summaryrefslogtreecommitdiff
path: root/net/netfilter
AgeCommit message (Expand)Author
2024-04-10netfilter: nf_tables: discard table flag update with pending basechain deletionPablo Neira Ayuso
2024-04-10netfilter: nf_tables: Fix potential data-race in __nft_flowtable_type_get()Ziyang Xuan
2024-04-10netfilter: nf_tables: flush pending destroy work before exit_net releasePablo Neira Ayuso
2024-04-10netfilter: nf_tables: reject new basechain after table flag updatePablo Neira Ayuso
2024-04-10netfilter: nf_tables: release mutex after nft_gc_seq_end from abort pathPablo Neira Ayuso
2024-04-10netfilter: nf_tables: release batch on table validation from abort pathPablo Neira Ayuso
2024-04-10netfilter: nf_tables: skip netdev hook unregistration if table is dormantPablo Neira Ayuso
2024-04-10netfilter: nf_tables: reject table flag and netdev basechain updatesPablo Neira Ayuso
2024-04-10netfilter: nf_tables: reject destroy command to remove basechain hooksPablo Neira Ayuso
2024-04-03netfilter: nf_tables: reject constant set with timeoutPablo Neira Ayuso
2024-04-03netfilter: nf_tables: disallow anonymous set with timeout flagPablo Neira Ayuso
2024-04-03netfilter: nf_tables: mark set as dead when unbinding anonymous set with timeoutPablo Neira Ayuso
2024-03-26netfilter: nf_tables: Fix a memory leak in nf_tables_updchainQuan Tian
2024-03-26netfilter: nf_tables: do not compare internal table flags on updatesPablo Neira Ayuso
2024-03-26netfilter: nft_set_pipapo: release elements in clone only from destroy pathPablo Neira Ayuso
2024-03-15netfilter: nf_conntrack_h323: Add protection for bmp length out of rangeLena Wang
2024-03-15netfilter: nft_ct: fix l3num expectations with inet pseudo familyFlorian Westphal
2024-03-06netfilter: bridge: confirm multicast packets before passing them up the stackFlorian Westphal
2024-03-06netfilter: nf_tables: allow NFPROTO_INET in nft_(match/target)_validate()Ignat Korchagin
2024-03-01netfilter: nf_tables: use kzalloc for hook allocationFlorian Westphal
2024-03-01netfilter: nf_tables: register hooks last when adding new chain/flowtablePablo Neira Ayuso
2024-03-01netfilter: nft_flow_offload: release dst in case direct xmit path is usedPablo Neira Ayuso
2024-03-01netfilter: nft_flow_offload: reset dst in route object after setting up flowPablo Neira Ayuso
2024-03-01netfilter: nf_tables: set dormant flag on hook register failureFlorian Westphal
2024-03-01netfilter: conntrack: check SCTP_CID_SHUTDOWN_ACK for vtag setting in sctp_newXin Long
2024-02-23netfilter: ipset: Missing gc cancellations fixedJozsef Kadlecsik
2024-02-23netfilter: ipset: fix performance regression in swap operationJozsef Kadlecsik
2024-02-23work around gcc bugs with 'asm goto' with outputsLinus Torvalds
2024-02-16netfilter: nft_set_rbtree: skip end interval element from gcPablo Neira Ayuso
2024-02-16netfilter: nft_set_pipapo: remove scratch_aligned pointerFlorian Westphal
2024-02-16netfilter: nft_set_pipapo: add helper to release pcpu scratch areaFlorian Westphal
2024-02-16netfilter: nft_set_pipapo: store index in scratch mapsFlorian Westphal
2024-02-16netfilter: nft_ct: reject direction for ct idPablo Neira Ayuso
2024-02-16netfilter: nft_compat: restrict match/target protocol to u16Pablo Neira Ayuso
2024-02-16netfilter: nft_compat: reject unused compat flagPablo Neira Ayuso
2024-02-16netfilter: nft_compat: narrow down revision to unsigned 8-bitsPablo Neira Ayuso
2024-02-05netfilter: nft_ct: sanitize layer 3 and 4 protocol number in custom expectationsPablo Neira Ayuso
2024-02-05netfilter: nf_log: replace BUG_ON by WARN_ON_ONCE when putting loggerPablo Neira Ayuso
2024-02-05netfilter: nf_tables: restrict tunnel object to NFPROTO_NETDEVPablo Neira Ayuso
2024-02-05netfilter: conntrack: correct window scaling with retransmitted SYNRyan Schaefer
2024-01-31netfilter: nf_tables: reject QUEUE/DROP verdict parametersFlorian Westphal
2024-01-31netfilter: nft_chain_filter: handle NETDEV_UNREGISTER for inet/ingress basechainPablo Neira Ayuso
2024-01-31netfilter: nf_tables: validate NFPROTO_* familyPablo Neira Ayuso
2024-01-31netfilter: nf_tables: restrict anonymous set and map names to 16 bytesFlorian Westphal
2024-01-31netfilter: nft_limit: reject configurations that cause integer overflowFlorian Westphal
2024-01-25ipvs: avoid stat macros calls from preemptible contextFedor Pchelkin
2024-01-25netfilter: nf_tables: reject NFT_SET_CONCAT with not field length descriptionPablo Neira Ayuso
2024-01-25netfilter: nf_tables: skip dead set elements in netlink dumpPablo Neira Ayuso
2024-01-25netfilter: nf_tables: do not allow mismatch field size and set key lengthPablo Neira Ayuso
2024-01-25netfilter: propagate net to nf_bridge_get_physindevPavel Tikhomirov
generated by cgit v1.2.3 (git 2.25.1) at 2026-06-04 04:50:14 +0000