summaryrefslogtreecommitdiff
path: root/net/netfilter
AgeCommit message (Expand)AuthorFilesLines
2023-03-11netfilter: ctnetlink: fix possible refcount leak in ctnetlink_create_conntrack()Hangyu Hua1-1/+4
2023-02-22netfilter: nft_tproxy: restrict to prerouting hookFlorian Westphal1-0/+8
2023-02-01netfilter: conntrack: unify established states for SCTP pathsSriram Yagnaraman2-62/+39
2023-02-01netfilter: conntrack: fix vtag checks for ABORT/SHUTDOWN_COMPLETESriram Yagnaraman1-9/+16
2023-02-01netfilter: nft_set_rbtree: skip elements in transaction from garbage collectionPablo Neira Ayuso1-1/+15
2023-02-01netfilter: nft_set_rbtree: Switch to node list walk for overlap detectionPablo Neira Ayuso1-127/+189
2023-02-01netfilter: conntrack: do not renew entry stuck in tcp SYN_SENT stateFlorian Westphal1-0/+10
2023-01-18netfilter: ipset: Fix overflow before widen in the bitmap_ip_create() function.Gavrilov Ilia1-2/+2
2023-01-18netfilter: nft_payload: incorrect arithmetics when fetching VLAN header bitsPablo Neira Ayuso1-1/+1
2023-01-14netfilter: ipset: Rework long task execution when adding/deleting entriesJozsef Kadlecsik10-80/+67
2023-01-14netfilter: ipset: fix hash:net,port,net hang with /0 subnetJozsef Kadlecsik1-19/+21
2023-01-14netfilter: flowtable: really fix NAT IPv6 offloadQingfang DENG1-3/+3
2023-01-14netfilter: conntrack: set icmpv6 redirects as RELATEDFlorian Westphal1-0/+53
2022-12-14netfilter: ctnetlink: fix compilation warning after data race fixes in ct markPablo Neira Ayuso1-9/+10
2022-12-14netfilter: nft_set_pipapo: Actually validate intervals in fields after the fi...Stefano Brivio1-2/+3
2022-12-02netfilter: flowtable_offload: add missing lockingFelix Fietkau1-0/+4
2022-12-02netfilter: ipset: regression in ip_set_hash_ip.cVishwanath Pai1-5/+3
2022-12-02netfilter: ipset: Limit the maximal range of consecutive elements to add/deleteJozsef Kadlecsik10-7/+85
2022-12-02netfilter: conntrack: Fix data-races around ct markDaniel Xu5-23/+29
2022-11-10ipvs: fix WARNING in ip_vs_app_net_cleanup()Zhengchao Shao1-2/+8
2022-11-10ipvs: fix WARNING in __ip_vs_cleanup_batch()Zhengchao Shao1-5/+21
2022-11-10ipvs: use explicitly signed charsJason A. Donenfeld1-2/+2
2022-11-10netfilter: nf_tables: release flow rule object from commit pathPablo Neira Ayuso1-3/+3
2022-09-28netfilter: nf_tables: fix percpu memory leak at nf_tables_addchain()Tetsuo Handa1-0/+1
2022-09-28netfilter: nf_tables: fix nft_counters_enabled underflow at nf_tables_addchain()Tetsuo Handa1-4/+3
2022-09-28netfilter: nfnetlink_osf: fix possible bogus match in nf_osf_find()Pablo Neira Ayuso1-1/+3
2022-09-28netfilter: nf_conntrack_irc: Tighten matching on DCC messageDavid Leadbeater1-6/+28
2022-09-28netfilter: nf_conntrack_sip: fix ct_sip_walk_headersIgor Ryzhov1-2/+2
2022-09-15netfilter: nf_conntrack_irc: Fix forged IP logicDavid Leadbeater1-2/+3
2022-09-15netfilter: nf_tables: clean up hook list when offload flags check failsPablo Neira Ayuso1-1/+3
2022-09-05netfilter: conntrack: NF_CONNTRACK_PROCFS should no longer default to yGeert Uytterhoeven1-1/+0
2022-08-31net: Fix data-races around sysctl_[rw]mem_(max|default).Kuniyuki Iwashima1-2/+2
2022-08-31netfilter: nf_tables: disallow binding to already bound chainPablo Neira Ayuso1-0/+2
2022-08-31netfilter: nf_tables: disallow jump to implicit chain from set elementPablo Neira Ayuso1-0/+4
2022-08-31netfilter: nf_tables: upfront validation of data via nft_data_init()Pablo Neira Ayuso5-113/+124
2022-08-31netfilter: bitwise: improve error goto labelsJeremy Sowden1-5/+6
2022-08-31netfilter: nft_cmp: optimize comparison for 16-bytesPablo Neira Ayuso2-2/+116
2022-08-31netfilter: nf_tables: consolidate rule verdict trace callPablo Neira Ayuso1-7/+32
2022-08-31netfilter: nftables: remove redundant assignment of variable errColin Ian King1-3/+1
2022-08-31netfilter: nft_tunnel: restrict it to netdev familyPablo Neira Ayuso1-0/+1
2022-08-31netfilter: nft_osf: restrict osf to ipv4, ipv6 and inet familiesPablo Neira Ayuso1-3/+15
2022-08-31netfilter: nf_tables: do not leave chain stats enabled on errorPablo Neira Ayuso1-2/+4
2022-08-31netfilter: nft_payload: do not truncate csum_offset and csum_typePablo Neira Ayuso1-6/+13
2022-08-31netfilter: nft_payload: report ERANGE for too long offset and lengthPablo Neira Ayuso1-2/+8
2022-08-25netfilter: nf_tables: fix audit memory leak in nf_tables_commitDongliang Mu1-0/+12
2022-08-25netfilter: nftables: fix a warning message in nf_tables_commit_audit_collect()Dan Carpenter1-1/+1
2022-08-25netfilter: add helper function to set up the nfnetlink header and use itPablo Neira Ayuso10-208/+75
2022-08-25netfilter: nftables: add helper function to set the base sequence numberPablo Neira Ayuso1-9/+14
2022-08-25audit: log nftables configuration change events once per tableRichard Guy Briggs1-83/+103
2022-08-25netfilter: nf_tables: check NFT_SET_CONCAT flag if field_count is specifiedPablo Neira Ayuso1-0/+5
generated by cgit v1.2.3 (git 2.39.0) at 2024-07-14 18:19:01 +0300