summaryrefslogtreecommitdiff
path: root/net/netfilter
AgeCommit message (Expand)AuthorFilesLines
2023-11-20netfilter: xt_recent: fix (increase) ipv6 literal buffer lengthMaciej Żenczykowski1-1/+1
2023-11-08netfilter: nfnetlink_log: silence bogus compiler warningFlorian Westphal1-1/+1
2023-10-25netfilter: nft_set_rbtree: .deactivate fails if element has expiredPablo Neira Ayuso1-0/+2
2023-10-25netfilter: nft_payload: fix wrong mac header matchingFlorian Westphal1-1/+1
2023-10-25net: prevent address rewrite in kernel_bind()Jordan Rife1-2/+2
2023-10-10net: replace calls to sock->ops->connect() with kernel_connect()Jordan Rife1-2/+2
2023-10-10netfilter: nf_tables: disallow element removal on anonymous setsPablo Neira Ayuso1-4/+5
2023-09-23netfilter: nfnetlink_osf: avoid OOB readWander Lairson Costa1-0/+8
2023-09-23netfilter: xt_sctp: validate the flag_info countWander Lairson Costa1-0/+2
2023-09-23netfilter: xt_u32: validate user space inputWander Lairson Costa1-0/+21
2023-09-23netfilter: ipset: add the missing IP_SET_HASH_WITH_NET0 macro for ip_set_hash...Kyle Zeng1-0/+1
2023-09-23netfilter: nf_tables: missing NFT_TRANS_PREPARE_ERROR in flowtable deactivata...Pablo Neira Ayuso1-0/+1
2023-09-23netfilter: nft_flow_offload: fix underflow in flowtable reference counterwenxu1-3/+0
2023-08-30netfilter: nf_queue: fix socket leakVamsi Krishna Brahmajosyula1-2/+0
2023-08-30ipvs: fix racy memcpy in proc_do_sync_thresholdSishuai Gong1-0/+4
2023-08-30ipvs: Improve robustness to the ipvs sysctlJunwei Hu1-34/+36
2023-08-30netfilter: set default timeout to 3 secs for sctp shutdown send and recv stateXin Long1-3/+3
2023-08-30netfilter: nft_dynset: disallow object mapsPablo Neira Ayuso1-0/+3
2023-08-16netfilter: nf_tables: report use refcount overflowPablo Neira Ayuso3-67/+113
2023-08-16netfilter: nf_tables: bogus EBUSY when deleting flowtable after flushPablo Neira Ayuso2-0/+35
2023-08-11netfilter: nf_tables: can't schedule in nft_chain_validateFlorian Westphal1-2/+2
2023-08-11netfilter: nf_tables: fix spurious set element insertion failureFlorian Westphal1-0/+3
2023-08-11netfilter: nf_tables: prevent OOB access in nft_byteorder_evalThadeu Lima de Souza Cascardo1-7/+7
2023-08-11netfilter: conntrack: Avoid nf_ct_helper_hash uses after freeFlorent Revest1-0/+4
2023-08-11netfilter: nf_tables: fix scheduling-while-atomic splatFlorian Westphal1-4/+0
2023-08-11netfilter: nf_tables: unbind non-anonymous set if rule construction failsPablo Neira Ayuso1-0/+2
2023-08-11netfilter: nf_tables: reject unbound anonymous set before commit phasePablo Neira Ayuso1-3/+30
2023-08-11netfilter: nf_tables: add NFT_TRANS_PREPARE_ERROR to deal with bound set/chainPablo Neira Ayuso1-4/+22
2023-08-11netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULEPablo Neira Ayuso1-1/+2
2023-08-11netfilter: nf_tables: use net_generic infra for transaction dataPablo Neira Ayuso3-120/+200
2023-08-11netfilter: add helper function to set up the nfnetlink header and use itPablo Neira Ayuso10-208/+75
2023-08-11netfilter: nftables: add helper function to set the base sequence numberPablo Neira Ayuso1-9/+14
2023-08-11netfilter: nf_tables: add rescheduling points during loop detection walksFlorian Westphal1-0/+6
2023-08-11netfilter: nf_tables: fix nat hook table deletionFlorian Westphal1-5/+6
2023-08-11netfilter: nf_conntrack_sip: fix the ct_sip_parse_numerical_param() return va...Ilia.Gavrilov1-1/+1
2023-08-11treewide: Remove uninitialized_var() usageKees Cook3-4/+4
2023-06-28netfilter: nfnetlink_osf: fix module autoloadPablo Neira Ayuso2-1/+1
2023-06-28netfilter: nf_tables: disallow element updates of bound anonymous setsPablo Neira Ayuso1-2/+5
2023-06-21netfilter: nfnetlink: skip error delivery on batch in case of ENOMEMPablo Neira Ayuso1-1/+2
2023-06-21Remove DECnet support from kernelStephen Hemminger1-10/+0
2023-06-09netfilter: conntrack: define variables exp_nat_nla_policy and any_addr with C...Tom Rix1-0/+4
2023-06-09netfilter: ctnetlink: Support offloaded conntrack entry deletionPaul Blakey1-8/+0
2023-05-30netfilter: nf_tables: do not allow RULE_ID to refer to another chainPablo Neira Ayuso1-1/+3
2023-05-30netfilter: nf_tables: validate NFTA_SET_ELEM_OBJREF based on NFT_SET_OBJECT flagPablo Neira Ayuso1-4/+9
2023-05-30netfilter: nf_tables: stricter validation of element dataPablo Neira Ayuso1-1/+8
2023-05-30netfilter: nf_tables: allow up to 64 bytes in the set element data areaPablo Neira Ayuso1-12/+27
2023-05-30netfilter: nf_tables: add nft_setelem_parse_key()Pablo Neira Ayuso1-46/+45
2023-05-30netfilter: nf_tables: validate registers coming from userspace.Pablo Neira Ayuso1-14/+17
2023-05-30netfilter: nftables: statify nft_parse_register()Pablo Neira Ayuso1-2/+1
2023-05-30netfilter: nftables: add nft_parse_register_store() and use itPablo Neira Ayuso16-74/+85
generated by cgit v1.2.3 (git 2.39.0) at 2026-05-12 14:30:48 +0300