summaryrefslogtreecommitdiff
path: root/net/netfilter
AgeCommit message (Expand)AuthorFilesLines
2023-08-16netfilter: nf_tables: report use refcount overflowPablo Neira Ayuso4-75/+118
2023-08-11netfilter: nf_tables: disallow rule addition to bound chain via NFTA_RULE_CHA...Pablo Neira Ayuso1-2/+3
2023-08-11netfilter: nf_tables: skip immediate deactivate in _PREPARE_ERRORPablo Neira Ayuso1-9/+18
2023-08-11netfilter: nftables: add helper function to validate set element dataPablo Neira Ayuso1-4/+11
2023-08-11netfilter: nft_set_rbtree: fix overlap expiration walkFlorian Westphal1-6/+14
2023-07-27netfilter: nf_tables: skip bound chain on rule flushPablo Neira Ayuso1-0/+2
2023-07-27netfilter: nf_tables: skip bound chain in netns release pathPablo Neira Ayuso1-0/+3
2023-07-27netfilter: nft_set_pipapo: fix improper element removalFlorian Westphal1-1/+5
2023-07-27netfilter: nf_tables: can't schedule in nft_chain_validateFlorian Westphal1-2/+2
2023-07-27netfilter: nf_tables: fix spurious set element insertion failureFlorian Westphal1-0/+3
2023-07-27netfilter: nf_tables: prevent OOB access in nft_byteorder_evalThadeu Lima de Souza Cascardo1-7/+7
2023-07-27netfilter: nf_tables: do not ignore genmask when looking up chain by idThadeu Lima de Souza Cascardo1-4/+7
2023-07-27netfilter: conntrack: Avoid nf_ct_helper_hash uses after freeFlorent Revest1-0/+4
2023-07-27netfilter: nf_tables: fix scheduling-while-atomic splatFlorian Westphal1-4/+0
2023-07-27netfilter: nf_tables: unbind non-anonymous set if rule construction failsPablo Neira Ayuso1-0/+2
2023-07-27netfilter: nf_tables: drop map element references from preparation phasePablo Neira Ayuso5-23/+113
2023-07-27netfilter: nftables: rename set element data activation/deactivation functionsPablo Neira Ayuso1-11/+11
2023-07-27netfilter: nf_tables: reject unbound chain set before commit phasePablo Neira Ayuso1-0/+13
2023-07-27netfilter: nf_tables: reject unbound anonymous set before commit phasePablo Neira Ayuso1-3/+31
2023-07-27netfilter: nf_tables: add NFT_TRANS_PREPARE_ERROR to deal with bound set/chainPablo Neira Ayuso2-7/+41
2023-07-27netfilter: nf_tables: fix chain binding transaction logicPablo Neira Ayuso2-40/+133
2023-07-27netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULEPablo Neira Ayuso1-1/+2
2023-07-27netfilter: nf_tables: add rescheduling points during loop detection walksFlorian Westphal1-0/+6
2023-07-27netfilter: nf_tables: use net_generic infra for transaction dataFlorian Westphal4-160/+269
2023-07-27netfilter: nf_conntrack_sip: fix the ct_sip_parse_numerical_param() return va...Ilia.Gavrilov1-1/+1
2023-07-27netfilter: conntrack: dccp: copy entire header to stack buffer, not just basi...Florian Westphal1-3/+49
2023-06-28netfilter: nf_tables: hold mutex on netns pre_exit pathPablo Neira Ayuso1-0/+2
2023-06-28netfilter: nf_tables: validate registers coming from userspace.Pablo Neira Ayuso1-14/+17
2023-06-28netfilter: nftables: statify nft_parse_register()Pablo Neira Ayuso1-2/+1
2023-06-28netfilter: nfnetlink_osf: fix module autoloadPablo Neira Ayuso2-1/+1
2023-06-28netfilter: nf_tables: disallow element updates of bound anonymous setsPablo Neira Ayuso1-2/+5
2023-06-28netfilter: nft_set_pipapo: .walk does not deal with generationsPablo Neira Ayuso1-1/+5
2023-06-28ipvs: align inner_mac_header for encapsulationTerin Stock1-0/+2
2023-06-21netfilter: nfnetlink: skip error delivery on batch in case of ENOMEMPablo Neira Ayuso1-1/+2
2023-06-21Remove DECnet support from kernelStephen Hemminger1-10/+0
2023-06-14netfilter: ipset: Add schedule point in call_ad().Kuniyuki Iwashima1-0/+8
2023-06-14netfilter: conntrack: fix NULL pointer dereference in nf_confirm_cthelperTijs Van Buggenhout1-0/+3
2023-06-09netfilter: conntrack: define variables exp_nat_nla_policy and any_addr with C...Tom Rix1-0/+4
2023-06-05netfilter: ctnetlink: Support offloaded conntrack entry deletionPaul Blakey1-8/+0
2023-05-30netfilter: nft_set_rbtree: fix null deref on element insertionFlorian Westphal1-7/+13
2023-05-30ipvs: Update width of source for ip_vs_sync_conn_optionsSimon Horman1-1/+1
2023-05-30netfilter: conntrack: fix possible bug_on with enable_hooks=1Florian Westphal2-3/+6
2023-05-17netfilter: nf_tables: deactivate anonymous set from preparation phasePablo Neira Ayuso4-3/+15
2023-05-17netfilter: nf_tables: don't write table validation state without mutexFlorian Westphal2-8/+2
2023-03-22netfilter: nft_redir: correct value of inet type `.maxattrs`Jeremy Sowden1-1/+1
2023-03-22netfilter: nft_redir: correct length for loading protocol registersJeremy Sowden1-1/+1
2023-03-22netfilter: nft_masq: correct length for loading protocol registersJeremy Sowden1-1/+1
2023-03-22netfilter: nft_nat: correct length for loading protocol registersJeremy Sowden1-1/+1
2023-03-17netfilter: ctnetlink: revert to dumping mark regardless of event typeIvan Delalande1-7/+7
2023-03-11netfilter: ctnetlink: fix possible refcount leak in ctnetlink_create_conntrack()Hangyu Hua1-1/+4
generated by cgit v1.2.3 (git 2.39.0) at 2026-01-11 11:19:25 +0300