2] netlink: add and use _nftnl_udata_buf_alloc() helper, Thomas Haller
      - Re: [PATCH nft 2/2] netlink: add and use _nftnl_udata_buf_alloc() helper, Pablo Neira Ayuso
        
        Re: [PATCH nft 2/2] netlink: add and use _nftnl_udata_buf_alloc() helper, Thomas Haller
        
        Re: [PATCH nft 2/2] netlink: add and use _nftnl_udata_buf_alloc() helper, Pablo Neira Ayuso
- Re: [PATCH nft 1/2] utils: add memory_allocation_check() helper, Pablo Neira Ayuso
  - Re: [PATCH nft 1/2] utils: add memory_allocation_check() helper, Thomas Haller
    - Re: [PATCH nft 1/2] utils: add memory_allocation_check() helper, Florian Westphal
      - Re: [PATCH nft 1/2] utils: add memory_allocation_check() helper, Thomas Haller
[PATCH nft] netlink: fix buffer size for user data in netlink_delinearize_chain(), Thomas Haller
- Re: [PATCH nft] netlink: fix buffer size for user data in netlink_delinearize_chain(), Pablo Neira Ayuso
[PATCH nf] netfilter: nat: fix ipv6 nat redirect with mapped and scoped addresses, Florian Westphal
[iptables PATCH 1/3] arptables: Fix formatting of numeric --h-type output, Phil Sutter
- [iptables PATCH 3/3] extensions: libarpt_standard.t: Add a rule with builtin option masks, Phil Sutter
- [iptables PATCH 2/3] arptables: Fix --proto-type mask formatting, Phil Sutter
- Re: [iptables PATCH 1/3] arptables: Fix formatting of numeric --h-type output, Florian Westphal
- Re: [iptables PATCH 1/3] arptables: Fix formatting of numeric --h-type output, Phil Sutter
[iptables PATCH] ebtables: Fix corner-case noflush restore bug, Phil Sutter
- Re: [iptables PATCH] ebtables: Fix corner-case noflush restore bug, Phil Sutter
[PATCH v2 iptables 0/4] xtables-nft: add arptranslate support, Florian Westphal
- [PATCH v2 iptables 1/4] nft-arp: add missing mask support, Florian Westphal
- [PATCH v2 iptables 2/4] nft-arp: add arptables-translate, Florian Westphal
- [PATCH v2 iptables 3/4] arptables-txlate: add test cases, Florian Westphal
- [PATCH v2 iptables 4/4] extensions: MARK: fix arptables support, Florian Westphal
- Re: [PATCH v2 iptables 0/4] xtables-nft: add arptranslate support, Phil Sutter
[PATCH nf] ipvs: add missing module descriptions, Florian Westphal
- Re: [PATCH nf] ipvs: add missing module descriptions, Julian Anastasov
[PATCH nft,v2 1/2] evaluate: reset statement length context only for set mappings, Pablo Neira Ayuso
- [PATCH nft,v2 2/2] evaluate: place byteorder conversion before rshift in payload expressions, Pablo Neira Ayuso
[PATCH nf,v4] netfilter: nf_tables: remove catchall element in GC sync path, Pablo Neira Ayuso
[PATCH nf,v3] netfilter: nf_tables: remove catchall element in GC sync path, Pablo Neira Ayuso
- Re: [PATCH nf,v3] netfilter: nf_tables: remove catchall element in GC sync path, Pablo Neira Ayuso
[PATCH nf,v2] netfilter: nf_tables: remove catchall element in GC sync path, Pablo Neira Ayuso
[PATCH nf] netfilter: nf_tables: remove catchall element in GC sync path, Pablo Neira Ayuso
[PATCH nft] evaluate: place byteorder conversion before rshift in payload expressions, Pablo Neira Ayuso
[PATCH net v2] netfilter: xt_recent: fix (increase) ipv6 literal buffer length, Maciej Żenczykowski
- Re: [PATCH net v2] netfilter: xt_recent: fix (increase) ipv6 literal buffer length, Simon Horman
[PATCH nft] evaluate: reset statement length context only for set mappings, Pablo Neira Ayuso
[PATCH nft v2 0/5] add infrastructure for unit tests, Thomas Haller
- [PATCH nft v2 4/5] build: cleanup if-blocks for conditional compilation in "Makefile.am", Thomas Haller
- [PATCH nft v2 3/5] build: add `make check-tree` to check consistency of source tree, Thomas Haller
- [PATCH nft v2 2/5] build: add `make check-build` to run `./tests/build/run-tests.sh`, Thomas Haller
- [PATCH nft v2 1/5] build: add basic "check-{local,more,all}" and "build-all" make targets, Thomas Haller
- [PATCH nft v2 5/5] tests/unit: add unit tests for libnftables, Thomas Haller
- Re: [PATCH nft v2 0/5] add infrastructure for unit tests, Thomas Haller
  - Re: [PATCH nft v2 0/5] add infrastructure for unit tests, Pablo Neira Ayuso
    - Re: [PATCH nft v2 0/5] add infrastructure for unit tests, Thomas Haller
      - Re: [PATCH nft v2 0/5] add infrastructure for unit tests, Pablo Neira Ayuso
[PATCH libmnl v2] nlmsg: fix false positives when validating buffer sizes, Jeremy Sowden
- Re: [PATCH libmnl v2] nlmsg: fix false positives when validating buffer sizes, Pablo Neira Ayuso
[PATCH net] net: xt_recent: fix (increase) ipv6 literal buffer length, Maciej Żenczykowski
- Re: [PATCH net] net: xt_recent: fix (increase) ipv6 literal buffer length, Jan Engelhardt
  - Re: [PATCH net] net: xt_recent: fix (increase) ipv6 literal buffer length, Maciej Żenczykowski
[PATCH nf] netfilter: add missing module descriptions, Florian Westphal
[PATCH 0/1] ipset patch to fix race condition between swap/destroy and add/del/test, v2, Jozsef Kadlecsik
- [PATCH 1/1] netfilter: ipset: fix race condition between swap/destroy and kernel side add/del/test, v2, Jozsef Kadlecsik
  - Re: [PATCH 1/1] netfilter: ipset: fix race condition between swap/destroy and kernel side add/del/test, v2, Florian Westphal
    - Re: [PATCH 1/1] netfilter: ipset: fix race condition between swap/destroy and kernel side add/del/test, v2, Jozsef Kadlecsik
[PATCH] netfilter: nat: add MODULE_DESCRIPTION, Randy Dunlap
- Re: [PATCH] netfilter: nat: add MODULE_DESCRIPTION, Florian Westphal
[PATCH nft v2 0/6] add and check dump files for JSON in tests/shell, Thomas Haller
- [PATCH nft v2 2/6] tests/shell: check and generate JSON dump files, Thomas Haller
- [PATCH nft v2 5/6] tools: check more strictly for bash shebang in "check-tree.sh", Thomas Haller
- [PATCH nft v2 4/6] tools: simplify error handling in "check-tree.sh" by adding msg_err()/msg_warn(), Thomas Haller
- [PATCH nft v2 1/6] json: fix use after free in table_flags_json(), Thomas Haller
- [PATCH nft v2 6/6] tools: check for consistency of .json-nft dumps in "check-tree.sh", Thomas Haller
- Message not available
  - Re: [PATCH nft v2 3/6] tests/shell: add JSON dump files, Thomas Haller
    - Re: [PATCH nft v2 3/6] tests/shell: add JSON dump files, Pablo Neira Ayuso
      - Re: [PATCH nft v2 3/6] tests/shell: add JSON dump files, Thomas Haller
- Re: [PATCH nft v2 0/6] add and check dump files for JSON in tests/shell, Pablo Neira Ayuso
[PATCH nft v3 0/2] drop warning messages from stmt_print_json()/expr_print_json(), Thomas Haller
- [PATCH nft v3 2/2] json: drop warning on stderr for missing json() hook in stmt_print_json(), Thomas Haller
  - Re: [PATCH nft v3 2/2] json: drop warning on stderr for missing json() hook in stmt_print_json(), Pablo Neira Ayuso
    - Re: [PATCH nft v3 2/2] json: drop warning on stderr for missing json() hook in stmt_print_json(), Florian Westphal
      - Re: [PATCH nft v3 2/2] json: drop warning on stderr for missing json() hook in stmt_print_json(), Thomas Haller
    - Re: [PATCH nft v3 2/2] json: drop warning on stderr for missing json() hook in stmt_print_json(), Thomas Haller
  - Re: [PATCH nft v3 2/2] json: drop warning on stderr for missing json() hook in stmt_print_json(), Phil Sutter
    - Re: [PATCH nft v3 2/2] json: drop warning on stderr for missing json() hook in stmt_print_json(), Thomas Haller
- [PATCH nft v3 1/2] json: drop handling missing json() hook in expr_print_json(), Thomas Haller
  - Re: [PATCH nft v3 1/2] json: drop handling missing json() hook in expr_print_json(), Florian Westphal
  - Re: [PATCH nft v3 1/2] json: drop handling missing json() hook in expr_print_json(), Phil Sutter
    - Re: [PATCH nft v3 1/2] json: drop handling missing json() hook in expr_print_json(), Thomas Haller
      - Re: [PATCH nft v3 1/2] json: drop handling missing json() hook in expr_print_json(), Phil Sutter
        
