summaryrefslogtreecommitdiffstats
path: root/net/netfilter
Commit message (Expand)AuthorAgeFilesLines
* netfilter: conntrack: Use consistent ct id hash calculationDirk Morris2019-08-251-8/+8
* netfilter: ctnetlink: don't use conntrack/expect object addresses as idFlorian Westphal2019-08-252-5/+64
* netfilter: nfnetlink: avoid deadlock due to synchronous request_moduleFlorian Westphal2019-08-251-1/+1
* ipvs: do not schedule icmp errors from tunnelsJulian Anastasov2019-05-161-1/+1
* netfilter: compat: initialize all fields in xt_initFrancesco Ruggeri2019-05-161-1/+1
* netfilter: nft_set_rbtree: check for inactive element after flag mismatchPablo Neira Ayuso2019-05-041-4/+3
* netfilter: physdev: relax br_netfilter dependencyFlorian Westphal2019-04-051-2/+7
* netfilter: nf_nat: skip nat clash resolution for same-origin entriesMartynas Pumputis2019-03-131-0/+16
* ipvs: Fix signed integer overflow when setsockopt timeoutZhangXiaoxu2019-03-131-0/+12
* netfilter: nf_tables: fix flush after rule deletion in the same batchPablo Neira Ayuso2019-02-271-0/+3
* netfilter: nf_tables: fix mismatch in big-endian systemLiping Zhang2019-02-203-29/+31
* netfilter: ipset: do not call ipset_nest_end after nla_nest_cancelPan Bian2019-01-131-1/+1
* netfilter: seqadj: re-load tcp header pointer after possible head reallocationFlorian Westphal2019-01-131-3/+4
* ipvs: call ip_vs_dst_notifier earlier than ipv6_dev_notfXin Long2018-12-171-0/+3
* netfilter: xt_IDLETIMER: add sysfs filename checking routineTaehee Yoo2018-11-271-0/+20
* netfilter: ipset: actually allow allowable CIDR 0 in hash:net,port,netEric Westbrook2018-11-271-4/+4
* netfilter: conntrack: fix calculation of next bucket number in early_dropVasily Khoruzhick2018-11-211-5/+8
* netfilter: check for seqadj ext existence before adding it in nf_nat_setup_infoXin Long2018-10-201-1/+1
* netfilter: x_tables: avoid stack-out-of-bounds read in xt_copy_counters_from_...Eric Dumazet2018-09-191-2/+2
* ipvs: fix race between ip_vs_conn_new() and ip_vs_del_dest()Tan Hu2018-09-151-4/+11
* netfilter: conntrack: dccp: treat SYNC/SYNCACK as invalid if no prior stateFlorian Westphal2018-08-241-4/+4
* netfilter: nf_conntrack: Fix possible possible crash on module loading.Andrey Ryabinin2018-08-241-1/+1
* netfilter: nf_log: fix uninit read in nf_log_proc_dostringJann Horn2018-08-241-0/+4
* netfilter: nf_tables: check msg_type before nft_trans_set(trans)Alexey Kodanev2018-08-031-5/+6
* netfilter: nf_queue: augment nfqa_cfg_policyEric Dumazet2018-07-171-0/+3
* netfilter: nf_log: don't hold nf_log_mutex during user accessJann Horn2018-07-111-3/+6
* netfilter: nf_tables: use WARN_ON_ONCE instead of BUG_ON in nft_do_chain()Taehee Yoo2018-07-111-1/+2
* ipvs: fix buffer overflow with sync daemon and serviceJulian Anastasov2018-06-261-6/+15
* netfilter: nf_tables: can't fail after linking rule into active rule listFlorian Westphal2018-05-221-27/+32
* ipvs: fix rtnl_lock lockups caused by start_sync_threadJulian Anastasov2018-05-162-83/+80
* netfilter: conntrack: don't call iter for non-confirmed conntracksFlorian Westphal2018-04-131-10/+29
* netfilter: ctnetlink: fix incorrect nf_ct_put during hash resizeLiping Zhang2018-04-131-1/+6
* netfilter: x_tables: add and use xt_check_proc_nameFlorian Westphal2018-04-083-7/+40
* netfilter: ctnetlink: Make some parameters integer to avoid enum mismatchMatthias Kaehlcke2018-04-081-4/+3
* netfilter: x_tables: unlock on error in xt_find_table_lock()Dan Carpenter2018-03-241-1/+3
* ipvs: explicitly forbid ipv6 service/dest creation if ipv6 mod is disabledPaolo Abeni2018-03-241-5/+17
* netfilter: nft_dynset: continue to next expr if _OP_ADD succeededLiping Zhang2018-03-241-3/+2
* netfilter: nf_ct_helper: permit cthelpers with different names via nfnetlinkLiping Zhang2018-03-241-5/+21
* netfilter: xt_CT: fix refcnt leak on error pathGao Feng2018-03-241-2/+9
* netfilter: x_tables: pack percpu counter allocationsFlorian Westphal2018-03-181-9/+25
* netfilter: x_tables: pass xt_counters struct to counter allocatorFlorian Westphal2018-03-181-0/+30
* netfilter: x_tables: pass xt_counters struct instead of packet counterFlorian Westphal2018-03-181-0/+9
* netfilter: IDLETIMER: be syzkaller friendlyEric Dumazet2018-03-181-3/+6
* netfilter: nat: cope with negative port rangePaolo Abeni2018-03-181-2/+5
* netfilter: x_tables: fix missing timer initialization in xt_LEDPaolo Abeni2018-03-181-6/+6
* netfilter: xt_RATEEST: acquire xt_rateest_mutex for hash insertCong Wang2018-02-251-5/+17
* netfilter: xt_cgroup: initialize info->priv in cgroup_mt_check_v1()Cong Wang2018-02-251-0/+1
* netfilter: x_tables: avoid out-of-bounds reads in xt_request_find_{match|target}Eric Dumazet2018-02-251-0/+6
* netfilter: x_tables: fix int overflow in xt_alloc_table_info()Dmitry Vyukov2018-02-251-3/+1
* netfilter: xt_osf: Add missing permission checksKevin Cernekee2018-01-311-0/+7
generated by cgit v1.2.3 (git 2.25.1) at 2025-02-20 16:28:31 +0000