summaryrefslogtreecommitdiff
path: root/net/netfilter
AgeCommit message (Expand)AuthorFilesLines
2021-05-07netfilter: nftables: avoid potential overflows on 32bit archesEric Dumazet2-7/+10
2021-05-07netfilter: nftables: avoid overflows in nft_hash_buckets()Eric Dumazet1-1/+9
2021-05-06netfilter: nftables: Fix a memleak from userdata error path in new objectsPablo Neira Ayuso1-2/+2
2021-05-06netfilter: remove BUG_ON() after skb_header_pointer()Pablo Neira Ayuso6-7/+21
2021-05-05netfilter: nfnetlink_osf: Fix a missing skb_header_pointer() NULL checkPablo Neira Ayuso1-0/+2
2021-05-05netfilter: nfnetlink: add a missing rcu_read_unlock()Eric Dumazet1-0/+1
2021-05-04netfilter: xt_SECMARK: add new revision to fix structure layoutPablo Neira Ayuso1-19/+69
2021-04-27netfilter: nft_socket: fix build with CONFIG_SOCK_CGROUP_DATA=nArnd Bergmann1-2/+2
2021-04-27netfilter: nft_socket: fix an unused variable warningArnd Bergmann1-2/+5
2021-04-27netfilter: nftables: add catch-all set element supportPablo Neira Ayuso6-63/+458
2021-04-27netfilter: nftables: add helper function to validate set element dataPablo Neira Ayuso1-4/+11
2021-04-27netfilter: nftables: add helper function to flush set elementsPablo Neira Ayuso1-13/+18
2021-04-27netfilter: nftables: add loop check helper functionPablo Neira Ayuso1-9/+21
2021-04-27netfilter: nftables: rename set element data activation/deactivation functionsPablo Neira Ayuso1-11/+11
2021-04-26netfilter: allow to turn off xtables compat layerFlorian Westphal3-11/+21
2021-04-26netfilter: nfnetlink: consolidate callback typesPablo Neira Ayuso11-118/+261
2021-04-26netfilter: nfnetlink: pass struct nfnl_info to batch callbacksPablo Neira Ayuso2-172/+180
2021-04-26netfilter: nfnetlink: pass struct nfnl_info to rcu callbacksPablo Neira Ayuso4-116/+105
2021-04-26netfilter: nfnetlink: add struct nfnl_info and pass it to callbacksPablo Neira Ayuso9-336/+277
2021-04-26netfilter: nftables: add nft_pernet() helper functionPablo Neira Ayuso4-71/+61
2021-04-26netfilter: nf_log_syslog: Unset bridge logger in pernet exitPhil Sutter1-0/+1
2021-04-26netfilter: ip_tables: pass table pointer via nf_hook_opsFlorian Westphal1-0/+1
2021-04-26netfilter: x_tables: add xt_find_tableFlorian Westphal1-0/+17
2021-04-26netfilter: disable defrag once its no longer neededFlorian Westphal4-2/+57
2021-04-26netfilter: nft_socket: add support for cgroupsv2Pablo Neira Ayuso1-1/+47
2021-04-26netfilter: nat: move nf_xfrm_me_harder to where it is usedFlorian Westphal2-37/+38
2021-04-20Merge git://git.kernel.org/pub/scm/linux/kernel/git/pablo/nf-nextDavid S. Miller13-88/+329
2021-04-18netfilter: nftables: counter hardware offload supportPablo Neira Ayuso3-7/+69
2021-04-18netfilter: nftables_offload: special ethertype handling for VLANPablo Neira Ayuso1-0/+44
2021-04-18netfilter: nftables_offload: VLAN id needs host byteorder in flow dissectorPablo Neira Ayuso2-6/+45
2021-04-18netfilter: nft_payload: fix C-VLAN offload supportPablo Neira Ayuso1-2/+3
2021-04-17Merge git://git.kernel.org/pub/scm/linux/kernel/git/netdev/netJakub Kicinski5-25/+42
2021-04-13netfilter: flowtable: Add FLOW_OFFLOAD_XMIT_UNSPEC xmit typeRoi Dayan1-0/+3
2021-04-13netfilter: conntrack: convert sysctls to u8Florian Westphal2-41/+35
2021-04-13netfilter: conntrack: move ct counter to net_generic dataFlorian Westphal3-17/+45
2021-04-13netfilter: conntrack: move expect counter to net_generic dataFlorian Westphal2-7/+21
2021-04-13netfilter: conntrack: move autoassign_helper sysctl to net_generic dataFlorian Westphal2-6/+7
2021-04-13netfilter: conntrack: move autoassign warning member to net_generic dataFlorian Westphal1-3/+6
2021-04-13netfilter: flowtable: add vlan pop action offload supportwenxu1-0/+15
2021-04-13netfilter: flowtable: add vlan match offload supportwenxu1-0/+37
2021-04-13netfilter: nftables: clone set element expression templatePablo Neira Ayuso1-12/+34
2021-04-13netfilter: x_tables: fix compat match/target pad out-of-bound writeFlorian Westphal1-8/+2
2021-04-12netfilter: conntrack: Make global sysctls readonly in non-init netnsJonathon Reinhart1-8/+2
2021-04-10netfilter: nft_limit: avoid possible divide error in nft_limit_initEric Dumazet1-2/+2
2021-04-06netfilter: conntrack: move ecache dwork to net_generic infraFlorian Westphal2-7/+31
2021-04-06netfilter: conntrack: move sysctl pointer to net_generic infraFlorian Westphal1-4/+6
2021-04-06netfilter: x_tables: move known table lists to net_generic infraFlorian Westphal1-13/+33
2021-04-06netfilter: nf_tables: use net_generic infra for transaction dataFlorian Westphal4-128/+232
2021-04-06netfilter: cttimeout: use net_generic infraFlorian Westphal1-9/+32
2021-04-06netfilter: nfnetlink: use net_generic infraFlorian Westphal1-18/+44