summaryrefslogtreecommitdiff
path: root/net/netfilter
AgeCommit message (Expand)AuthorFilesLines
2023-08-23netfilter: nf_tables: defer gc run if previous batch is still pendingFlorian Westphal2-0/+6
2023-08-23netfilter: nf_tables: fix out of memory error handlingFlorian Westphal1-3/+10
2023-08-23netfilter: nf_tables: use correct lock to protect gc_listPablo Neira Ayuso1-2/+2
2023-08-23netfilter: nf_tables: GC transaction race with abort pathPablo Neira Ayuso1-1/+5
2023-08-23netfilter: nf_tables: flush pending destroy work before netlink notifierPablo Neira Ayuso1-1/+1
2023-08-23netfilter: nf_tables: validate all pending tablesFlorian Westphal1-4/+7
2023-08-16netfilter: nft_dynset: disallow object mapsPablo Neira Ayuso1-0/+3
2023-08-16netfilter: nf_tables: GC transaction race with netns dismantlePablo Neira Ayuso1-1/+6
2023-08-16netfilter: nf_tables: fix GC transaction races with netns and netlink event e...Pablo Neira Ayuso1-4/+32
2023-08-16ipvs: fix racy memcpy in proc_do_sync_thresholdSishuai Gong1-0/+4
2023-08-16netfilter: set default timeout to 3 secs for sctp shutdown send and recv stateXin Long1-3/+3
2023-08-16netfilter: nf_tables: don't fail inserts if duplicate has expiredFlorian Westphal1-19/+4
2023-08-16netfilter: nf_tables: deactivate catchall elements in next generationFlorian Westphal1-0/+1
2023-08-16netfilter: nf_tables: fix kdoc warnings after gc reworkFlorian Westphal1-1/+1
2023-08-16netfilter: nf_tables: fix false-positive lockdep splatFlorian Westphal1-1/+12
2023-08-10netfilter: nf_tables: remove busy mark and gc batch APIPablo Neira Ayuso1-47/+1
2023-08-10netfilter: nft_set_hash: mark set element as dead when deleting from packet pathPablo Neira Ayuso1-2/+4
2023-08-10netfilter: nf_tables: adapt set backend to use GC transaction APIPablo Neira Ayuso4-103/+173
2023-08-10netfilter: nf_tables: GC transaction API to avoid race with control planePablo Neira Ayuso1-11/+237
2023-08-09netfilter: nf_tables: don't skip expired elements during walkFlorian Westphal4-10/+16
2023-07-29net: annotate data-races around sk->sk_markEric Dumazet2-3/+3
2023-07-26netfilter: nf_tables: disallow rule addition to bound chain via NFTA_RULE_CHA...Pablo Neira Ayuso1-2/+3
2023-07-26netfilter: nf_tables: skip immediate deactivate in _PREPARE_ERRORPablo Neira Ayuso1-9/+18
2023-07-26netfilter: nft_set_rbtree: fix overlap expiration walkFlorian Westphal1-6/+14
2023-07-20netfilter: nf_tables: skip bound chain on rule flushPablo Neira Ayuso1-0/+2
2023-07-20netfilter: nf_tables: skip bound chain in netns release pathPablo Neira Ayuso1-0/+3
2023-07-20netfilter: nft_set_pipapo: fix improper element removalFlorian Westphal1-1/+5
2023-07-20netfilter: nf_tables: can't schedule in nft_chain_validateFlorian Westphal1-2/+2
2023-07-20netfilter: nf_tables: fix spurious set element insertion failureFlorian Westphal1-0/+3
2023-07-06Merge tag 'nf-23-07-06' of git://git.kernel.org/pub/scm/linux/kernel/git/netf...Paolo Abeni8-96/+148
2023-07-06netfilter: nf_tables: prevent OOB access in nft_byteorder_evalThadeu Lima de Souza Cascardo1-7/+7
2023-07-05netfilter: nf_tables: do not ignore genmask when looking up chain by idThadeu Lima de Souza Cascardo1-4/+7
2023-07-05netfilter: conntrack: don't fold port numbers into addresses before hashingFlorian Westphal1-13/+7
2023-07-05netfilter: conntrack: Avoid nf_ct_helper_hash uses after freeFlorent Revest1-0/+4
2023-07-05netfilter: conntrack: gre: don't set assured flag for clash entriesFlorian Westphal1-1/+9
2023-07-05netfilter: nf_tables: report use refcount overflowPablo Neira Ayuso4-71/+114
2023-07-03Merge tag 'leds-next-6.5' of git://git.kernel.org/pub/scm/linux/kernel/git/le...Linus Torvalds1-2/+1
2023-06-29Merge tag 'net-next-6.5' of git://git.kernel.org/pub/scm/linux/kernel/git/net...Linus Torvalds31-201/+543
2023-06-28Merge tag 'hardening-v6.5-rc1' of git://git.kernel.org/pub/scm/linux/kernel/g...Linus Torvalds1-5/+5
2023-06-27Merge git://git.kernel.org/pub/scm/linux/kernel/git/netdev/netJakub Kicinski3-5/+55
2023-06-26Merge tag 'nf-next-23-06-26' of git://git.kernel.org/pub/scm/linux/kernel/git...Jakub Kicinski21-70/+194
2023-06-26netfilter: nf_tables: fix underflow in chain reference counterPablo Neira Ayuso1-1/+3
2023-06-26netfilter: nf_tables: unbind non-anonymous set if rule construction failsPablo Neira Ayuso1-0/+2
2023-06-26netfilter: nf_conntrack_sip: fix the ct_sip_parse_numerical_param() return va...Ilia.Gavrilov1-1/+1
2023-06-26netfilter: conntrack: dccp: copy entire header to stack buffer, not just basi...Florian Westphal1-3/+49
2023-06-26netfilter: nf_tables: limit allowed range via nla_policyFlorian Westphal15-21/+21
2023-06-26netfilter: nf_tables: Introduce NFT_MSG_GETSETELEM_RESETPhil Sutter1-20/+48
2023-06-26netfilter: snat: evict closing tcp entries on reply tuple collisionFlorian Westphal1-4/+88
2023-06-26netfilter: nf_tables: permit update of set sizeFlorian Westphal1-0/+4
2023-06-26netfilter: ipset: remove rcu_read_lock_bh pair from ip_set_testFlorian Westphal1-2/+0
generated by cgit v1.2.3 (git 2.39.0) at 2024-07-22 21:34:05 +0300