        Re: [PATCH nft v3 1/2] json: drop handling missing json() hook in expr_print_json(), Pablo Neira Ayuso
[PATCH nft 0/6] add infrastructure for unit tests, Thomas Haller
- [PATCH nft 4/6] build: add check for consistency of source tree, Thomas Haller
- [PATCH nft 1/6] gitignore: ignore build artifacts from top level file, Thomas Haller
  - Re: [PATCH nft 1/6] gitignore: ignore build artifacts from top level file, Pablo Neira Ayuso
    - Re: [PATCH nft 1/6] gitignore: ignore build artifacts from top level file, Thomas Haller
- [PATCH nft 5/6] build: cleanup if blocks for conditional compilation, Thomas Haller
- [PATCH nft 2/6] build: add basic "check-{local,more,all}" and "build-all" make targets, Thomas Haller
- [PATCH nft 3/6] build: add `make check-tests-build` to add build test, Thomas Haller
- [PATCH nft 6/6] tests/unit: add unit tests for libnftables, Thomas Haller
- Re: [PATCH nft 0/6] add infrastructure for unit tests, Pablo Neira Ayuso
- Re: [PATCH nft 0/6] add infrastructure for unit tests, Florian Westphal
  - Re: [PATCH nft 0/6] add infrastructure for unit tests, Thomas Haller
  - Re: [PATCH nft 0/6] add infrastructure for unit tests, Pablo Neira Ayuso
    - Re: [PATCH nft 0/6] add infrastructure for unit tests, Thomas Haller
Re: net/netfilter/nft_set_rbtree.c:636:33: warning: variable 'nft_net' set but not used, Pablo Neira Ayuso
[PATCH iptables 0/4] add arptables-translate, Florian Westphal
- [PATCH iptables 1/4] arptables-nft: use ARPT_INV flags consistently, Florian Westphal
  - Re: [PATCH iptables 1/4] arptables-nft: use ARPT_INV flags consistently, Phil Sutter
    - Re: [PATCH iptables 1/4] arptables-nft: use ARPT_INV flags consistently, Florian Westphal
      - Re: [PATCH iptables 1/4] arptables-nft: use ARPT_INV flags consistently, Phil Sutter
        
        Re: [PATCH iptables 1/4] arptables-nft: use ARPT_INV flags consistently, Florian Westphal
        
        [PATCH iptables] arptables-nft: remove ARPT_INV flags usage, Florian Westphal
        
        Re: [PATCH iptables] arptables-nft: remove ARPT_INV flags usage, Phil Sutter
        
        Re: [PATCH iptables 1/4] arptables-nft: use ARPT_INV flags consistently, Phil Sutter
- [PATCH iptables 4/4] arptables-txlate: add test cases, Florian Westphal
- [PATCH iptables 2/4] nft-arp: add missing mask support, Florian Westphal
  - Re: [PATCH iptables 2/4] nft-arp: add missing mask support, Phil Sutter
    - Re: [PATCH iptables 2/4] nft-arp: add missing mask support, Phil Sutter
- [PATCH iptables 3/4] nft-arp: add arptables-translate, Florian Westphal
  - Re: [PATCH iptables 3/4] nft-arp: add arptables-translate, Phil Sutter
- Re: [PATCH iptables 0/4] add arptables-translate, Pablo Neira Ayuso
[PATCH net] netfilter: nf_tables: fix pointer math issue in nft_byteorder_eval(), Dan Carpenter
- Re: [PATCH net] netfilter: nf_tables: fix pointer math issue in nft_byteorder_eval(), Florian Westphal
  - Re: [PATCH net] netfilter: nf_tables: fix pointer math issue in nft_byteorder_eval(), Pablo Neira Ayuso
    - Re: [PATCH net] netfilter: nf_tables: fix pointer math issue in nft_byteorder_eval(), Florian Westphal
- Re: [PATCH net] netfilter: nf_tables: fix pointer math issue in nft_byteorder_eval(), Michal Kubecek
  - Re: [PATCH net] netfilter: nf_tables: fix pointer math issue in nft_byteorder_eval(), Dan Carpenter
    - Re: [PATCH net] netfilter: nf_tables: fix pointer math issue in nft_byteorder_eval(), Michal Kubecek
  - Re: [PATCH net] netfilter: nf_tables: fix pointer math issue in nft_byteorder_eval(), Florian Westphal
    - Re: [PATCH net] netfilter: nf_tables: fix pointer math issue in nft_byteorder_eval(), Pablo Neira Ayuso
      - Re: [netfilter-core] [PATCH net] netfilter: nf_tables: fix pointer math issue in nft_byteorder_eval(), Pablo Neira Ayuso
[nft PATCH v2] tests: shell: Fix sets/reset_command_0 for current kernels, Phil Sutter
- Re: [nft PATCH v2] tests: shell: Fix sets/reset_command_0 for current kernels, Phil Sutter
[nft PATCH] tests: shell: Fix sets/reset_command_0 for current kernels, Phil Sutter
- Re: [nft PATCH] tests: shell: Fix sets/reset_command_0 for current kernels, Thomas Haller
  - Re: [nft PATCH] tests: shell: Fix sets/reset_command_0 for current kernels, Phil Sutter
    - Re: [nft PATCH] tests: shell: Fix sets/reset_command_0 for current kernels, Pablo Neira Ayuso
      - Re: [nft PATCH] tests: shell: Fix sets/reset_command_0 for current kernels, Pablo Neira Ayuso
      - Re: [nft PATCH] tests: shell: Fix sets/reset_command_0 for current kernels, Phil Sutter
        
        Re: [nft PATCH] tests: shell: Fix sets/reset_command_0 for current kernels, Pablo Neira Ayuso
        
        Re: [nft PATCH] tests: shell: Fix sets/reset_command_0 for current kernels, Phil Sutter
        
        Re: [nft PATCH] tests: shell: Fix sets/reset_command_0 for current kernels, Pablo Neira Ayuso
[nf-next PATCH v3] netfilter: nf_tables: Add locking for NFT_MSG_GETSETELEM_RESET requests, Phil Sutter
- Re: [nf-next PATCH v3] netfilter: nf_tables: Add locking for NFT_MSG_GETSETELEM_RESET requests, Pablo Neira Ayuso
  - Re: [nf-next PATCH v3] netfilter: nf_tables: Add locking for NFT_MSG_GETSETELEM_RESET requests, Phil Sutter
[nft PATCH] tproxy: Drop artificial port printing restriction, Phil Sutter
- Re: [nft PATCH] tproxy: Drop artificial port printing restriction, Pablo Neira Ayuso
  - Re: [nft PATCH] tproxy: Drop artificial port printing restriction, Pablo Neira Ayuso
    - Re: [nft PATCH] tproxy: Drop artificial port printing restriction, Phil Sutter
  - Re: [nft PATCH] tproxy: Drop artificial port printing restriction, Phil Sutter
[PATCH nft] tests: meta: test hour decoding wrap, Florian Westphal
- Re: [PATCH nft] tests: meta: test hour decoding wrap, Pablo Neira Ayuso
  - Re: [PATCH nft] tests: meta: test hour decoding wrap, Florian Westphal
[PATCH nft] meta: fix hour decoding when timezone offset is negative, Florian Westphal
[GIT PULL] Landlock updates for v6.7, Mickaël Salaün
- Re: [GIT PULL] Landlock updates for v6.7, pr-tracker-bot
[PATCH nft 1/2] json: implement json() hook for "symbol_expr_ops"/"variabl_expr_ops", Thomas Haller
- [PATCH nft 2/2] json: drop handling missing json() hook for "struct expr_ops", Thomas Haller
  - Re: [PATCH nft 2/2] json: drop handling missing json() hook for "struct expr_ops", Pablo Neira Ayuso
    - Re: [PATCH nft 2/2] json: drop handling missing json() hook for "struct expr_ops", Thomas Haller
      - Re: [PATCH nft 2/2] json: drop handling missing json() hook for "struct expr_ops", Pablo Neira Ayuso
        
