index
:
kernel/linux.git
linux-2.6.11.y
linux-2.6.12.y
linux-2.6.13.y
linux-2.6.14.y
linux-2.6.15.y
linux-2.6.16.y
linux-2.6.17.y
linux-2.6.18.y
linux-2.6.19.y
linux-2.6.20.y
linux-2.6.21.y
linux-2.6.22.y
linux-2.6.23.y
linux-2.6.24.y
linux-2.6.25.y
linux-2.6.26.y
linux-2.6.27.y
linux-2.6.28.y
linux-2.6.29.y
linux-2.6.30.y
linux-2.6.31.y
linux-2.6.32.y
linux-2.6.33.y
linux-2.6.34.y
linux-2.6.35.y
linux-2.6.36.y
linux-2.6.37.y
linux-2.6.38.y
linux-2.6.39.y
linux-3.0.y
linux-3.1.y
linux-3.10.y
linux-3.11.y
linux-3.12.y
linux-3.13.y
linux-3.14.y
linux-3.15.y
linux-3.16.y
linux-3.17.y
linux-3.18.y
linux-3.19.y
linux-3.2.y
linux-3.3.y
linux-3.4.y
linux-3.5.y
linux-3.6.y
linux-3.7.y
linux-3.8.y
linux-3.9.y
linux-4.0.y
linux-4.1.y
linux-4.10.y
linux-4.11.y
linux-4.12.y
linux-4.13.y
linux-4.14.y
linux-4.15.y
linux-4.16.y
linux-4.17.y
linux-4.18.y
linux-4.19.y
linux-4.2.y
linux-4.20.y
linux-4.3.y
linux-4.4.y
linux-4.5.y
linux-4.6.y
linux-4.7.y
linux-4.8.y
linux-4.9.y
linux-5.0.y
linux-5.1.y
linux-5.10.y
linux-5.11.y
linux-5.12.y
linux-5.13.y
linux-5.14.y
linux-5.15.y
linux-5.16.y
linux-5.17.y
linux-5.18.y
linux-5.19.y
linux-5.2.y
linux-5.3.y
linux-5.4.y
linux-5.5.y
linux-5.6.y
linux-5.7.y
linux-5.8.y
linux-5.9.y
linux-6.0.y
linux-6.1.y
linux-6.10.y
linux-6.11.y
linux-6.12.y
linux-6.13.y
linux-6.14.y
linux-6.15.y
linux-6.16.y
linux-6.17.y
linux-6.18.y
linux-6.2.y
linux-6.3.y
linux-6.4.y
linux-6.5.y
linux-6.6.y
linux-6.7.y
linux-6.8.y
linux-6.9.y
linux-rockchip-6.1.y
linux-rockchip-6.5.y
linux-rolling-lts
linux-rolling-stable
master
Linux kernel stable tree (mirror)
Andrey V.Kosteltsev
summary
refs
log
tree
commit
diff
log msg
author
committer
range
path:
root
/
net
/
netfilter
Age
Commit message (
Expand
)
Author
Files
Lines
2022-09-15
netfilter: nf_conntrack_irc: Fix forged IP logic
David Leadbeater
1
-2
/
+3
2022-09-15
netfilter: nf_tables: clean up hook list when offload flags check fails
Pablo Neira Ayuso
1
-1
/
+3
2022-09-15
netfilter: conntrack: work around exceeded receive window
Florian Westphal
1
-0
/
+31
2022-09-05
netfilter: conntrack: NF_CONNTRACK_PROCFS should no longer default to y
Geert Uytterhoeven
1
-1
/
+0
2022-08-31
net: Fix data-races around sysctl_[rw]mem_(max|default).
Kuniyuki Iwashima
1
-2
/
+2
2022-08-31
netfilter: flowtable: fix stuck flows on cleanup due to pending work
Pablo Neira Ayuso
2
-4
/
+11
2022-08-31
netfilter: flowtable: add function to invoke garbage collection immediately
Pablo Neira Ayuso
1
-3
/
+9
2022-08-31
netfilter: nf_tables: disallow binding to already bound chain
Pablo Neira Ayuso
1
-0
/
+2
2022-08-31
netfilter: nf_tables: disallow jump to implicit chain from set element
Pablo Neira Ayuso
1
-0
/
+4
2022-08-31
netfilter: nf_tables: upfront validation of data via nft_data_init()
Pablo Neira Ayuso
5
-113
/
+124
2022-08-31
netfilter: bitwise: improve error goto labels
Jeremy Sowden
1
-5
/
+6
2022-08-31
netfilter: nft_cmp: optimize comparison for 16-bytes
Pablo Neira Ayuso
2
-2
/
+116
2022-08-31
netfilter: nf_tables: consolidate rule verdict trace call
Pablo Neira Ayuso
1
-7
/
+32
2022-08-31
netfilter: nft_tunnel: restrict it to netdev family
Pablo Neira Ayuso
1
-0
/
+1
2022-08-31
netfilter: nft_osf: restrict osf to ipv4, ipv6 and inet families
Pablo Neira Ayuso
1
-3
/
+15
2022-08-31
netfilter: nf_tables: do not leave chain stats enabled on error
Pablo Neira Ayuso
1
-2
/
+4
2022-08-31
netfilter: nft_payload: do not truncate csum_offset and csum_type
Pablo Neira Ayuso
1
-6
/
+13
2022-08-31
netfilter: nft_payload: report ERANGE for too long offset and length
Pablo Neira Ayuso
1
-2
/
+8
2022-08-31
netfilter: nf_tables: make table handle allocation per-netns friendly
Pablo Neira Ayuso
1
-2
/
+1
2022-08-31
netfilter: nf_tables: disallow updates of implicit chain
Pablo Neira Ayuso
1
-0
/
+3
2022-08-25
netfilter: nf_tables: check NFT_SET_CONCAT flag if field_count is specified
Pablo Neira Ayuso
1
-0
/
+5
2022-08-25
netfilter: nf_tables: disallow NFT_SET_ELEM_CATCHALL and NFT_SET_ELEM_INTERVA...
