summaryrefslogtreecommitdiffstats
path: root/net/netfilter
Commit message (Expand)AuthorAgeFilesLines
* netfilter: nft_set_pipapo: skip inactive elements during set walkFlorian Westphal2023-12-131-0/+3
* netfilter: xt_owner: Fix for unsafe access of sk->sk_socketPhil Sutter2023-12-131-4/+12
* netfilter: nf_tables: validate family when identifying table via handlePablo Neira Ayuso2023-12-131-2/+3
* netfilter: nf_tables: bail out on mismatching dynset and set expressionsPablo Neira Ayuso2023-12-131-4/+9
* netfilter: nf_tables: fix 'exist' matching on bigendian archesFlorian Westphal2023-12-132-4/+8
* netfilter: bpf: fix bad registration on nf_defragD. Wythe2023-12-131-5/+5
* netfilter: ipset: fix race condition between swap/destroy and kernel side add...Jozsef Kadlecsik2023-12-131-7/+7
* netfilter: nf_tables: split async and sync catchall in two functionsPablo Neira Ayuso2023-11-281-29/+32
* netfilter: nf_tables: remove catchall element in GC sync pathPablo Neira Ayuso2023-11-281-5/+21
* netfilter: nf_tables: bogus ENOENT when destroying element which does not existPablo Neira Ayuso2023-11-281-2/+3
* netfilter: nf_tables: fix pointer math issue in nft_byteorder_eval()Dan Carpenter2023-11-282-3/+4
* netfilter: nat: fix ipv6 nat redirect with mapped and scoped addressesFlorian Westphal2023-11-201-1/+26
* netfilter: xt_recent: fix (increase) ipv6 literal buffer lengthMaciej Żenczykowski2023-11-201-1/+1
* netfilter: nf_tables: Drop pointless memset when dumping rulesPhil Sutter2023-11-201-4/+0
* netfilter: flowtable: GC pushes back packets to classic pathPablo Neira Ayuso2023-10-251-7/+7
* netfilter: nf_tables: revert do not remove elements if set backend implements...Pablo Neira Ayuso2023-10-181-4/+1
* netfilter: nft_set_rbtree: .deactivate fails if element has expiredPablo Neira Ayuso2023-10-181-0/+2
* netfilter: nf_tables: audit log object reset once per tablePhil Sutter2023-10-181-22/+28
* netfilter: nft_payload: fix wrong mac header matchingFlorian Westphal2023-10-121-1/+1
* nf_tables: fix NULL pointer dereference in nft_expr_inner_parse()Xingyuan Mo2023-10-121-1/+1
* nf_tables: fix NULL pointer dereference in nft_inner_init()Xingyuan Mo2023-10-121-0/+1
* netfilter: nf_tables: do not refresh timeout when resetting elementPablo Neira Ayuso2023-10-121-13/+5
* netfilter: nf_tables: Annotate struct nft_pipapo_match with __counted_byKees Cook2023-10-121-1/+1
* netfilter: nfnetlink_log: silence bogus compiler warningFlorian Westphal2023-10-121-1/+1
* netfilter: nf_tables: do not remove elements if set backend implements .abortPablo Neira Ayuso2023-10-121-1/+4
* netfilter: nf_tables: nft_set_rbtree: fix spurious insertion failureFlorian Westphal2023-10-041-17/+29
* netfilter: nf_tables: Deduplicate nft_register_obj audit logsPhil Sutter2023-10-041-16/+28
* netfilter: handle the connecting collision properly in nf_conntrack_proto_sctpXin Long2023-10-041-10/+33
* netfilter: nft_payload: rebuild vlan header on h_proto accessFlorian Westphal2023-10-041-1/+12
* net: prevent address rewrite in kernel_bind()Jordan Rife2023-10-011-2/+2
* net: replace calls to sock->ops->connect() with kernel_connect()Jordan Rife2023-10-011-2/+2
* netfilter: ipset: Fix race between IPSET_CMD_CREATE and IPSET_CMD_SWAPJozsef Kadlecsik2023-09-201-2/+10
* netfilter: nf_tables: fix memleak when more than 255 elements expiredFlorian Westphal2023-09-201-2/+8
* netfilter: nf_tables: disable toggling dormant table state more than onceFlorian Westphal2023-09-201-0/+4
* Merge git://git.kernel.org/pub/scm/linux/kernel/git/bpf/bpfDavid S. Miller2023-09-161-0/+2
|\
| * netfilter, bpf: Adjust timeouts of non-confirmed CTs in bpf_ct_insert_entry()Ilya Leoshkevich2023-09-151-0/+2
* | Merge tag 'nf-23-09-13' of git://git.kernel.org/pub/scm/linux/kernel/git/netf...David S. Miller2023-09-155-34/+58
|\ \ | |/ |/|
| * netfilter: nf_tables: Fix entries val in rule reset audit logPhil Sutter2023-09-131-6/+10
| * netfilter: conntrack: fix extension size tableFlorian Westphal2023-09-131-2/+2
| * netfilter: nf_tables: disallow element removal on anonymous setsPablo Neira Ayuso2023-09-111-4/+5
| * netfilter: nft_set_hash: try later when GC hits EAGAIN on iterationPablo Neira Ayuso2023-09-081-6/+3
| * netfilter: nft_set_pipapo: stop GC iteration if GC transaction allocation failsPablo Neira Ayuso2023-09-081-1/+1
| * netfilter: nft_set_pipapo: call nft_trans_gc_queue_sync() in catchall GCPablo Neira Ayuso2023-09-084-6/+22
| * netfilter: nft_set_rbtree: use read spinlock to avoid datapath contentionPablo Neira Ayuso2023-09-081-4/+2
| * netfilter: nf_tables: disallow rule removal from chain bindingPablo Neira Ayuso2023-09-081-5/+13
* | Merge tag 'net-6.6-rc1' of git://git.kernel.org/pub/scm/linux/kernel/git/netd...Linus Torvalds2023-09-077-27/+109
|\|
| * netfilter: nf_tables: Unbreak audit log resetPablo Neira Ayuso2023-09-061-5/+6
| * netfilter: ipset: add the missing IP_SET_HASH_WITH_NET0 macro for ip_set_hash...Kyle Zeng2023-09-061-0/+1
| * netfilter: nft_set_rbtree: skip sync GC for new elements in this transactionPablo Neira Ayuso2023-09-061-2/+6
| * netfilter: nfnetlink_osf: avoid OOB readWander Lairson Costa2023-09-061-0/+8
generated by cgit v1.2.3 (git 2.25.1) at 2024-12-02 23:05:25 +0000