        Re: [PATCH nft 2/2] json: drop handling missing json() hook for "struct expr_ops", Thomas Haller
        
        Re: [PATCH nft 2/2] json: drop handling missing json() hook for "struct expr_ops", Pablo Neira Ayuso
        
        Re: [PATCH nft 2/2] json: drop handling missing json() hook for "struct expr_ops", Thomas Haller
        
        Re: [PATCH nft 2/2] json: drop handling missing json() hook for "struct expr_ops", Pablo Neira Ayuso
        
        Re: [PATCH nft 2/2] json: drop handling missing json() hook for "struct expr_ops", Florian Westphal
        
        Re: [PATCH nft 2/2] json: drop handling missing json() hook for "struct expr_ops", Pablo Neira Ayuso
        
        Re: [PATCH nft 2/2] json: drop handling missing json() hook for "struct expr_ops", Florian Westphal
  - Re: [PATCH nft 2/2] json: drop handling missing json() hook for "struct expr_ops", Thomas Haller
    - Re: [PATCH nft 2/2] json: drop handling missing json() hook for "struct expr_ops", Thomas Haller
- Re: [PATCH nft 1/2] json: implement json() hook for "symbol_expr_ops"/"variabl_expr_ops", Pablo Neira Ayuso
[PATCH nft 1/1] tests/shell: fix mount command in "test-wrapper.sh", Thomas Haller
- Re: [PATCH nft 1/1] tests/shell: fix mount command in "test-wrapper.sh", Florian Westphal
[PATCH] netfilter: bridge: initialize err to 0, xiaolinkui
- Re: [PATCH] netfilter: bridge: initialize err to 0, Nikolay Aleksandrov
[PATCH net-next] netfilter: nf_tables: Remove unused variable nft_net, Yang Li
- Re: [PATCH net-next] netfilter: nf_tables: Remove unused variable nft_net, Simon Horman
[PATCH nft 0/7] add and check dump files for JSON in tests/shell, Thomas Haller
- [PATCH nft 6/7] tools: check more strictly for bash shebang in "check-tree.sh", Thomas Haller
- [PATCH nft 2/7] json: drop messages "warning: stmt ops chain have no json callback", Thomas Haller
  - Re: [PATCH nft 2/7] json: drop messages "warning: stmt ops chain have no json callback", Florian Westphal
    - Re: [PATCH nft 2/7] json: drop messages "warning: stmt ops chain have no json callback", Thomas Haller
      - Re: [PATCH nft 2/7] json: drop messages "warning: stmt ops chain have no json callback", Thomas Haller
- [PATCH nft 3/7] tests/shell: check and generate JSON dump files, Thomas Haller
- [PATCH nft 5/7] tools: simplify error handling in "check-tree.sh" by adding msg_err()/msg_warn(), Thomas Haller
- [PATCH nft 7/7] tools: check for consistency of .json-nft dumps in "check-tree.sh", Thomas Haller
- [PATCH nft 1/7] json: fix use after free in table_flags_json(), Thomas Haller
- Re: [PATCH nft 0/7] add and check dump files for JSON in tests/shell, Thomas Haller
  - Re: [PATCH nft 0/7] add and check dump files for JSON in tests/shell, Pablo Neira Ayuso
    - Re: [PATCH nft 0/7] add and check dump files for JSON in tests/shell, Thomas Haller
[PATCH AUTOSEL 4.19 05/12] netfilter: nfnetlink_log: silence bogus compiler warning, Sasha Levin
[PATCH AUTOSEL 5.15 17/28] netfilter: nfnetlink_log: silence bogus compiler warning, Sasha Levin
[PATCH AUTOSEL 5.4 06/13] netfilter: nfnetlink_log: silence bogus compiler warning, Sasha Levin
[PATCH AUTOSEL 5.10 07/16] netfilter: nfnetlink_log: silence bogus compiler warning, Sasha Levin
[PATCH AUTOSEL 4.14 05/11] netfilter: nfnetlink_log: silence bogus compiler warning, Sasha Levin
[PATCH AUTOSEL 6.1 35/39] netfilter: nf_tables: audit log object reset once per table, Sasha Levin
[PATCH AUTOSEL 6.1 18/39] netfilter: nfnetlink_log: silence bogus compiler warning, Sasha Levin
[PATCH AUTOSEL 6.5 47/52] netfilter: nf_tables: audit log object reset once per table, Sasha Levin
[PATCH AUTOSEL 6.5 24/52] netfilter: nfnetlink_log: silence bogus compiler warning, Sasha Levin
Re: [RFC Draft PATCHv2 net-next] Doc: update bridge doc, Florian Westphal
- Re: [RFC Draft PATCHv2 net-next] Doc: update bridge doc, Hangbin Liu
[PATCH net-next 0/4] net: fill in 18 MODULE_DESCRIPTION()s, Jakub Kicinski
[PATCH 01/10] man: display number ranges with an en dash, Jan Engelhardt
- [PATCH 02/10] man: encode emdash the way groff/man requires it, Jan Engelhardt
- [PATCH 05/10] man: encode minushyphen the way groff/man requires it, Jan Engelhardt
- [PATCH 06/10] man: consistent casing of "IPv[46]", Jan Engelhardt
- [PATCH 04/10] man: encode hyphens the way groff/man requires it, Jan Engelhardt
- [PATCH 03/10] man: encode math minuses the way groff/man requires it, Jan Engelhardt
- [PATCH 07/10] man: grammar fixes to some manpages, Jan Engelhardt
  - Re: [PATCH 07/10] man: grammar fixes to some manpages, Phil Sutter
    - Re: [PATCH 07/10] man: grammar fixes to some manpages, Jan Engelhardt
      - Re: [PATCH 07/10] man: grammar fixes to some manpages, Phil Sutter
        
        Re: [PATCH 07/10] man: grammar fixes to some manpages, Jan Engelhardt
        
        Re: [PATCH 07/10] man: grammar fixes to some manpages, Phil Sutter
- [PATCH 09/10] man: use .TP for lists in xt_osf man page, Jan Engelhardt
  - Re: [PATCH 09/10] man: use .TP for lists in xt_osf man page, Phil Sutter
    - Re: [PATCH 09/10] man: use .TP for lists in xt_osf man page, Jan Engelhardt
- [PATCH 08/10] man: use native bullet point markup, Jan Engelhardt
- [PATCH 10/10] man: reveal rateest's combination categories, Jan Engelhardt
[PATCH v14 00/12] Network support for Landlock, Konstantin Meskhidze
- [PATCH v14 01/12] landlock: Make ruleset's access masks more generic, Konstantin Meskhidze
- [PATCH v14 02/12] landlock: Allow FS topology changes for domains without such rule type, Konstantin Meskhidze
- [PATCH v14 03/12] landlock: Refactor landlock_find_rule/insert_rule, Konstantin Meskhidze
- [PATCH v14 04/12] landlock: Refactor merge/inherit_ruleset functions, Konstantin Meskhidze
- [PATCH v14 05/12] landlock: Move and rename layer helpers, Konstantin Meskhidze
- [PATCH v14 06/12] landlock: Refactor layer helpers, Konstantin Meskhidze
- [PATCH v14 07/12] landlock: Refactor landlock_add_rule() syscall, Konstantin Meskhidze
- [PATCH v14 08/12] landlock: Add network rules and TCP hooks support, Konstantin Meskhidze
- [PATCH v14 09/12] selftests/landlock: Share enforce_ruleset(), Konstantin Meskhidze
- [PATCH v14 11/12] samples/landlock: Support TCP restrictions, Konstantin Meskhidze
- [PATCH v14 10/12] selftests/landlock: Add network tests, Konstantin Meskhidze
  - Re: [PATCH v14 10/12] selftests/landlock: Add network tests, Muhammad Usama Anjum
    - Re: [PATCH v14 10/12] selftests/landlock: Add network tests, Mickaël Salaün
      - Re: [PATCH v14 10/12] selftests/landlock: Add network tests, Muhammad Usama Anjum
        
