summaryrefslogtreecommitdiff
path: root/include/net/netfilter
AgeCommit message (Expand)AuthorFilesLines
2024-08-19netfilter: nf_tables: use timestamp to check for set element timeoutPablo Neira Ayuso1-2/+19
2024-07-05netfilter: nf_tables: fully validate NFT_DATA_VALUE on store to data registersPablo Neira Ayuso1-0/+5
2024-06-16netfilter: nft_dynset: fix timeouts later than 23 daysPablo Neira Ayuso1-0/+3
2024-06-16netfilter: nf_tables: fix table flag updatesPablo Neira Ayuso1-6/+0
2024-06-16netfilter: nftables: update table flags from the commit phasePablo Neira Ayuso1-3/+6
2024-06-16netfilter: nf_tables: fix memleak when more than 255 elements expiredPablo Neira Ayuso1-1/+1
2024-06-16netfilter: nf_tables: defer gc run if previous batch is still pendingFlorian Westphal1-0/+5
2024-06-16netfilter: nf_tables: remove busy mark and gc batch APIPablo Neira Ayuso1-94/+3
2024-06-16netfilter: nf_tables: GC transaction API to avoid race with control planePablo Neira Ayuso1-1/+60
2024-06-16netfilter: nf_tables: drop map element references from preparation phasePablo Neira Ayuso1-1/+4
2023-08-16netfilter: nf_tables: report use refcount overflowPablo Neira Ayuso1-4/+27
2023-08-16netfilter: nf_tables: bogus EBUSY when deleting flowtable after flushPablo Neira Ayuso1-0/+4
2023-08-11netfilter: nf_tables: reject unbound anonymous set before commit phasePablo Neira Ayuso1-0/+3
2023-08-11netfilter: nf_tables: add NFT_TRANS_PREPARE_ERROR to deal with bound set/chainPablo Neira Ayuso1-0/+1
2023-08-11netfilter: nf_tables: use net_generic infra for transaction dataPablo Neira Ayuso1-0/+10
2023-05-30netfilter: nf_tables: allow up to 64 bytes in the set element data areaPablo Neira Ayuso1-0/+4
2023-05-30netfilter: nftables: statify nft_parse_register()Pablo Neira Ayuso1-1/+0
2023-05-30netfilter: nftables: add nft_parse_register_store() and use itPablo Neira Ayuso3-7/+7
2023-05-30netfilter: nftables: add nft_parse_register_load() and use itPablo Neira Ayuso4-7/+8
2023-05-17netfilter: nf_tables: deactivate anonymous set from preparation phasePablo Neira Ayuso1-0/+1
2022-06-06netfilter: conntrack: re-fetch conntrack after insertionFlorian Westphal1-1/+6
2022-03-08netfilter: nf_queue: fix possible use-after-freeFlorian Westphal1-1/+1
2022-02-08netfilter: nat: remove l4 protocol port roversFlorian Westphal1-1/+1
2020-10-29netfilter: nf_log: missing vlan offload tag and protoPablo Neira Ayuso1-0/+1
2020-09-09netfilter: nf_tables: fix destination register zeroingFlorian Westphal1-0/+2
2020-05-20netfilter: conntrack: avoid gcc-10 zero-length-bounds warningArnd Bergmann1-1/+1
2019-11-12netfilter: nf_tables: Align nft_expr private data to 64-bitLukas Wunner1-1/+2
2019-09-10netfilter: nf_tables: use-after-free in failing rule with bound setPablo Neira Ayuso1-2/+7
2019-05-16netfilter: ctnetlink: don't use conntrack/expect object addresses as idFlorian Westphal1-0/+2
2019-05-02netfilter: nf_tables: bogus EBUSY when deleting set after flushPablo Neira Ayuso1-0/+6
2019-05-02netfilter: nf_tables: fix set double-free in abort pathPablo Neira Ayuso1-4/+2
2019-05-02netfilter: nft_compat: use .release_ops and remove list of extensionPablo Neira Ayuso1-0/+3
2019-05-02netfilter: nf_tables: unbind set in rule from commit pathPablo Neira Ayuso1-4/+13
2019-05-02netfilter: nf_tables: split set destruction in deactivate and destroy phaseFlorian Westphal1-1/+6
2019-04-05netfilter: physdev: relax br_netfilter dependencyFlorian Westphal1-1/+0
2019-02-27netfilter: nft_flow_offload: fix interaction with vrf slave devicewenxu1-1/+0
2019-01-22netfilter: nf_conncount: speculative garbage collection on empty listsPablo Neira Ayuso1-1/+0
2019-01-22netfilter: nf_conncount: merge lookup and add functionsFlorian Westphal1-15/+3
2018-12-17netfilter: add missing error handling code for register functionsTaehee Yoo2-2/+2
2018-08-29netfilter: nf_tables: rework ct timeout set supportFlorian Westphal1-1/+1
2018-08-16netfilter: nf_tables: fix register orderingFlorian Westphal1-1/+1
2018-08-16netfilter: nft_set: fix allocation size overflow in privsize callback.Taehee Yoo1-2/+2
2018-08-07netfilter: remove ifdef around cttimeout in struct nf_conntrack_l4protoPablo Neira Ayuso1-2/+0
2018-08-07netfilter: cttimeout: decouple timeout policy from nfnetlink_cttimeout objectPablo Neira Ayuso1-9/+13
2018-08-07netfilter: cttimeout: move ctnl_untimeout to nf_conntrackHarsha Sharma1-0/+1
2018-08-03netfilter: use kvmalloc_array to allocate memory for hashtableLi RongQing1-2/+0
2018-07-30netfilter: nf_tables: handle meta/lookup with direct callFlorian Westphal1-0/+7
2018-07-25Merge ra.kernel.org:/pub/scm/linux/kernel/git/davem/netDavid S. Miller1-3/+2
2018-07-21Merge git://git.kernel.org/pub/scm/linux/kernel/git/pablo/nf-nextDavid S. Miller9-136/+52
2018-07-21Merge ra.kernel.org:/pub/scm/linux/kernel/git/torvalds/linuxDavid S. Miller2-2/+8
generated by cgit v1.2.3 (git 2.39.0) at 2026-01-14 03:47:50 +0300