summaryrefslogtreecommitdiffstats
path: root/net/netfilter
AgeCommit message (Expand)AuthorLines
2021-02-09netfilter: nftables: relax check for stateful expressions in set definitionPablo Neira Ayuso-13/+15
2021-02-09netfilter: conntrack: skip identical origin tuple in same zone onlyFlorian Westphal-1/+2
2021-02-04netfilter: flowtable: fix tcp and udp header checksum updateSven Auhagen-2/+2
2021-02-04netfilter: nftables: fix possible UAF over chains from packet path in netnsPablo Neira Ayuso-6/+19
2021-02-04netfilter: xt_recent: Fix attempt to update deleted entryJozsef Kadlecsik-2/+10
2021-01-16netfilter: nft_dynset: dump expressions when set definition contains no expre...Pablo Neira Ayuso-14/+17
2021-01-16netfilter: nft_dynset: add timeout extension to templatePablo Neira Ayuso-1/+3
2021-01-16netfilter: nft_dynset: honor stateful expressions in set definitionPablo Neira Ayuso-3/+8
2021-01-11netfilter: nf_nat: Fix memleak in nf_nat_initDinghao Liu-0/+1
2021-01-10netfilter: conntrack: fix reading nf_conntrack_bucketsJesper Dangaard Brouer-0/+3
2020-12-28netfilter: nftables: add set expression flagsPablo Neira Ayuso-3/+12
2020-12-28netfilter: nft_dynset: report EOPNOTSUPP on missing set featurePablo Neira Ayuso-3/+3
2020-12-27netfilter: xt_RATEEST: reject non-null terminated string from userspaceFlorian Westphal-0/+3
2020-12-18Merge git://git.kernel.org/pub/scm/linux/kernel/git/pablo/nfJakub Kicinski-26/+20
2020-12-17netfilter: ipset: fix shift-out-of-bounds in htable_bits()Vasily Averin-15/+5
2020-12-17netfilter: ipset: fixes possible oops in mtype_resizeVasily Averin-9/+13
2020-12-16Merge tag 'selinux-pr-20201214' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds-1/+1
2020-12-16netfilter: nftables: fix incorrect increment of loop counterColin Ian King-2/+2
2020-12-14Merge git://git.kernel.org/pub/scm/linux/kernel/git/pablo/nf-nextJakub Kicinski-105/+450
2020-12-12netfilter: nftables: netlink support for several set element expressionsPablo Neira Ayuso-6/+143
2020-12-12netfilter: nftables: generalize set extension to support for several expressionsPablo Neira Ayuso-47/+168
2020-12-12netfilter: nftables: generalize set expressions supportPablo Neira Ayuso-27/+66
2020-12-12netfilter: ctnetlink: add timeout and protoinfo to destroy eventsFlorian Westphal-22/+48
2020-12-11Merge git://git.kernel.org/pub/scm/linux/kernel/git/netdev/netJakub Kicinski-41/+26
2020-12-09netfilter: nft_ct: Remove confirmation check for NFT_CT_IDBrett Mastbergen-2/+0
2020-12-08netfilter: nftables: comment indirect serialization of commit_mutex with rtnl...Pablo Neira Ayuso-0/+4
2020-12-08netfilter: nft_dynset: fix timeouts later than 23 daysPablo Neira Ayuso-5/+7
2020-12-08netfilter: x_tables: Switch synchronization to RCUSubash Abhinov Kasiviswanathan-34/+15
2020-12-03Merge git://git.kernel.org/pub/scm/linux/kernel/git/netdev/netJakub Kicinski-38/+110
2020-12-01netfilter: use actual socket sk for REJECT actionJan Engelhardt-2/+4
2020-12-01netfilter: nfnl_acct: remove data from struct netWang Shanker-9/+29
2020-12-01netfilter: Remove unnecessary conversion to boolKaixu Xia-1/+1
2020-11-27netfilter: nftables_offload: build mask based from the matching bytesPablo Neira Ayuso-29/+61
2020-11-27netfilter: nftables_offload: set address type in control dissectorPablo Neira Ayuso-0/+21
2020-11-27ipvs: fix possible memory leak in ip_vs_control_net_initWang Hai-6/+25
2020-11-26netfilter: nf_tables: avoid false-postive lockdep splatFlorian Westphal-1/+2
2020-11-26netfilter: ipset: prevent uninit-value in hash_ip6_addEric Dumazet-2/+1
2020-11-23lsm,selinux: pass flowi_common instead of flowi to the LSM hooksPaul Moore-1/+1
2020-11-22ipvs: replace atomic_add_return()Yejune Deng-3/+3
2020-11-20net: openvswitch: Be liberal in tcp conntrack.Numan Siddique-6/+0
2020-11-16treewide: rename nla_strlcpy to nla_strscpy.Francis Laniel-10/+10
2020-11-06Merge git://git.kernel.org/pub/scm/linux/kernel/git/netdev/netJakub Kicinski-21/+41
2020-11-01netfilter: nft_reject_inet: allow to use reject from inet ingressPablo Neira Ayuso-1/+13
2020-11-01netfilter: nftables: Add __printf() attributeAndrew Lunn-1/+2
2020-10-31netfilter: ipset: Expose the initval hash parameter to userspaceJozsef Kadlecsik-16/+33
2020-10-31netfilter: ipset: Add bucketsize parameter to all hash typesJozsef Kadlecsik-39/+71
2020-10-31netfilter: ipset: Support the -exist flag with the destroy commandJozsef Kadlecsik-1/+3
2020-10-31netfilter: ipset: Update byte and packet counters regardless of whether they ...Stefano Brivio-1/+2
2020-10-31netfilter: nft_reject: add reject verdict support for netdevJose M. Guisado Gomez-0/+200
2020-10-31netfilter: nft_reject: unify reject init and dump into nft_rejectJose M. Guisado Gomez-59/+13
generated by cgit v1.2.3 (git 2.46.0) at 2026-03-19 19:40:59 +0000