summaryrefslogtreecommitdiff
path: root/net/netfilter
AgeCommit message (Expand)AuthorFilesLines
2023-05-11netfilter: nf_tables: deactivate anonymous set from preparation phasePablo Neira Ayuso4-3/+15
2023-05-11netfilter: nf_tables: don't write table validation state without mutexFlorian Westphal2-8/+2
2023-04-26netfilter: nf_tables: tighten netlink attribute requirements for catch-all el...Pablo Neira Ayuso1-1/+2
2023-04-26netfilter: nf_tables: validate catch-all set elementsPablo Neira Ayuso2-38/+62
2023-03-22netfilter: nft_redir: correct value of inet type `.maxattrs`Jeremy Sowden1-1/+1
2023-03-22netfilter: nft_redir: correct length for loading protocol registersJeremy Sowden1-1/+1
2023-03-22netfilter: nft_masq: correct length for loading protocol registersJeremy Sowden1-1/+1
2023-03-22netfilter: nft_nat: correct length for loading protocol registersJeremy Sowden1-1/+1
2023-03-17netfilter: conntrack: adopt safer max chain lengthEric Dumazet1-2/+2
2023-03-17netfilter: ctnetlink: revert to dumping mark regardless of event typeIvan Delalande1-7/+7
2023-03-11netfilter: ctnetlink: fix possible refcount leak in ctnetlink_create_conntrack()Hangyu Hua1-1/+4
2023-03-11netfilter: nf_tables: allow to fetch set elements when table has an ownerPablo Neira Ayuso1-1/+1
2023-03-10netfilter: nf_tables: NULL pointer dereference in nf_tables_updobj()Alok Tiwari1-0/+3
2023-02-22netfilter: nft_tproxy: restrict to prerouting hookFlorian Westphal1-0/+8
2023-02-01netfilter: conntrack: unify established states for SCTP pathsSriram Yagnaraman2-62/+39
2023-02-01netfilter: conntrack: fix vtag checks for ABORT/SHUTDOWN_COMPLETESriram Yagnaraman1-9/+16
2023-02-01netfilter: nft_set_rbtree: skip elements in transaction from garbage collectionPablo Neira Ayuso1-1/+15
2023-02-01netfilter: nft_set_rbtree: Switch to node list walk for overlap detectionPablo Neira Ayuso1-127/+189
2023-01-18netfilter: ipset: Fix overflow before widen in the bitmap_ip_create() function.Gavrilov Ilia1-2/+2
2023-01-18netfilter: nft_payload: incorrect arithmetics when fetching VLAN header bitsPablo Neira Ayuso1-1/+1
2023-01-12netfilter: ipset: Rework long task execution when adding/deleting entriesJozsef Kadlecsik10-80/+67
2023-01-12netfilter: ipset: fix hash:net,port,net hang with /0 subnetJozsef Kadlecsik1-19/+21
2023-01-12netfilter: nf_tables: honor set timeout and garbage collection updatesPablo Neira Ayuso1-18/+45
2023-01-12netfilter: nf_tables: perform type checking for existing setsPablo Neira Ayuso1-1/+35
2023-01-12netfilter: nf_tables: add function to create set stateful expressionsPablo Neira Ayuso1-38/+68
2023-01-12netfilter: nf_tables: consolidate set descriptionPablo Neira Ayuso1-30/+28
2022-12-31netfilter: flowtable: really fix NAT IPv6 offloadQingfang DENG1-3/+3
2022-12-31netfilter: conntrack: set icmpv6 redirects as RELATEDFlorian Westphal1-0/+53
2022-12-14netfilter: ctnetlink: fix compilation warning after data race fixes in ct markPablo Neira Ayuso1-9/+10
2022-12-14netfilter: nft_set_pipapo: Actually validate intervals in fields after the fi...Stefano Brivio1-2/+3
2022-12-02netfilter: flowtable_offload: add missing lockingFelix Fietkau1-0/+4
2022-12-02netfilter: ipset: restore allowing 64 clashing elements in hash:net,ifaceJozsef Kadlecsik1-1/+1
2022-12-02netfilter: ipset: regression in ip_set_hash_ip.cVishwanath Pai1-5/+3
2022-12-02netfilter: nf_tables: do not set up extensions for end intervalPablo Neira Ayuso1-2/+4
2022-12-02netfilter: conntrack: Fix data-races around ct markDaniel Xu5-23/+29
2022-11-16netfilter: Cleanup nft_net->module_list from nf_tables_exit_net()Shigeru Yoshida1-1/+2
2022-11-16netfilter: nfnetlink: fix potential dead lock in nfnetlink_rcv_msg()Ziyang Xuan1-0/+1
2022-11-10netfilter: ipset: enforce documented limit to prevent allocating huge memoryJozsef Kadlecsik1-24/+6
2022-11-10ipvs: fix WARNING in ip_vs_app_net_cleanup()Zhengchao Shao1-2/+8
2022-11-10ipvs: fix WARNING in __ip_vs_cleanup_batch()Zhengchao Shao1-5/+21
2022-11-10ipvs: use explicitly signed charsJason A. Donenfeld1-2/+2
2022-11-10netfilter: nf_tables: release flow rule object from commit pathPablo Neira Ayuso1-3/+3
2022-11-10netfilter: nf_tables: netlink notifier might race to release objectsPablo Neira Ayuso1-0/+2
2022-10-29netfilter: nf_tables: relax NFTA_SET_ELEM_KEY_END set flags requirementsPablo Neira Ayuso1-2/+3
2022-10-26netfilter: conntrack: revisit the gc initial rescheduling biasAntoine Tenart1-4/+6
2022-10-26netfilter: conntrack: fix the gc rescheduling delayAntoine Tenart1-2/+8
2022-09-28netfilter: nf_tables: fix percpu memory leak at nf_tables_addchain()Tetsuo Handa1-0/+1
2022-09-28netfilter: nf_tables: fix nft_counters_enabled underflow at nf_tables_addchain()Tetsuo Handa1-4/+3
2022-09-28netfilter: nfnetlink_osf: fix possible bogus match in nf_osf_find()Pablo Neira Ayuso1-1/+3
2022-09-28netfilter: nf_conntrack_irc: Tighten matching on DCC messageDavid Leadbeater1-6/+28
generated by cgit v1.2.3 (git 2.39.0) at 2026-05-12 14:10:04 +0300