        Re: Re: [PATCH v14 10/12] selftests/landlock: Add network tests, Mickaël Salaün
- [PATCH v14 12/12] landlock: Document network support, Konstantin Meskhidze
- Re: [PATCH v14 00/12] Network support for Landlock, Mickaël Salaün
  - Re: [PATCH v14 00/12] Network support for Landlock, Konstantin Meskhidze (A)
- [PATCH] selftests/landlock: Add tests for FS topology changes with network rules, Mickaël Salaün
[nf-next PATCH v3 0/3] Add locking for NFT_MSG_GETOBJ_RESET requests, Phil Sutter
- [nf-next PATCH v3 2/3] netfilter: nf_tables: Introduce nf_tables_getobj_single, Phil Sutter
- [nf-next PATCH v3 1/3] netfilter: nf_tables: Audit log dump reset after the fact, Phil Sutter
  - Re: [nf-next PATCH v3 1/3] netfilter: nf_tables: Audit log dump reset after the fact, Pablo Neira Ayuso
    - Re: [nf-next PATCH v3 1/3] netfilter: nf_tables: Audit log dump reset after the fact, Pablo Neira Ayuso
- [nf-next PATCH v3 3/3] netfilter: nf_tables: Add locking for NFT_MSG_GETOBJ_RESET requests, Phil Sutter
  - Re: [nf-next PATCH v3 3/3] netfilter: nf_tables: Add locking for NFT_MSG_GETOBJ_RESET requests, Pablo Neira Ayuso
    - Re: [nf-next PATCH v3 3/3] netfilter: nf_tables: Add locking for NFT_MSG_GETOBJ_RESET requests, Pablo Neira Ayuso
      - Re: [nf-next PATCH v3 3/3] netfilter: nf_tables: Add locking for NFT_MSG_GETOBJ_RESET requests, Pablo Neira Ayuso
        
        Re: [nf-next PATCH v3 3/3] netfilter: nf_tables: Add locking for NFT_MSG_GETOBJ_RESET requests, Pablo Neira Ayuso
[PATCH nft] evaluate: reject set in concatenation, Pablo Neira Ayuso
[PATCH nf] sched: act_ct: additional checks for outdated flows, Pablo Neira Ayuso
- Re: [PATCH nf] sched: act_ct: additional checks for outdated flows, Vlad Buslov
- Re: [PATCH nf] sched: act_ct: additional checks for outdated flows, Paul Blakey
[PATCH nf] netfilter: nf_flow_table: GC pushes back packets to classic path, Pablo Neira Ayuso
- Re: [PATCH nf] netfilter: nf_flow_table: GC pushes back packets to classic path, Paul Blakey
[PATCH net] netfilter: flowtable: additional checks for outdated flows, Vlad Buslov
- Re: [PATCH net] netfilter: flowtable: additional checks for outdated flows, Pablo Neira Ayuso
  - Re: [PATCH net] netfilter: flowtable: additional checks for outdated flows, Vlad Buslov
    - Re: [PATCH net] netfilter: flowtable: additional checks for outdated flows, Pablo Neira Ayuso
      - Re: [PATCH net] netfilter: flowtable: additional checks for outdated flows, Vlad Buslov
[PATCH 1/6] man: encode minushyphen the way groff/man requires it, Jan Engelhardt
- [PATCH 3/6] man: encode hyphens the way groff/man requires it, Jan Engelhardt
- [PATCH 4/6] man: consistent casing of "IPv[46]", Jan Engelhardt
- [PATCH 5/6] man: grammar fixes to some manpages, Jan Engelhardt
- [PATCH 2/6] man: encode emdash the way groff/man requires it, Jan Engelhardt
- [PATCH 6/6] man: use native bullet point markup, Jan Engelhardt
- Re: [PATCH 1/6] man: encode minushyphen the way groff/man requires it, Phil Sutter
  - Re: [PATCH 1/6] man: encode minushyphen the way groff/man requires it, Jan Engelhardt
[nf-next PATCH] netfilter: nf_tables: Carry reset boolean in nft_set_dump_ctx, Phil Sutter
[iptables PATCH 0/2] Fix up string match man page, Phil Sutter
- [iptables PATCH 2/2] extensions: string: Clarify description of --to, Phil Sutter
- [iptables PATCH 1/2] Revert "extensions: string: Clarify description of --to", Phil Sutter
- Re: [iptables PATCH 0/2] Fix up string match man page, Phil Sutter
[PATCH nft] check-tree.sh: check and flag /bin/sh usage, Florian Westphal
- Re: [PATCH nft] check-tree.sh: check and flag /bin/sh usage, Pablo Neira Ayuso
[PATCH nft v2 0/4] [RESENT] remove xfree() and add free_const()+nft_gmp_free(), Thomas Haller
- [PATCH nft v2 2/4] gmputil: add nft_gmp_free() to free strings from mpz_get_str(), Thomas Haller
- [PATCH nft v2 3/4] all: add free_const() and use it instead of xfree(), Thomas Haller
- [PATCH nft v2 4/4] all: remove xfree() and use plain free(), Thomas Haller
- [PATCH nft v2 1/4] datatype: don't return a const string from cgroupv2_get_path(), Thomas Haller
- Re: [PATCH nft v2 0/4] [RESENT] remove xfree() and add free_const()+nft_gmp_free(), Pablo Neira Ayuso
- Re: [PATCH nft v2 0/4] [RESENT] remove xfree() and add free_const()+nft_gmp_free(), Pablo Neira Ayuso
  - Re: [PATCH nft v2 0/4] [RESENT] remove xfree() and add free_const()+nft_gmp_free(), Thomas Haller
    - Re: [PATCH nft v2 0/4] [RESENT] remove xfree() and add free_const()+nft_gmp_free(), Pablo Neira Ayuso
      - Re: [PATCH nft v2 0/4] [RESENT] remove xfree() and add free_const()+nft_gmp_free(), Thomas Haller
Fwd: Guidance on deterministic NAT (CGNAT), Clint Todish
[PATCH nf-next 0/5] nf_tables set updates, Pablo Neira Ayuso
- [PATCH nf-next 5/5] netfilter: nf_tables: set->ops->insert returns opaque set element in case of EEXIST, Pablo Neira Ayuso
- [PATCH nf-next 4/5] netfilter: nf_tables: shrink memory consumption of set elements, Pablo Neira Ayuso
- [PATCH nf-next 1/5] netfilter: nft_set_pipapo: no need to call pipapo_deactivate() from flush, Pablo Neira Ayuso
- [PATCH nf-next 2/5] netfilter: nf_tables: set backend .flush always succeeds, Pablo Neira Ayuso
- [PATCH nf-next 3/5] netfilter: nf_tables: expose opaque set element as struct nft_elem_priv, Pablo Neira Ayuso
- Re: [PATCH nf-next 0/5] nf_tables set updates, Pablo Neira Ayuso
[PATCH libnetfilter_queue 0/1] libnfnetlink dependency elimination, Duncan Roe
- [PATCH libnetfilter_queue 1/1] Retire 2 libnfnetlink-specific functions, Duncan Roe
  - Re: [PATCH libnetfilter_queue 1/1] Retire 2 libnfnetlink-specific functions, Pablo Neira Ayuso
    - Re: [PATCH libnetfilter_queue 1/1] Retire 2 libnfnetlink-specific functions, Duncan Roe
- <Possible follow-ups>
- [PATCH libnetfilter_queue 0/1] libnfnetlink dependency elimination, Duncan Roe
  - [PATCH libnetfilter_queue 1/1] src: Add nfq_nlmsg_put2() - header flags include NLM_F_ACK, Duncan Roe
    - Re: [PATCH libnetfilter_queue 1/1] src: Add nfq_nlmsg_put2() - header flags include NLM_F_ACK, Pablo Neira Ayuso
      - [PATCH libnetfilter_queue v2 1/1] src: Add nfq_nlmsg_put2() - user specifies header flags, Duncan Roe
        
        Re: [PATCH libnetfilter_queue v2 1/1] src: Add nfq_nlmsg_put2() - user specifies header flags, Pablo Neira Ayuso
        