Pablo Neira Ayuso
1
-0
/
+3
2022-08-25
netfilter: nf_tables: NFTA_SET_ELEM_KEY_END requires concat and interval flags
Pablo Neira Ayuso
1
-0
/
+24
2022-08-25
netfilter: nf_tables: validate NFTA_SET_ELEM_OBJREF based on NFT_SET_OBJECT flag
Pablo Neira Ayuso
1
-4
/
+9
2022-08-25
netfilter: nf_tables: really skip inactive sets when allocating name
Pablo Neira Ayuso
1
-1
/
+1
2022-08-25
netfilter: nf_tables: possible module reference underflow in error path
Pablo Neira Ayuso
1
-1
/
+1
2022-08-25
netfilter: nf_tables: disallow NFTA_SET_ELEM_KEY_END with NFT_SET_ELEM_INTERV...
Pablo Neira Ayuso
1
-0
/
+1
2022-08-25
netfilter: nf_tables: use READ_ONCE and WRITE_ONCE for shared generation id a...
Pablo Neira Ayuso
1
-7
/
+13
2022-08-17
netfilter: nf_tables: fix null deref due to zeroed list head
Florian Westphal
1
-0
/
+1
2022-08-17
netfilter: nf_tables: do not allow RULE_ID to refer to another chain
Thadeu Lima de Souza Cascardo
1
-2
/
+5
2022-08-17
netfilter: nf_tables: do not allow CHAIN_ID to refer to another table
Thadeu Lima de Souza Cascardo
1
-2
/
+4
2022-08-17
netfilter: nf_tables: do not allow SET_ID to refer to another table
Thadeu Lima de Souza Cascardo
1
-1
/
+3
2022-08-03
netfilter: nf_queue: do not allow packet truncation below transport header of...
Florian Westphal
1
-1
/
+6
2022-07-29
net: netfilter: use kfree_drop_reason() for NF_DROP
Menglong Dong
1
-1
/
+2
2022-07-29
ip: Fix data-races around sysctl_ip_default_ttl.
Kuniyuki Iwashima
1
-1
/
+1
2022-07-21
netfilter: nf_tables: replace BUG_ON by element length check
Pablo Neira Ayuso
1
-21
/
+51
2022-07-21
netfilter: nf_log: incorrect offset to network header
Pablo Neira Ayuso
1
-4
/
+4
2022-07-12
netfilter: nft_payload: don't allow th access for fragments
Florian Westphal
2
-5
/
+6
2022-07-12
netfilter: nft_payload: support for inner header matching / mangling
Pablo Neira Ayuso
1
-2
/
+54
2022-07-12
netfilter: nf_tables: convert pktinfo->tprot_set to flags field
Pablo Neira Ayuso
4
-6
/
+6
2022-07-12
netfilter: nf_tables: stricter validation of element data
Pablo Neira Ayuso
1
-1
/
+8
2022-07-12
netfilter: nft_set_pipapo: release elements in clone from abort path
Pablo Neira Ayuso
1
-15
/
+33
2022-07-07
netfilter: nft_dynset: restore set element counter when failing to update
Pablo Neira Ayuso
1
-0
/
+2
2022-06-29
netfilter: use get_random_u32 instead of prandom
Florian Westphal
2
-20
/
+5
2022-06-14
netfilter: nf_tables: bail out early if hardware offload is not supported
Pablo Neira Ayuso
2
-2
/
+23
2022-06-14
netfilter: nf_tables: memleak flow rule from commit path
Pablo Neira Ayuso
1
-0
/
+6
2022-06-14
netfilter: nf_tables: release new hooks on unsupported flowtable flags
Pablo Neira Ayuso
1
-4
/
+8
2022-06-14
netfilter: nf_tables: always initialize flowtable hook list in transaction
Pablo Neira Ayuso
1
-0
/
+1
2022-06-14
netfilter: nf_tables: delete flowtable hooks via transaction list
Pablo Neira Ayuso
1
-25
/
+6
2022-06-14
netfilter: nf_tables: use kfree_rcu(ptr, rcu) to release hooks in clean_net path
Pablo Neira Ayuso
1
-1
/
+1
[next]
