aboutsummaryrefslogtreecommitdiffstats
path: root/net/netfilter
AgeCommit message (Expand)Author
2024-05-02ipvs: Fix checksumming on GSO of SCTP packetsIsmael Luceno
2024-05-02netfilter: nf_tables: Fix potential data-race in __nft_expr_type_get()Ziyang Xuan
2024-04-13netfilter: nf_tables: discard table flag update with pending basechain deletionPablo Neira Ayuso
2024-04-13netfilter: nf_tables: release mutex after nft_gc_seq_end from abort pathPablo Neira Ayuso
2024-04-13netfilter: nf_tables: release batch on table validation from abort pathPablo Neira Ayuso
2024-04-13netfilter: nf_tables: reject new basechain after table flag updatePablo Neira Ayuso
2024-04-13netfilter: nf_tables: Fix potential data-race in __nft_flowtable_type_get()Ziyang Xuan
2024-04-13netfilter: nf_tables: flush pending destroy work before exit_net releasePablo Neira Ayuso
2024-04-13netfilter: nf_tables: disallow timeout for anonymous setsPablo Neira Ayuso
2024-04-13netfilter: nf_tables: reject constant set with timeoutPablo Neira Ayuso
2024-04-13netfilter: nf_tables: disallow anonymous set with timeout flagPablo Neira Ayuso
2024-04-13netfilter: nf_tables: mark set as dead when unbinding anonymous set with timeoutPablo Neira Ayuso
2024-03-26netfilter: nf_tables: do not compare internal table flags on updatesPablo Neira Ayuso
2024-03-15netfilter: nf_conntrack_h323: Add protection for bmp length out of rangeLena Wang
2024-03-15netfilter: nft_ct: fix l3num expectations with inet pseudo familyFlorian Westphal
2024-03-06netfilter: nf_tables: allow NFPROTO_INET in nft_(match/target)_validate()Ignat Korchagin
2024-03-01netfilter: nf_tables: set dormant flag on hook register failureFlorian Westphal
2024-03-01netfilter: conntrack: check SCTP_CID_SHUTDOWN_ACK for vtag setting in sctp_newXin Long
2024-02-23netfilter: nf_tables: fix pointer math issue in nft_byteorder_eval()Dan Carpenter
2024-02-23netfilter: ipset: Missing gc cancellations fixedJozsef Kadlecsik
2024-02-23netfilter: ipset: fix performance regression in swap operationJozsef Kadlecsik
2024-02-23netfilter: nft_set_rbtree: skip end interval element from gcPablo Neira Ayuso
2024-02-23netfilter: nft_ct: reject direction for ct idPablo Neira Ayuso
2024-02-23netfilter: nft_compat: restrict match/target protocol to u16Pablo Neira Ayuso
2024-02-23netfilter: nft_compat: reject unused compat flagPablo Neira Ayuso
2024-02-23netfilter: nft_ct: sanitize layer 3 and 4 protocol number in custom expectationsPablo Neira Ayuso
2024-02-23netfilter: nf_log: replace BUG_ON by WARN_ON_ONCE when putting loggerPablo Neira Ayuso
2024-02-23netfilter: nf_tables: reject QUEUE/DROP verdict parametersFlorian Westphal
2024-02-23netfilter: nf_tables: validate NFPROTO_* familyPablo Neira Ayuso
2024-02-23netfilter: nf_tables: restrict anonymous set and map names to 16 bytesFlorian Westphal
2024-01-25ipvs: avoid stat macros calls from preemptible contextFedor Pchelkin
2024-01-25netfilter: nf_tables: skip dead set elements in netlink dumpPablo Neira Ayuso
2024-01-25netfilter: nf_tables: mark newset as dead on transaction abortFlorian Westphal
2024-01-15netfilter: nf_tables: Reject tables of unsupported familyPhil Sutter
2023-12-13netfilter: xt_owner: Fix for unsafe access of sk->sk_socketPhil Sutter
2023-12-13netfilter: ipset: fix race condition between swap/destroy and kernel side add...Jozsef Kadlecsik
2023-11-28netfilter: nf_tables: bogus EBUSY when deleting flowtable after flush (for 5.4)Pablo Neira Ayuso
2023-11-28netfilter: nf_tables: disable toggling dormant table state more than oncePablo Neira Ayuso
2023-11-28netfilter: nf_tables: fix table flag updatesPablo Neira Ayuso
2023-11-28netfilter: nftables: update table flags from the commit phasePablo Neira Ayuso
2023-11-28netfilter: nf_tables: double hook unregistration in netns pathPablo Neira Ayuso
2023-11-28netfilter: nf_tables: unregister flowtable hooks on netns exitPablo Neira Ayuso
2023-11-28netfilter: nf_tables: fix memleak when more than 255 elements expiredPablo Neira Ayuso
2023-11-28netfilter: nft_set_hash: try later when GC hits EAGAIN on iterationPablo Neira Ayuso
2023-11-28netfilter: nft_set_rbtree: use read spinlock to avoid datapath contentionPablo Neira Ayuso
2023-11-28netfilter: nft_set_rbtree: skip sync GC for new elements in this transactionPablo Neira Ayuso
2023-11-28netfilter: nf_tables: defer gc run if previous batch is still pendingFlorian Westphal
2023-11-28netfilter: nf_tables: use correct lock to protect gc_listPablo Neira Ayuso
2023-11-28netfilter: nf_tables: GC transaction race with abort pathPablo Neira Ayuso
2023-11-28netfilter: nf_tables: GC transaction race with netns dismantlePablo Neira Ayuso
generated by cgit 1.2.3-korg (git 2.39.0) at 2024-05-29 22:13:48 +0000