        Re: [PATCH libnetfilter_queue v2 1/1] src: Add nfq_nlmsg_put2() - user specifies header flags, Duncan Roe
        
        Re: [PATCH libnetfilter_queue v2 1/1] src: Add nfq_nlmsg_put2() - user specifies header flags, Pablo Neira Ayuso
        
        [PATCH libnetfilter_queue v3 1/1] src: Add nfq_nlmsg_put2() - user specifies header flags, Duncan Roe
        
        Re: [PATCH libnetfilter_queue v3 1/1] src: Add nfq_nlmsg_put2() - user specifies header flags, Pablo Neira Ayuso
        
        Re: [PATCH libnetfilter_queue v3 1/1] src: Add nfq_nlmsg_put2() - user specifies header flags, Duncan Roe
        
        Re: [PATCH libnetfilter_queue v3 1/1] src: Add nfq_nlmsg_put2() - user specifies header flags, Duncan Roe
        
        Re: [PATCH libnetfilter_queue v3 1/1] src: Add nfq_nlmsg_put2() - user specifies header flags, Pablo Neira Ayuso
        
        Re: [PATCH libnetfilter_queue v3 1/1] src: Add nfq_nlmsg_put2() - user specifies header flags, Duncan Roe
        
        Re: [PATCH libnetfilter_queue v4 1/1] src: Add nfq_nlmsg_put2() - user specifies header flags, Duncan Roe
        
        Re: [PATCH libnetfilter_queue v4 1/1] src: Add nfq_nlmsg_put2() - user specifies header flags, Pablo Neira Ayuso
- [PATCH libnetfilter_queue 0/1] libnfnetlink dependency elimination, Duncan Roe
  - [PATCH libnetfilter_queue 1/1] Remove libnfnetlink from the build, Duncan Roe
- [PATCH libnetfilter_queue 0/1] libnfnetlink dependency elimination, Duncan Roe
  - [PATCH libnetfilter_queue 1/1] Convert nfq_open(), nfq_bind_pf() & nfq_unbind_pf() to use libmnl, Duncan Roe
- [PATCH libnetfilter_queue 0/1] libnfnetlink dependency elimination, Duncan Roe
  - [PATCH libnetfilter_queue 1/1] Convert nfq_create_queue(), nfq_bind_pf() & nfq_unbind_pf() to use libmnl, Duncan Roe
- [PATCH libnetfilter_queue 0/1] libnfnetlink dependency elimination, Duncan Roe
[PATCH nft 1/3] tests/shell: add "bogons/nft-f/zero_length_devicename2_assert", Thomas Haller
- [PATCH nft 2/3] tests/shell: cover long interface name in "0042chain_variable_0" test, Thomas Haller
- [PATCH nft 3/3] parser_bison: fix length check for ifname in ifname_expr_alloc(), Thomas Haller
  - Re: [PATCH nft 3/3] parser_bison: fix length check for ifname in ifname_expr_alloc(), Pablo Neira Ayuso
    - Re: [PATCH nft 3/3] parser_bison: fix length check for ifname in ifname_expr_alloc(), Pablo Neira Ayuso
      - Re: [PATCH nft 3/3] parser_bison: fix length check for ifname in ifname_expr_alloc(), Thomas Haller
- Re: [PATCH nft 1/3] tests/shell: add "bogons/nft-f/zero_length_devicename2_assert", Pablo Neira Ayuso
  - Re: [PATCH nft 1/3] tests/shell: add "bogons/nft-f/zero_length_devicename2_assert", Thomas Haller
    - Re: [PATCH nft 1/3] tests/shell: add "bogons/nft-f/zero_length_devicename2_assert", Pablo Neira Ayuso
      - Re: [PATCH nft 1/3] tests/shell: add "bogons/nft-f/zero_length_devicename2_assert", Florian Westphal
        
        Re: [PATCH nft 1/3] tests/shell: add "bogons/nft-f/zero_length_devicename2_assert", Pablo Neira Ayuso
        
