summaryrefslogtreecommitdiff
path: root/net/netfilter
AgeCommit message (Expand)Author
2022-08-17netfilter: nft_queue: only allow supported familes and hooksFlorian Westphal
2022-08-17netfilter: nf_tables: fix null deref due to zeroed list headFlorian Westphal
2022-08-17netfilter: nf_tables: do not allow RULE_ID to refer to another chainThadeu Lima de Souza Cascardo
2022-08-17netfilter: nf_tables: do not allow CHAIN_ID to refer to another tableThadeu Lima de Souza Cascardo
2022-08-17netfilter: nf_tables: do not allow SET_ID to refer to another tableThadeu Lima de Souza Cascardo
2022-08-03netfilter: nf_queue: do not allow packet truncation below transport header of...Florian Westphal
2022-07-29ip: Fix data-races around sysctl_ip_default_ttl.Kuniyuki Iwashima
2022-07-22netfilter: nf_tables: avoid skb access on nf_stolenFlorian Westphal
2022-07-22netfilter: nf_tables: replace BUG_ON by element length checkPablo Neira Ayuso
2022-07-22netfilter: nf_log: incorrect offset to network headerPablo Neira Ayuso
2022-07-22netfilter: conntrack: fix crash due to confirmed bit load reorderingFlorian Westphal
2022-07-22netfilter: conntrack: remove the percpu dying listFlorian Westphal
2022-07-22netfilter: conntrack: include ecache dying list in dumpsFlorian Westphal
2022-07-22netfilter: ecache: use dedicated list for event redeliveryFlorian Westphal
2022-07-22netfilter: conntrack: split inner loop of list dumping to own functionFlorian Westphal
2022-07-22netfilter: ecache: move to separate structureFlorian Westphal
2022-07-12netfilter: nf_tables: stricter validation of element dataPablo Neira Ayuso
2022-07-12netfilter: nft_set_pipapo: release elements in clone from abort pathPablo Neira Ayuso
2022-07-07netfilter: nft_dynset: restore set element counter when failing to updatePablo Neira Ayuso
2022-06-29netfilter: nf_dup_netdev: add and use recursion counterFlorian Westphal
2022-06-29netfilter: nf_dup_netdev: do not push mac header a second timeFlorian Westphal
2022-06-29netfilter: use get_random_u32 instead of prandomFlorian Westphal
2022-06-14netfilter: nf_tables: bail out early if hardware offload is not supportedPablo Neira Ayuso
2022-06-14netfilter: nf_tables: memleak flow rule from commit pathPablo Neira Ayuso
2022-06-14netfilter: nf_tables: release new hooks on unsupported flowtable flagsPablo Neira Ayuso
2022-06-14netfilter: nf_tables: always initialize flowtable hook list in transactionPablo Neira Ayuso
2022-06-14netfilter: nf_tables: delete flowtable hooks via transaction listPablo Neira Ayuso
2022-06-14netfilter: nf_tables: use kfree_rcu(ptr, rcu) to release hooks in clean_net pathPablo Neira Ayuso
2022-06-14netfilter: nat: really support inet nat without l3 addressFlorian Westphal
2022-06-06netfilter: nf_tables: double hook unregistration in netns pathPablo Neira Ayuso
2022-06-06netfilter: nf_tables: hold mutex on netns pre_exit pathPablo Neira Ayuso
2022-06-06netfilter: nf_tables: sanitize nft_set_desc_concat_parse()Pablo Neira Ayuso
2022-06-06netfilter: nft_limit: Clone packet limits' cost valuePhil Sutter
2022-06-06netfilter: nf_tables: disallow non-stateful expression in sets earlierPablo Neira Ayuso
2022-05-18netfilter: nf_tables: disable expression reduction infraPablo Neira Ayuso
2022-05-18netfilter: flowtable: move dst_check to packet pathRitaro Takenaka
2022-05-18netfilter: flowtable: fix TCP flow teardownPablo Neira Ayuso
2022-05-16netfilter: nft_flow_offload: fix offload with pppoe + vlanFelix Fietkau
2022-05-16netfilter: nft_flow_offload: skip dst neigh lookup for ppp devicesFelix Fietkau
2022-05-16netfilter: flowtable: fix excessive hw offload attempts after failureFelix Fietkau
2022-04-28netfilter: nft_socket: only do sk lookups when indev is availableFlorian Westphal
2022-04-27netfilter: conntrack: fix udp offload timeout sysctlVolodymyr Mytnyk
2022-04-27netfilter: nf_conntrack_tcp: re-init for syn packets onlyFlorian Westphal
2022-04-22netfilter: nft_set_rbtree: overlap detection with element re-addition after d...Pablo Neira Ayuso
2022-04-19ipvs: correctly print the memory size of ip_vs_conn_tabPengcheng Yang
2022-04-12netfilter: nf_tables: nft_parse_register can return a negative valueAntoine Tenart
2022-04-11netfilter: nft_socket: make cgroup match work in input tooFlorian Westphal
2022-04-05netfilter: nf_tables: memcg accounting for dynamically allocated objectsVasily Averin
2022-03-29netfilter: bitwise: fix reduce comparisonsJeremy Sowden
2022-03-28Merge git://git.kernel.org/pub/scm/linux/kernel/git/netfilter/nfDavid S. Miller
generated by cgit v1.2.3 (git 2.25.1) at 2026-01-26 05:32:03 +0000