summaryrefslogtreecommitdiffstats
path: root/net/netfilter
Commit message (Expand)AuthorAgeFilesLines
* netfilter: flowtable: GC pushes back packets to classic pathPablo Neira Ayuso2024-01-101-7/+7
* net/sched: act_ct: Fix promotion of offloaded unreplied tuplePaul Blakey2024-01-102-5/+12
* netfilter: flowtable: cache info of last offloadVlad Buslov2024-01-102-4/+4
* netfilter: flowtable: allow unidirectional rulesVlad Buslov2024-01-101-4/+8
* netfilter: nft_immediate: drop chain reference counter on errorPablo Neira Ayuso2024-01-101-1/+1
* netfilter: nf_tables: set transport offset from mac header for netdev/egressPablo Neira Ayuso2024-01-101-1/+1
* netfilter: use skb_ip_totlen and iph_totlenXin Long2024-01-103-3/+3
* netfilter: nf_tables: skip set commit for deleted/destroyed setsPablo Neira Ayuso2024-01-051-1/+1
* netfilter: nft_set_pipapo: skip inactive elements during set walkFlorian Westphal2023-12-131-0/+3
* netfilter: xt_owner: Fix for unsafe access of sk->sk_socketPhil Sutter2023-12-131-4/+12
* netfilter: nf_tables: validate family when identifying table via handlePablo Neira Ayuso2023-12-131-2/+3
* netfilter: nf_tables: bail out on mismatching dynset and set expressionsPablo Neira Ayuso2023-12-131-4/+9
* netfilter: nf_tables: fix 'exist' matching on bigendian archesFlorian Westphal2023-12-132-4/+8
* netfilter: nft_exthdr: add boolean DCCP option matchingJeremy Sowden2023-12-131-0/+106
* netfilter: ipset: fix race condition between swap/destroy and kernel side add...Jozsef Kadlecsik2023-12-131-7/+7
* netfilter: nf_tables: split async and sync catchall in two functionsPablo Neira Ayuso2023-11-281-29/+32
* netfilter: nf_tables: remove catchall element in GC sync pathPablo Neira Ayuso2023-11-281-5/+21
* netfilter: nf_tables: fix pointer math issue in nft_byteorder_eval()Dan Carpenter2023-11-282-3/+4
* netfilter: nat: fix ipv6 nat redirect with mapped and scoped addressesFlorian Westphal2023-11-201-1/+26
* netfilter: nft_redir: use `struct nf_nat_range2` throughout and deduplicate e...Jeremy Sowden2023-11-203-94/+71
* netfilter: xt_recent: fix (increase) ipv6 literal buffer lengthMaciej Żenczykowski2023-11-201-1/+1
* netfilter: nf_tables: Drop pointless memset when dumping rulesPhil Sutter2023-11-201-4/+0
* netfilter: nf_tables: audit log object reset once per tablePhil Sutter2023-11-081-22/+28
* netfilter: nfnetlink_log: silence bogus compiler warningFlorian Westphal2023-11-081-1/+1
* netfilter: nf_tables: revert do not remove elements if set backend implements...Pablo Neira Ayuso2023-10-251-4/+1
* netfilter: nf_tables: do not remove elements if set backend implements .abortPablo Neira Ayuso2023-10-251-1/+4
* netfilter: nft_set_rbtree: .deactivate fails if element has expiredPablo Neira Ayuso2023-10-251-0/+2
* netfilter: nft_payload: fix wrong mac header matchingFlorian Westphal2023-10-251-1/+1
* net: prevent address rewrite in kernel_bind()Jordan Rife2023-10-191-2/+2
* netfilter: nf_tables: nft_set_rbtree: fix spurious insertion failureFlorian Westphal2023-10-101-17/+29
* netfilter: nf_tables: Deduplicate nft_register_obj audit logsPhil Sutter2023-10-101-16/+28
* netfilter: handle the connecting collision properly in nf_conntrack_proto_sctpXin Long2023-10-101-10/+33
* net: replace calls to sock->ops->connect() with kernel_connect()Jordan Rife2023-10-101-2/+2
* netfilter: nf_tables: fix kdoc warnings after gc reworkFlorian Westphal2023-10-061-1/+1
* netfilter: nf_tables: disallow rule removal from chain bindingPablo Neira Ayuso2023-10-061-5/+13
* netfilter: ipset: Fix race between IPSET_CMD_CREATE and IPSET_CMD_SWAPJozsef Kadlecsik2023-10-061-2/+10
* netfilter: nf_tables: disable toggling dormant table state more than onceFlorian Westphal2023-10-061-0/+4
* netfilter, bpf: Adjust timeouts of non-confirmed CTs in bpf_ct_insert_entry()Ilya Leoshkevich2023-10-061-0/+2
* netfilter: conntrack: fix extension size tableFlorian Westphal2023-10-061-2/+2
* netfilter: nf_tables: disallow element removal on anonymous setsPablo Neira Ayuso2023-10-061-4/+5
* netfilter: nf_tables: fix memleak when more than 255 elements expiredFlorian Westphal2023-10-061-2/+8
* netfilter: nft_set_hash: try later when GC hits EAGAIN on iterationPablo Neira Ayuso2023-10-061-6/+3
* netfilter: nft_set_pipapo: stop GC iteration if GC transaction allocation failsPablo Neira Ayuso2023-10-061-1/+1
* netfilter: nft_set_pipapo: call nft_trans_gc_queue_sync() in catchall GCPablo Neira Ayuso2023-10-064-6/+22
* netfilter: nft_set_rbtree: use read spinlock to avoid datapath contentionPablo Neira Ayuso2023-10-061-4/+2
* netfilter: nft_set_rbtree: skip sync GC for new elements in this transactionPablo Neira Ayuso2023-10-061-2/+6
* netfilter: nf_tables: defer gc run if previous batch is still pendingFlorian Westphal2023-10-062-0/+6
* netfilter: nf_tables: use correct lock to protect gc_listPablo Neira Ayuso2023-10-061-2/+2
* netfilter: nf_tables: GC transaction race with abort pathPablo Neira Ayuso2023-10-061-1/+6
* netfilter: nf_tables: GC transaction race with netns dismantlePablo Neira Ayuso2023-10-061-1/+6
generated by cgit v1.2.3 (git 2.25.1) at 2024-11-25 11:19:37 +0000