        Re: [PATCH nft 1/3] tests/shell: add "bogons/nft-f/zero_length_devicename2_assert", Phil Sutter
[PATCH nft 1/2] tests/shell: inline input data in "single_anon_set" test, Thomas Haller
- [PATCH nft 2/2] tools: reject unexpected files in "tests/shell/testcases/" with "check-tree.sh", Thomas Haller
- Re: [PATCH nft 1/2] tests/shell: inline input data in "single_anon_set" test, Pablo Neira Ayuso
[PATCH nft 1/1] tests/shell: test for maximum length of "comment" in "comments_objects_0", Thomas Haller
[PATCH nft] tests/shell: add missing "elem_opts_compat_0.nodump" file, Thomas Haller
- Re: [PATCH nft] tests/shell: add missing "elem_opts_compat_0.nodump" file, Pablo Neira Ayuso
[PATCH netfilter] Fix hw flow offload from nftables, Donald Hunter
- Re: [PATCH netfilter] Fix hw flow offload from nftables, Pablo Neira Ayuso
Re: KASAN: vmalloc-out-of-bounds in ipt_do_table, Pablo Neira Ayuso
- Re: KASAN: vmalloc-out-of-bounds in ipt_do_table, Kaustubh Pandey
[PATCH libnetfilter_queue] include: all: remove trailing spaces, Duncan Roe
Netfilter queue is unable to mangle fragmented UDP6: bug?, Duncan Roe
- Re: Netfilter queue is unable to mangle fragmented UDP6: bug?, Florian Westphal
  - Re: Netfilter queue is unable to mangle fragmented UDP6: bug?, Duncan Roe
    - Re: Netfilter queue is unable to mangle fragmented UDP6: bug?, Florian Westphal
[PATCH libnetfilter_queue v2 0/1] New example program nfq6, Duncan Roe
- [PATCH libnetfilter_queue v2 1/1] examples: add an example which uses more functions, Duncan Roe
[PATCH] treewide: Add SPDX identifier to IETF ASN.1 modules, Lukas Wunner
- Re: [PATCH] treewide: Add SPDX identifier to IETF ASN.1 modules, Richard Fontana
  - Re: [PATCH] treewide: Add SPDX identifier to IETF ASN.1 modules, Lukas Wunner
    - Re: [PATCH] treewide: Add SPDX identifier to IETF ASN.1 modules, J Lovejoy
- Re: [PATCH] treewide: Add SPDX identifier to IETF ASN.1 modules, Herbert Xu
[nf-next PATCH 0/6] Refactor nft_obj_filter into nft_obj_dump_ctx, Phil Sutter
- [nf-next PATCH 6/6] netfilter: nf_tables: Carry reset boolean in nft_obj_dump_ctx, Phil Sutter
- [nf-next PATCH 5/6] netfilter: nf_tables: nft_obj_filter fits into cb->ctx, Phil Sutter
- [nf-next PATCH 4/6] netfilter: nf_tables: Carry s_idx in nft_obj_dump_ctx, Phil Sutter
- [nf-next PATCH 3/6] netfilter: nf_tables: A better name for nft_obj_filter, Phil Sutter
- [nf-next PATCH 2/6] netfilter: nf_tables: Unconditionally allocate nft_obj_filter, Phil Sutter
- [nf-next PATCH 1/6] netfilter: nf_tables: Drop pointless memset in nf_tables_dump_obj, Phil Sutter
  - Re: [nf-next PATCH 1/6] netfilter: nf_tables: Drop pointless memset in nf_tables_dump_obj, Pablo Neira Ayuso
[PATCH nf-next] netfilter: conntrack: switch connlabels to atomic_t, Florian Westphal
- Re: [PATCH nf-next] netfilter: conntrack: switch connlabels to atomic_t, Pablo Neira Ayuso
[PATCH nf-next] br_netfilter: use single forward hook for ip and arp, Florian Westphal
- Re: [PATCH nf-next] br_netfilter: use single forward hook for ip and arp, Pablo Neira Ayuso
[PATCH RFC] netfilter: nf_tables: add flowtable map for xdp offload, Florian Westphal
- Re: [PATCH RFC] netfilter: nf_tables: add flowtable map for xdp offload, Lorenzo Bianconi
  - Re: [PATCH RFC] netfilter: nf_tables: add flowtable map for xdp offload, Florian Westphal
- Re: [PATCH RFC] netfilter: nf_tables: add flowtable map for xdp offload, Florian Westphal
  - Re: [PATCH RFC] netfilter: nf_tables: add flowtable map for xdp offload, Florian Westphal
- Re: [PATCH RFC] netfilter: nf_tables: add flowtable map for xdp offload, Toke Høiland-Jørgensen
  - Re: [PATCH RFC] netfilter: nf_tables: add flowtable map for xdp offload, Florian Westphal
    - Re: [PATCH RFC] netfilter: nf_tables: add flowtable map for xdp offload, Toke Høiland-Jørgensen
      - Re: [PATCH RFC] netfilter: nf_tables: add flowtable map for xdp offload, Florian Westphal
  - Re: [PATCH RFC] netfilter: nf_tables: add flowtable map for xdp offload, Florian Westphal
    - Re: [PATCH RFC] netfilter: nf_tables: add flowtable map for xdp offload, Toke Høiland-Jørgensen
[PATCH 0/1] ipset patch to fix race condition between swap/destroy and add/del/test, Jozsef Kadlecsik
- [PATCH 1/1] netfilter: ipset: fix race condition between swap/destroy and kernel side add/del/test, Jozsef Kadlecsik
  - Re: [PATCH 1/1] netfilter: ipset: fix race condition between swap/destroy and kernel side add/del/test, Linkui Xiao
    - Re: [PATCH 1/1] netfilter: ipset: fix race condition between swap/destroy and kernel side add/del/test, Jozsef Kadlecsik
      - Re: [PATCH 1/1] netfilter: ipset: fix race condition between swap/destroy and kernel side add/del/test, Linkui Xiao
[PATCH v5 05/12] x86/bugs: Rename RETPOLINE to MITIGATION_RETPOLINE, Breno Leitao
[nft PATCH v2] parser_bison: Fix for broken compatibility with older dumps, Phil Sutter
- Re: [nft PATCH v2] parser_bison: Fix for broken compatibility with older dumps, Phil Sutter
[nft PATCH] parser_bison: Fix for broken compatibility with older dumps, Phil Sutter
[PATCH nf-next,RFC 0/8] nf_tables set updates, Pablo Neira Ayuso
- [PATCH nf-next,RFC 1/8] netfilter: nft_set_pipapo: no need to call pipapo_deactivate() from flush, Pablo Neira Ayuso
- [PATCH nf-next,RFC 2/8] netfilter: nf_tables: set backend .flush always succeeds, Pablo Neira Ayuso
- [PATCH nf-next,RFC 7/8] netfilter: nf_tables: add timeout extension to elements to prepare for updates, Pablo Neira Ayuso
- [PATCH nf-next,RFC 6/8] netfilter: nf_tables: use timestamp to check for set element timeout, Pablo Neira Ayuso
  - Re: [PATCH nf-next,RFC 6/8] netfilter: nf_tables: use timestamp to check for set element timeout, Florian Westphal
- [PATCH nf-next,RFC 5/8] netfilter: nf_tables: set->ops->insert returns opaque set element in case of EEXIST, Pablo Neira Ayuso
- [PATCH nf-next,RFC 8/8] netfilter: nf_tables: set element timeout update support, Pablo Neira Ayuso
- [PATCH nf-next,RFC 3/8] netfilter: nf_tables: expose opaque set element as struct nft_elem_priv, Pablo Neira Ayuso
  - Re: [PATCH nf-next,RFC 3/8] netfilter: nf_tables: expose opaque set element as struct nft_elem_priv, Florian Westphal
- [PATCH nf-next,RFC 4/8] netfilter: nf_tables: shrink memory consumption of set elements, Pablo Neira Ayuso
[nf-next PATCH v4 0/3] Introduce locking for rule reset requests, Phil Sutter
- [nf-next PATCH v4 1/3] netfilter: nf_tables: Open-code audit log call in nf_tables_getrule(), Phil Sutter
  - Re: [nf-next PATCH v4 1/3] netfilter: nf_tables: Open-code audit log call in nf_tables_getrule(), Pablo Neira Ayuso
- [nf-next PATCH v4 3/3] netfilter: nf_tables: Add locking for NFT_MSG_GETRULE_RESET requests, Phil Sutter
- [nf-next PATCH v4 2/3] netfilter: nf_tables: Introduce nf_tables_getrule_single(), Phil Sutter
[PATCH nft v2 0/7] no recursive make, Thomas Haller
- [PATCH nft v2 1/7] gitignore: ignore ".dirstamp" files, Thomas Haller
- [PATCH nft v2 2/7] build: no recursive-make for "include/**/Makefile.am", Thomas Haller
- [PATCH nft v2 4/7] build: no recursive make for "files/**/Makefile.am", Thomas Haller
  - Re: [PATCH nft v2 4/7] build: no recursive make for "files/**/Makefile.am", Pablo Neira Ayuso
    - Re: [PATCH nft v2 4/7] build: no recursive make for "files/**/Makefile.am", Pablo Neira Ayuso
      - Re: [PATCH nft v2 4/7] build: no recursive make for "files/**/Makefile.am", Thomas Haller
        
        Re: [PATCH nft v2 4/7] build: no recursive make for "files/**/Makefile.am", Pablo Neira Ayuso
        
        Re: [PATCH nft v2 4/7] build: no recursive make for "files/**/Makefile.am", Thomas Haller
        
        Re: [PATCH nft v2 4/7] build: no recursive make for "files/**/Makefile.am", Sam James
        
        Re: [PATCH nft v2 4/7] build: no recursive make for "files/**/Makefile.am", Pablo Neira Ayuso
        
        Re: [PATCH nft v2 4/7] build: no recursive make for "files/**/Makefile.am", Pablo Neira Ayuso
- [PATCH nft v2 3/7] build: no recursive make for "py/Makefile.am", Thomas Haller
- [PATCH nft v2 5/7] build: no recursive make for "src/Makefile.am", Thomas Haller
- [PATCH nft v2 7/7] build: no recursive make for "doc/Makefile.am", Thomas Haller
- [PATCH nft v2 6/7] build: no recursive make for "examples/Makefile.am", Thomas Haller
- Re: [PATCH nft v2 0/7] no recursive make, Florian Westphal
[ANNOUNCE] nftables 1.0.9 release, Pablo Neira Ayuso
[nf-next PATCH v3 0/3] Introduce locking for rule reset requests, Phil Sutter
- [nf-next PATCH v3 2/3] netfilter: nf_tables: Introduce nf_tables_getrule_single(), Phil Sutter
- [nf-next PATCH v3 3/3] netfilter: nf_tables: Add locking for NFT_MSG_GETRULE_RESET requests, Phil Sutter
  - Re: [nf-next PATCH v3 3/3] netfilter: nf_tables: Add locking for NFT_MSG_GETRULE_RESET requests, Pablo Neira Ayuso
    - Re: [nf-next PATCH v3 3/3] netfilter: nf_tables: Add locking for NFT_MSG_GETRULE_RESET requests, Florian Westphal
      - Re: [nf-next PATCH v3 3/3] netfilter: nf_tables: Add locking for NFT_MSG_GETRULE_RESET requests, Pablo Neira Ayuso
    - Re: [nf-next PATCH v3 3/3] netfilter: nf_tables: Add locking for NFT_MSG_GETRULE_RESET requests, Phil Sutter
      - Re: [nf-next PATCH v3 3/3] netfilter: nf_tables: Add locking for NFT_MSG_GETRULE_RESET requests, Pablo Neira Ayuso
- [nf-next PATCH v3 1/3] netfilter: nf_tables: Open-code audit log call in nf_tables_getrule(), Phil Sutter
  - Re: [nf-next PATCH v3 1/3] netfilter: nf_tables: Open-code audit log call in nf_tables_getrule(), Florian Westphal
    - Re: [nf-next PATCH v3 1/3] netfilter: nf_tables: Open-code audit log call in nf_tables_getrule(), Phil Sutter
[PATCH nf-next,RFC 2/2] netfilter: nf_tables: set element timeout update support, Pablo Neira Ayuso
[PATCH nf-next,RFC 1/2] netfilter: nf_tables: add timeout extension to elements to prepare for updates, Pablo Neira Ayuso
[PATCH net 0/4] netfilter: updates for net, Florian Westphal
- [PATCH net 1/4] netfilter: nf_tables: audit log object reset once per table, Florian Westphal
  - Re: [PATCH net 1/4] netfilter: nf_tables: audit log object reset once per table, patchwork-bot+netdevbpf
- [PATCH net 3/4] netfilter: nft_set_rbtree: .deactivate fails if element has expired, Florian Westphal
- [PATCH net 4/4] netfilter: nf_tables: revert do not remove elements if set backend implements .abort, Florian Westphal
- [PATCH net 2/4] selftests: netfilter: Run nft_audit.sh in its own netns, Florian Westphal
[PATCH nf] Revert "netfilter: nf_tables: do not remove elements if set backend implements .abort", Pablo Neira Ayuso
Re: [nftables/nft] nft equivalent of "ipset test", imnozi
- Re: [nftables/nft] nft equivalent of "ipset test", Pablo Neira Ayuso
  - Re: [nftables/nft] nft equivalent of "ipset test", U.Mutlu
    - Re: [nftables/nft] nft equivalent of "ipset test", Pablo Neira Ayuso
      - Re: [nftables/nft] nft equivalent of "ipset test", U.Mutlu
        
