summaryrefslogtreecommitdiffstats
path: root/net/netfilter
Commit message (Expand)AuthorAgeFilesLines
* netfilter: nft_queue: only allow supported familes and hooksFlorian Westphal2022-07-261-0/+27
* netfilter: nf_tables: add rescheduling points during loop detection walksFlorian Westphal2022-07-261-0/+6
* netfilter: nf_queue: do not allow packet truncation below transport header of...Florian Westphal2022-07-261-1/+6
* ip: Fix data-races around sysctl_ip_default_ttl.Kuniyuki Iwashima2022-07-151-1/+1
* netfilter: nf_tables: replace BUG_ON by element length checkPablo Neira Ayuso2022-07-091-21/+51
* netfilter: nf_log: incorrect offset to network headerPablo Neira Ayuso2022-07-091-4/+4
* netfilter: conntrack: fix crash due to confirmed bit load reorderingFlorian Westphal2022-07-073-0/+26
* netfilter: nft_set_pipapo: release elements in clone from abort pathPablo Neira Ayuso2022-07-021-15/+33
* netfilter: nf_tables: stricter validation of element dataPablo Neira Ayuso2022-07-021-1/+8
* netfilter: nf_tables: avoid skb access on nf_stolenFlorian Westphal2022-06-272-23/+45
* netfilter: nft_dynset: restore set element counter when failing to updatePablo Neira Ayuso2022-06-271-0/+2
* netfilter: nf_dup_netdev: add and use recursion counterFlorian Westphal2022-06-211-4/+15
* netfilter: nf_dup_netdev: do not push mac header a second timeFlorian Westphal2022-06-211-4/+10
* netfilter: cttimeout: fix slab-out-of-bounds read typo in cttimeout_net_exitFlorian Westphal2022-06-171-1/+1
* netfilter: use get_random_u32 instead of prandomFlorian Westphal2022-06-082-20/+5
* netfilter: nf_tables: bail out early if hardware offload is not supportedPablo Neira Ayuso2022-06-062-2/+23
* netfilter: nf_tables: memleak flow rule from commit pathPablo Neira Ayuso2022-06-061-0/+6
* netfilter: nf_tables: release new hooks on unsupported flowtable flagsPablo Neira Ayuso2022-06-061-4/+8
* netfilter: nf_tables: always initialize flowtable hook list in transactionPablo Neira Ayuso2022-06-021-0/+1
* netfilter: nf_tables: delete flowtable hooks via transaction listPablo Neira Ayuso2022-06-021-25/+6
* netfilter: nf_tables: use kfree_rcu(ptr, rcu) to release hooks in clean_net pathPablo Neira Ayuso2022-06-011-1/+1
* netfilter: nat: really support inet nat without l3 addressFlorian Westphal2022-06-011-1/+2
* netfilter: flowtable: fix nft_flow_route source address for nat casewenxu2022-05-311-2/+2
* netfilter: flowtable: fix missing FLOWI_FLAG_ANYSRC flagwenxu2022-05-311-0/+2
* netfilter: nf_tables: double hook unregistration in netns pathPablo Neira Ayuso2022-05-311-13/+41
* netfilter: nf_tables: hold mutex on netns pre_exit pathPablo Neira Ayuso2022-05-311-0/+4
* netfilter: nf_tables: sanitize nft_set_desc_concat_parse()Pablo Neira Ayuso2022-05-311-4/+13
* netfilter: nf_tables: set element extended ACK reporting supportPablo Neira Ayuso2022-05-271-3/+9
* netfilter: cttimeout: fix slab-out-of-bounds read in cttimeout_net_exitFlorian Westphal2022-05-271-2/+3
* netfilter: nfnetlink: fix warn in nfnetlink_unbindFlorian Westphal2022-05-271-19/+5
* netfilter: nft_limit: Clone packet limits' cost valuePhil Sutter2022-05-261-0/+2
* netfilter: nf_tables: disallow non-stateful expression in sets earlierPablo Neira Ayuso2022-05-261-9/+10
* Merge git://git.kernel.org/pub/scm/linux/kernel/git/netfilter/nf-nextJakub Kicinski2022-05-193-48/+17
|\
| * netfilter: ctnetlink: fix up for "netfilter: conntrack: remove unconfirmed list"Stephen Rothwell2022-05-181-0/+2
| * netfilter: conntrack: remove pr_debug callsites from tcp trackerFlorian Westphal2022-05-161-48/+4
| * netfilter: nf_conncount: reduce unnecessary GCWilliam Tu2022-05-161-0/+11
* | Merge git://git.kernel.org/pub/scm/linux/kernel/git/netdev/netJakub Kicinski2022-05-194-70/+48
|\ \ | |/ |/|
| * netfilter: nf_tables: disable expression reduction infraPablo Neira Ayuso2022-05-181-10/+1
| * netfilter: flowtable: move dst_check to packet pathRitaro Takenaka2022-05-182-22/+20
| * netfilter: flowtable: fix TCP flow teardownPablo Neira Ayuso2022-05-182-27/+9
| * netfilter: nft_flow_offload: fix offload with pppoe + vlanFelix Fietkau2022-05-161-1/+2
| * netfilter: nft_flow_offload: skip dst neigh lookup for ppp devicesFelix Fietkau2022-05-161-9/+13
| * netfilter: flowtable: fix excessive hw offload attempts after failureFelix Fietkau2022-05-161-1/+3
* | Merge git://git.kernel.org/pub/scm/linux/kernel/git/netfilter/nf-nextDavid S. Miller2022-05-1612-300/+411
|\ \
| * | netfilter: flowtable: nft_flow_route use more data for reverse routeSven Auhagen2022-05-131-0/+8
| * | netfilter: conntrack: add nf_conntrack_events autodetect modeFlorian Westphal2022-05-133-8/+24
| * | netfilter: conntrack: un-inline nf_ct_ecache_ext_addFlorian Westphal2022-05-132-3/+33
| * | netfilter: nfnetlink: allow to detect if ctnetlink listeners existFlorian Westphal2022-05-131-3/+37
| * | netfilter: conntrack: add nf_ct_iter_data object for nf_ct_iterate_cleanup*()Pablo Neira Ayuso2022-05-135-41/+47
| * | netfilter: conntrack: avoid unconditional local_bh_disableFlorian Westphal2022-05-131-5/+2
generated by cgit v1.2.3 (git 2.39.1) at 2024-05-21 03:08:19 +0000