summaryrefslogtreecommitdiff
path: root/net/netfilter
AgeCommit message (Expand)AuthorFilesLines
2024-10-17netfilter: xtables: avoid NFPROTO_UNSPEC where neededFlorian Westphal16-165/+422
2024-10-17netfilter: ctnetlink: compile ctnetlink_label_size with CONFIG_NF_CONNTRACK_E...Simon Horman1-5/+2
2024-10-17netfilter: nf_tables: Keep deleted flowtable hooks until after RCUPhil Sutter1-1/+1
2024-10-17netfilter: nf_tables: remove annotation to access set timeout while holding lockPablo Neira Ayuso1-2/+2
2024-10-17netfilter: nf_tables: reject expiration higher than timeoutPablo Neira Ayuso1-0/+3
2024-10-17netfilter: nf_tables: reject element expiration with no timeoutPablo Neira Ayuso1-0/+3
2024-10-17netfilter: nf_tables: elements with timeout below CONFIG_HZ never expirePablo Neira Ayuso1-1/+1
2024-10-17netfilter: nf_tables: missing iterator type in lookup walkPablo Neira Ayuso2-1/+3
2024-10-17netfilter: nft_set_pipapo: walk over current view on netlink dumpPablo Neira Ayuso2-2/+8
2024-10-17netfilter: nft_socket: fix sk refcount leaksFlorian Westphal1-3/+4
2024-09-12netfilter: nf_conncount: fix wrong variable typeYunjian Wang1-5/+3
2024-09-04netfilter: flowtable: validate vlan headerPablo Neira Ayuso2-0/+6
2024-09-04netfilter: nft_counter: Synchronize nft_counter_reset() against reader.Sebastian Andrzej Siewior1-0/+5
2024-09-04netfilter: nft_counter: Disable BH in nft_counter_offload_stats().Sebastian Andrzej Siewior1-2/+2
2024-09-04netfilter: nf_queue: drop packets with cloned unconfirmed conntracksFlorian Westphal1-2/+33
2024-09-04netfilter: flowtable: initialise extack before useDonald Hunter1-1/+1
2024-08-19netfilter: nf_tables: prefer nft_chain_validateFlorian Westphal1-138/+13
2024-08-19netfilter: nf_tables: allow clone callbacks to sleepFlorian Westphal7-19/+21
2024-08-19netfilter: nf_tables: bail out if stateful expression provides no .clonePablo Neira Ayuso1-8/+7
2024-08-19netfilter: nf_tables: use timestamp to check for set element timeoutPablo Neira Ayuso4-11/+25
2024-08-19netfilter: nf_tables: set element extended ACK reporting supportPablo Neira Ayuso1-3/+9
2024-08-19netfilter: ipset: Add list flush to cancel_gcAlexander Maltsev1-0/+3
2024-08-19netfilter: nft_set_pipapo_avx2: disable softinterruptsFlorian Westphal1-2/+10
2024-08-19netfilter: nf_set_pipapo: fix initial map fillFlorian Westphal3-6/+29
2024-08-19netfilter: nft_set_pipapo: constify lookup fn args where possibleFlorian Westphal3-35/+48
2024-08-19netfilter: ctnetlink: use helper function to calculate expect IDPablo Neira Ayuso1-1/+2
2024-08-19ipvs: Avoid unnecessary calls to skb_is_gso_sctpIsmael Luceno1-2/+2
2024-07-18netfilter: nf_tables: unconditionally flush pending work before notifierFlorian Westphal1-2/+1
2024-07-05netfilter: nf_tables: fully validate NFT_DATA_VALUE on store to data registersPablo Neira Ayuso2-5/+6
2024-07-05netfilter: ipset: Fix suspicious rcu_dereference_protected()Jozsef Kadlecsik1-5/+6
2024-07-05netfilter: ipset: Fix race between namespace cleanup and gc in the list:set typeJozsef Kadlecsik2-51/+60
2024-06-16netfilter: nft_payload: skbuff vlan metadata mangle supportPablo Neira Ayuso1-7/+65
2024-06-16netfilter: nft_payload: rebuild vlan header on h_proto accessFlorian Westphal1-1/+12
2024-06-16netfilter: nft_payload: rebuild vlan header when neededPablo Neira Ayuso1-1/+2
2024-06-16netfilter: nft_payload: move struct nft_payload_set definition where it belongsPablo Neira Ayuso1-0/+10
2024-06-16netfilter: nft_payload: restore vlan q-in-q match supportPablo Neira Ayuso1-16/+7
2024-06-16netfilter: nfnetlink_queue: acquire rcu_read_lock() in instance_destroy_rcu()Eric Dumazet1-0/+2
2024-05-02netfilter: nf_tables: honor table dormant flag from netdev release event pathPablo Neira Ayuso1-1/+3
2024-05-02ipvs: Fix checksumming on GSO of SCTP packetsIsmael Luceno1-2/+4
2024-04-27netfilter: flowtable: incorrect pppoe tuplePablo Neira Ayuso1-1/+1
2024-04-27netfilter: flowtable: validate pppoe headerPablo Neira Ayuso2-4/+7
2024-04-27netfilter: nf_flow_table: count pending offload workqueue tasksVlad Buslov5-4/+165
2024-04-27netfilter: nft_set_pipapo: do not free live elementFlorian Westphal1-5/+9
2024-04-27netfilter: nf_tables: Fix potential data-race in __nft_obj_type_get()Ziyang Xuan1-2/+6
2024-04-27netfilter: nf_tables: Fix potential data-race in __nft_expr_type_get()Ziyang Xuan1-2/+6
2024-04-13netfilter: nf_tables: discard table flag update with pending basechain deletionPablo Neira Ayuso1-1/+19
2024-04-13netfilter: nf_tables: release mutex after nft_gc_seq_end from abort pathPablo Neira Ayuso1-5/+8
2024-04-13netfilter: nf_tables: release batch on table validation from abort pathPablo Neira Ayuso1-5/+9
2024-04-10netfilter: nf_tables: Fix potential data-race in __nft_flowtable_type_get()Ziyang Xuan1-2/+7
2024-04-10netfilter: nf_tables: flush pending destroy work before exit_net releasePablo Neira Ayuso1-0/+1
generated by cgit v1.2.3 (git 2.25.1) at 2025-12-27 20:45:58 +0000