        Re: [nftables/nft] nft equivalent of "ipset test", Pablo Neira Ayuso
        
        Re: [nftables/nft] nft equivalent of "ipset test", U.Mutlu
        
        Re: [nftables/nft] nft equivalent of "ipset test", Phil Sutter
    - Re: [nftables/nft] nft equivalent of "ipset test", Kerin Millar
[PATCH nft 1/1] tests/shell: add NFT_TEST_FAIL_ON_SKIP_EXCEPT for allow-list of skipped tests (XFAIL), Thomas Haller
- Re: [PATCH nft 1/1] tests/shell: add NFT_TEST_FAIL_ON_SKIP_EXCEPT for allow-list of skipped tests (XFAIL), Pablo Neira Ayuso
  - Re: [PATCH nft 1/1] tests/shell: add NFT_TEST_FAIL_ON_SKIP_EXCEPT for allow-list of skipped tests (XFAIL), Thomas Haller
    - Re: [PATCH nft 1/1] tests/shell: add NFT_TEST_FAIL_ON_SKIP_EXCEPT for allow-list of skipped tests (XFAIL), Florian Westphal
[syzbot] [netfilter?] WARNING in __nf_unregister_net_hook (6), syzbot
[PATCH nft] evaluate: validate maximum log statement prefix length, Pablo Neira Ayuso
[PATCH] netfilter: ipset: fix race condition in ipset swap, destroy and test/add/del, xiaolinkui
- Re: [PATCH] netfilter: ipset: fix race condition in ipset swap, destroy and test/add/del, Pablo Neira Ayuso
  - Re: [PATCH] netfilter: ipset: fix race condition in ipset swap, destroy and test/add/del, Jozsef Kadlecsik
[PATCH nf] netfilter: nft_set_rbtree: .deactivate fails if element has expired, Pablo Neira Ayuso
[net-next PATCH v2] net: skb_find_text: Ignore patterns extending past 'to', Phil Sutter
- Re: [net-next PATCH v2] net: skb_find_text: Ignore patterns extending past 'to', Florian Westphal
  - Re: [net-next PATCH v2] net: skb_find_text: Ignore patterns extending past 'to', Pablo Neira Ayuso
- Re: [net-next PATCH v2] net: skb_find_text: Ignore patterns extending past 'to', patchwork-bot+netdevbpf
[PATCH nft v2 0/3] add "eval-exit-code" and skip tests based on kernel version, Thomas Haller
- [PATCH nft v2 1/3] tests/shell: add "tests/shell/helpers/eval-exit-code", Thomas Haller
- [PATCH nft v2 2/3] tests/shell: skip "table_onoff" test on older kernels, Thomas Haller
  - Re: [PATCH nft v2 2/3] tests/shell: skip "table_onoff" test on older kernels, Pablo Neira Ayuso
    - Re: [PATCH nft v2 2/3] tests/shell: skip "table_onoff" test on older kernels, Thomas Haller
      - Re: [PATCH nft v2 2/3] tests/shell: skip "table_onoff" test on older kernels, Pablo Neira Ayuso
        
        Re: [PATCH nft v2 2/3] tests/shell: skip "table_onoff" test on older kernels, Thomas Haller
        
        Re: [PATCH nft v2 2/3] tests/shell: skip "table_onoff" test on older kernels, Pablo Neira Ayuso
- [PATCH nft v2 3/3] tests/shell: skip "vlan_8021ad_tag" test on older kernels, Thomas Haller
- Re: [PATCH nft v2 0/3] add "eval-exit-code" and skip tests based on kernel version, Florian Westphal
- Re: [PATCH nft v2 0/3] add "eval-exit-code" and skip tests based on kernel version, Florian Westphal
0x17: Schedule is now up, Jamal Hadi Salim
[PATCH 1/2] netfilter: ipset: rename ref_netlink to ref_swapping, xiaolinkui
- [PATCH 2/2] netfilter: ipset: fix race condition in ipset swap, destroy and test, xiaolinkui
  - Re: [PATCH 2/2] netfilter: ipset: fix race condition in ipset swap, destroy and test, Jozsef Kadlecsik
    - Re: [PATCH 2/2] netfilter: ipset: fix race condition in ipset swap, destroy and test, Linkui Xiao
      - Re: [PATCH 2/2] netfilter: ipset: fix race condition in ipset swap, destroy and test, Jozsef Kadlecsik
        
        Re: [PATCH 2/2] netfilter: ipset: fix race condition in ipset swap, destroy and test, Linkui Xiao
- Re: [PATCH 1/2] netfilter: ipset: rename ref_netlink to ref_swapping, Jozsef Kadlecsik
[PATCH nft 1/2] tests/shell: use bash instead of /bin/sh for tests, Thomas Haller
- [PATCH nft 2/2] tests/shell: honor NFT_TEST_VERBOSE_TEST variable to debug tests via `bash -x`, Thomas Haller
  - [PATCH nft v2 2/2] tests/shell: honor NFT_TEST_VERBOSE_TEST variable to debug tests via `bash -x`, Thomas Haller
[PATCH nft 1/3] tests/shell: skip "table_onoff" test if kernel patch is missing, Thomas Haller
- [PATCH nft 3/3] tests/shell: add missing "vlan_8021ad_tag.nodump" file, Thomas Haller
- [PATCH nft 2/3] tests/shell: skip "vlan_8021ad_tag" test instead of failing, Thomas Haller
- Re: [PATCH nft 1/3] tests/shell: skip "table_onoff" test if kernel patch is missing, Florian Westphal
  - Re: [PATCH nft 1/3] tests/shell: skip "table_onoff" test if kernel patch is missing, Thomas Haller
    - Re: [PATCH nft 1/3] tests/shell: skip "table_onoff" test if kernel patch is missing, Thomas Haller
    - Re: [PATCH nft 1/3] tests/shell: skip "table_onoff" test if kernel patch is missing, Florian Westphal
      - Re: [PATCH nft 1/3] tests/shell: skip "table_onoff" test if kernel patch is missing, Thomas Haller
[PATCH libnetfilter_queue 0/1] New example program nfq6, Duncan Roe
- [PATCH libnetfilter_queue] examples: add an example which uses more functions, Duncan Roe
[PATCH v13 00/12] Network support for Landlock, Konstantin Meskhidze
- [PATCH v13 01/12] landlock: Make ruleset's access masks more generic, Konstantin Meskhidze
  - Re: [PATCH v13 01/12] landlock: Make ruleset's access masks more generic, Mickaël Salaün
    - Re: [PATCH v13 01/12] landlock: Make ruleset's access masks more generic, Konstantin Meskhidze (A)
- [PATCH v13 03/12] landlock: Refactor landlock_find_rule/insert_rule, Konstantin Meskhidze
- [PATCH v13 02/12] landlock: Allow FS topology changes for domains without such rule type, Konstantin Meskhidze
- [PATCH v13 04/12] landlock: Refactor merge/inherit_ruleset functions, Konstantin Meskhidze
- [PATCH v13 05/12] landlock: Move and rename layer helpers, Konstantin Meskhidze
- [PATCH v13 06/12] landlock: Refactor layer helpers, Konstantin Meskhidze
- [PATCH v13 09/12] selftests/landlock: Share enforce_ruleset(), Konstantin Meskhidze
- [PATCH v13 08/12] landlock: Add network rules and TCP hooks support, Konstantin Meskhidze
  - Re: [PATCH v13 08/12] landlock: Add network rules and TCP hooks support, Mickaël Salaün
    - Re: [PATCH v13 08/12] landlock: Add network rules and TCP hooks support, Konstantin Meskhidze (A)
      - Re: [PATCH v13 08/12] landlock: Add network rules and TCP hooks support, Mickaël Salaün
        
