summaryrefslogtreecommitdiff
path: root/net/netfilter
AgeCommit message (Expand)AuthorFilesLines
2022-04-27netfilter: nft_ct: fix use after free when attaching zone templateFlorian Westphal1-1/+4
2022-04-27netfilter: conntrack: avoid useless indirection during conntrack destructionFlorian Westphal1-6/+6
2022-04-27netfilter: conntrack: convert to refcount_t apiFlorian Westphal8-27/+23
2022-04-20netfilter: nf_tables: nft_parse_register can return a negative valueAntoine Tenart1-1/+1
2022-04-20netfilter: nft_socket: make cgroup match work in input tooFlorian Westphal1-4/+3
2022-04-13netfilter: conntrack: revisit gc autotuningFlorian Westphal1-17/+68
2022-04-08net: prefer nf_ct_put instead of nf_conntrack_putFlorian Westphal1-2/+2
2022-04-08netfilter: nf_conntrack_tcp: preserve liberal flag in tcp optionsPablo Neira Ayuso1-4/+13
2022-04-08netfilter: conntrack: Add and use nf_ct_set_auto_assign_helper_warned()Phil Sutter2-0/+9
2022-04-08netfilter: flowtable: Fix QinQ and pppoe support for inet tablePablo Neira Ayuso2-18/+17
2022-03-28netfilter: nf_tables: validate registers coming from userspace.Pablo Neira Ayuso1-5/+17
2022-03-28netfilter: nf_tables: initialize registers in nft_do_chain()Pablo Neira Ayuso1-1/+1
2022-03-08netfilter: nf_tables: prefer kfree_rcu(ptr, rcu) variantEric Dumazet1-2/+2
2022-03-08netfilter: nf_queue: handle socket prefetchFlorian Westphal1-0/+12
2022-03-08netfilter: nf_queue: fix possible use-after-freeFlorian Westphal2-7/+18
2022-03-08netfilter: nf_queue: don't assume sk is full socketFlorian Westphal1-1/+10
2022-03-08netfilter: fix use-after-free in __nf_register_net_hook()Eric Dumazet1-2/+3
2022-03-02netfilter: nf_tables: fix memory leak during stateful obj updateFlorian Westphal1-4/+9
2022-03-02netfilter: nf_tables: unregister flowtable hooks on netns exitPablo Neira Ayuso1-0/+3
2022-03-02netfilter: nf_tables_offload: incorrect flow offload action array sizePablo Neira Ayuso4-2/+25
2022-03-02netfilter: xt_socket: missing ifdef CONFIG_IP6_NF_IPTABLES dependencyPablo Neira Ayuso1-0/+2
2022-03-02netfilter: xt_socket: fix a typo in socket_mt_destroy()Eric Dumazet1-1/+1
2022-02-23netfilter: conntrack: don't refresh sctp entries in closed stateFlorian Westphal1-0/+9
2022-02-23netfilter: nft_synproxy: unregister hooks on init error pathPablo Neira Ayuso1-1/+3
2022-02-16netfilter: ctnetlink: disable helper autoassignFlorian Westphal1-1/+2
2022-02-01netfilter: conntrack: don't increment invalid counter on NF_REPEATFlorian Westphal1-3/+5
2022-01-27netfilter: nft_set_pipapo: allocate pcpu scratch maps on cloneFlorian Westphal1-0/+8
2022-01-27netfilter: nft_payload: do not update layer 4 checksum when mangling fragmentsPablo Neira Ayuso1-0/+3
2021-12-29netfilter: fix regression in looped (broad|multi)cast's MAC handlingIgnacy Gawędzki2-2/+4
2021-12-29netfilter: nf_tables: fix use-after-free in nft_set_catchall_destroy()Eric Dumazet1-2/+2
2021-12-14netfilter: conntrack: annotate data-races around ct->timeoutEric Dumazet3-6/+6
2021-12-14netfilter: nft_exthdr: break evaluation if setting TCP option failsPablo Neira Ayuso1-4/+7
2021-12-14nft_set_pipapo: Fix bucket load in AVX2 lookup routine for six 8-bit groupsStefano Brivio1-1/+1
2021-12-01netfilter: flowtable: fix IPv6 tunnel addr matchWill Mortensen1-2/+2
2021-12-01netfilter: ipvs: Fix reuse connection if RS weight is 0yangxingwu1-4/+4
2021-12-01netfilter: ctnetlink: do not erase error code with EINVALFlorent Fourcot1-3/+1
2021-12-01netfilter: ctnetlink: fix filtering with CTA_TUPLE_REPLYFlorent Fourcot1-1/+1
2021-11-18netfilter: nfnetlink_queue: fix OOB when mac header was clearedFlorian Westphal1-1/+1
2021-11-18netfilter: nft_dynset: relax superfluous check on set updatesPablo Neira Ayuso1-10/+1
2021-11-18netfilter: conntrack: set on IPS_ASSURED if flows enters internal stream statePablo Neira Ayuso1-2/+5
2021-10-15netfilter: ipvs: make global sysctl readonly in non-init netnsAntoine Tenart1-0/+5
2021-10-07netfilter: nf_tables: skip netdev events generated on netns removalFlorian Westphal1-6/+3
2021-10-07netfilter: Kconfig: use 'default y' instead of 'm' for bool config optionVegard Nossum1-1/+1
2021-10-07netfilter: xt_IDLETIMER: fix panic that occurs when timer_type has garbage valueJuhee Kang1-1/+1
2021-10-02netfilter: nf_tables: honor NLM_F_CREATE and NLM_F_EXCL in event notificationPablo Neira Ayuso2-13/+36
2021-09-28netfilter: nf_tables: reverse order in rule replacement expansionPablo Neira Ayuso1-6/+4
2021-09-28netfilter: nf_tables: add position handle in event notificationPablo Neira Ayuso1-9/+25
2021-09-21netfilter: conntrack: serialize hash resizes and cleanupsEric Dumazet1-33/+37
2021-09-21netfilter: log: work around missing softdep backend moduleFlorian Westphal3-3/+34
2021-09-21netfilter: nf_nat_masquerade: defer conntrack walk to work queueFlorian Westphal1-26/+24
generated by cgit v1.2.3 (git 2.39.0) at 2024-05-20 03:02:30 +0300