        Re: [PATCH v13 08/12] landlock: Add network rules and TCP hooks support, Konstantin Meskhidze (A)
        
        Re: [PATCH v13 08/12] landlock: Add network rules and TCP hooks support, Mickaël Salaün
        
        Re: [PATCH v13 08/12] landlock: Add network rules and TCP hooks support, Konstantin Meskhidze (A)
        
        Re: [PATCH v13 08/12] landlock: Add network rules and TCP hooks support, Mickaël Salaün
        
        Re: [PATCH v13 08/12] landlock: Add network rules and TCP hooks support, Konstantin Meskhidze (A)
        
        Re: [PATCH v13 08/12] landlock: Add network rules and TCP hooks support, Konstantin Meskhidze (A)
        
        Re: [PATCH v13 08/12] landlock: Add network rules and TCP hooks support, Mickaël Salaün
        
        Re: [PATCH v13 08/12] landlock: Add network rules and TCP hooks support, Konstantin Meskhidze (A)
        
        Re: [PATCH v13 08/12] landlock: Add network rules and TCP hooks support, Mickaël Salaün
        
        Re: [PATCH v13 08/12] landlock: Add network rules and TCP hooks support, Konstantin Meskhidze (A)
        
        Re: [PATCH v13 08/12] landlock: Add network rules and TCP hooks support, Konstantin Meskhidze (A)
  - Re: [PATCH v13 08/12] landlock: Add network rules and TCP hooks support, Mickaël Salaün
    - Re: [PATCH v13 08/12] landlock: Add network rules and TCP hooks support, Konstantin Meskhidze (A)
- [PATCH v13 07/12] landlock: Refactor landlock_add_rule() syscall, Konstantin Meskhidze
  - Re: [PATCH v13 07/12] landlock: Refactor landlock_add_rule() syscall, Mickaël Salaün
    - Re: [PATCH v13 07/12] landlock: Refactor landlock_add_rule() syscall, Konstantin Meskhidze (A)
  - Re: [PATCH v13 07/12] landlock: Refactor landlock_add_rule() syscall, Mickaël Salaün
    - Re: [PATCH v13 07/12] landlock: Refactor landlock_add_rule() syscall, Konstantin Meskhidze (A)
- [PATCH v13 11/12] samples/landlock: Add network demo, Konstantin Meskhidze
  - Re: [PATCH v13 11/12] samples/landlock: Add network demo, Mickaël Salaün
    - Re: [PATCH v13 11/12] samples/landlock: Add network demo, Konstantin Meskhidze (A)
- [PATCH v13 10/12] selftests/landlock: Add 7 new test variants dedicated to network, Konstantin Meskhidze
  - Re: [PATCH v13 10/12] selftests/landlock: Add 7 new test variants dedicated to network, Mickaël Salaün
    - Re: [PATCH v13 10/12] selftests/landlock: Add 7 new test variants dedicated to network, Konstantin Meskhidze (A)
      - Re: [PATCH v13 10/12] selftests/landlock: Add 7 new test variants dedicated to network, Mickaël Salaün
        
        Re: [PATCH v13 10/12] selftests/landlock: Add 7 new test variants dedicated to network, Konstantin Meskhidze (A)
        
        Re: [PATCH v13 10/12] selftests/landlock: Add 7 new test variants dedicated to network, Mickaël Salaün
        
        Re: [PATCH v13 10/12] selftests/landlock: Add 7 new test variants dedicated to network, Konstantin Meskhidze (A)
- [PATCH v13 12/12] landlock: Document Landlock's network support, Konstantin Meskhidze
  - Re: [PATCH v13 12/12] landlock: Document Landlock's network support, Mickaël Salaün
    - Re: [PATCH v13 12/12] landlock: Document Landlock's network support, Konstantin Meskhidze (A)
[nf PATCH] selftests: netfilter: Run nft_audit.sh in its own netns, Phil Sutter
[net-next PATCH] net: skb_find_text: Ignore patterns extending past 'to', Phil Sutter
- Re: [net-next PATCH] net: skb_find_text: Ignore patterns extending past 'to', Florian Westphal
[PATCH nf-next,RFC] netfilter: nf_tables: shrink memory consumption of set elements, Pablo Neira Ayuso
- Re: [PATCH nf-next,RFC] netfilter: nf_tables: shrink memory consumption of set elements, Florian Westphal
  - Re: [PATCH nf-next,RFC] netfilter: nf_tables: shrink memory consumption of set elements, Pablo Neira Ayuso
[PATCH nf-next 0/3] netfilter: nf_tables: remove rbtree async garbage collection, Florian Westphal
- [PATCH nf-next 1/3] netfilter: nf_tables: de-constify set commit ops function argument, Florian Westphal
- [PATCH nf-next 2/3] netfilter: nft_set_rbtree: rename gc deactivate+erase function, Florian Westphal
  - Re: [PATCH nf-next 2/3] netfilter: nft_set_rbtree: rename gc deactivate+erase function, Pablo Neira Ayuso
- [PATCH nf-next 3/3] netfilter: nft_set_rbtree: prefer sync gc to async worker, Florian Westphal
  - Re: [PATCH nf-next 3/3] netfilter: nft_set_rbtree: prefer sync gc to async worker, Pablo Neira Ayuso
[PATCH nft] evaluate: suggest != in negation error message, Florian Westphal
- Re: [PATCH nft] evaluate: suggest != in negation error message, Pablo Neira Ayuso
[PATCH conntrack,v6] conntrack: ct label update requires proper ruleset, Pablo Neira Ayuso
[PATCH conntrack,v4] conntrack: label update requires a previous label in place, Pablo Neira Ayuso
[iptables PATCH] extensions: string: Clarify description of --to, Phil Sutter
- Re: [iptables PATCH] extensions: string: Clarify description of --to, Phil Sutter
- Re: [iptables PATCH] extensions: string: Clarify description of --to, Pablo Neira Ayuso
  - Re: [iptables PATCH] extensions: string: Clarify description of --to, Pablo Neira Ayuso
    - Re: [iptables PATCH] extensions: string: Clarify description of --to, Phil Sutter
      - Re: [iptables PATCH] extensions: string: Clarify description of --to, Pablo Neira Ayuso
[iptables PATCH] libiptc: Fix for another segfault due to chain index NULL pointer, Phil Sutter
- Re: [iptables PATCH] libiptc: Fix for another segfault due to chain index NULL pointer, Phil Sutter
[nf PATCH v2] netfilter: nf_tables: audit log object reset once per table, Phil Sutter
[PATCH conntrack,v3] conntrack: label update requires a previous label in place, Pablo Neira Ayuso
[PATCH conntrack] conntrack: label update requires a previous label in place, Pablo Neira Ayuso
- <Possible follow-ups>
- [PATCH conntrack] conntrack: label update requires a previous label in place, Pablo Neira Ayuso
  - Re: [PATCH conntrack] conntrack: label update requires a previous label in place, Pablo Neira Ayuso
    - Re: [PATCH conntrack] conntrack: label update requires a previous label in place, Florian Westphal
      - Re: [PATCH conntrack] conntrack: label update requires a previous label in place, Pablo Neira Ayuso
        
        Re: [PATCH conntrack] conntrack: label update requires a previous label in place, Florian Westphal
        
        Re: [PATCH conntrack] conntrack: label update requires a previous label in place, Pablo Neira Ayuso
[PATCH nf-next 0/6] netfilter: more accurate drop statistics, Florian Westphal
- [PATCH nf-next 4/6] netfilter: nf_nat: mask out non-verdict bits when checking return value, Florian Westphal
- [PATCH nf-next 3/6] netfilter: conntrack: convert nf_conntrack_update to netfilter verdicts, Florian Westphal
- [PATCH nf-next 5/6] netfilter: make nftables drops visible in net dropmonitor, Florian Westphal
- [PATCH nf-next 6/6] netfilter: bridge: convert br_netfilter to NF_DROP_REASON, Florian Westphal

[Index of Archives] [LARTC] [Berkeley Packet Filter] [Bugtraq] [Yosemite Discussion]