messages from 2024-01-10 19:42:31 to 2024-01-29 12:55:54 UTC [more...]
[PATCH nf] netfilter: nft_ct: sanitize layer 3 and 4 protocol number in custom expectations
2024-01-29 12:55 UTC
[PATCH 0/1] ipset performance regression in swap fix
2024-01-29 9:57 UTC (2+ messages)
` [PATCH 1/1] netfilter: ipset: fix performance regression in swap operation
[RFC PATCH 0/1] netfilter: nat: restore default DNAT behavior
2024-01-29 7:16 UTC (5+ messages)
` [RFC PATCH 1/1] "
[PATCH bpf-next v4 0/3] Annotate kfuncs in .BTF_ids section
2024-01-29 1:24 UTC (2+ messages)
` [PATCH bpf-next v4 3/3] bpf: treewide: Annotate BPF kfuncs in BTF
[PATCH nf-next] netfilter: nf_conncount: Use KMEM_CACHE instead of kmem_cache_create()
2024-01-27 10:34 UTC (2+ messages)
` [PATCH nf-next] netfilter: nf_conncount: Use KMEM_CACHE() "
[PATCH nf] netfilter: check SCTP_CID_SHUTDOWN_ACK for vtag setting in sctp_new
2024-01-26 0:01 UTC (2+ messages)
[ANN] net-next is OPEN
2024-01-25 17:34 UTC (13+ messages)
` [netfilter-core] "
[PATCH iptables] extensions: libebt_stp: fix range checking
2024-01-25 14:44 UTC (7+ messages)
[PATCH net 0/6] Netfilter fixes for net
2024-01-25 5:10 UTC (8+ messages)
` [PATCH net 1/6] netfilter: nf_tables: cleanup documentation
` [PATCH net 2/6] netfilter: nft_chain_filter: handle NETDEV_UNREGISTER for inet/ingress basechain
` [PATCH net 3/6] netfilter: nft_limit: reject configurations that cause integer overflow
` [PATCH net 4/6] netfilter: nf_tables: restrict anonymous set and map names to 16 bytes
` [PATCH net 5/6] netfilter: nf_tables: reject QUEUE/DROP verdict parameters
` [PATCH net 6/6] netfilter: nf_tables: validate NFPROTO_* family
[PATCH libnetfilter_conntrack 0/2] dump/flush support filtering by zone
2024-01-24 20:23 UTC (3+ messages)
` [PATCH libnetfilter_conntrack 1/2] dump: "
[PATCH nf,v3] netfilter: nf_tables: validate NFPROTO_* family
2024-01-24 17:31 UTC
[PATCH nf,v2] netfilter: nf_tables: validate NFPROTO_{IPV4,IPV6,INET} family
2024-01-24 17:30 UTC
[iptables PATCH] iptables: Add missing error codes
2024-01-24 14:37 UTC (4+ messages)
[PATCH nf-next] netfilter: arptables: allow arptables-nft only builds
2024-01-24 13:46 UTC (2+ messages)
[PATCH nf-next 1/2] netfilter: xtables: add _LEGACY kconfig symbol
2024-01-24 9:21 UTC (2+ messages)
` [PATCH nf-next 2/2] netfilter: ebtables: "
[PATCH nf-next] netfilter: expect: Simplify the allocation of slab caches in nf_conntrack_expect_init
2024-01-24 8:15 UTC
[PATCH net 00/14] Netfilter fixes for net
2024-01-23 17:20 UTC (24+ messages)
` [PATCH net 01/14] netfilter: nf_tables: reject invalid set policy
` [PATCH net 02/14] netfilter: nf_tables: validate .maxattr at expression registration
` [PATCH net 03/14] netfilter: nf_tables: bail out if stateful expression provides no .clone
` [PATCH net 04/14] netfilter: nft_limit: do not ignore unsupported flags
` [PATCH net 05/14] netfilter: nfnetlink_log: use proper helper for fetching physinif
` [PATCH net 06/14] netfilter: nf_queue: remove excess nf_bridge variable
` [PATCH net 07/14] netfilter: propagate net to nf_bridge_get_physindev
` [PATCH net 08/14] netfilter: bridge: replace physindev with physinif in nf_bridge_info
` [PATCH net 09/14] netfilter: nf_tables: check if catch-all set element is active in next generation
` [PATCH net 10/14] netfilter: nf_tables: do not allow mismatch field size and set key length
` [PATCH net 11/14] netfilter: nf_tables: skip dead set elements in netlink dump
` [PATCH net 12/14] netfilter: nf_tables: reject NFT_SET_CONCAT with not field length description
` [PATCH net 13/14] ipvs: avoid stat macros calls from preemptible context
` [PATCH net 14/14] netfilter: ipset: fix performance regression in swap operation
[PATCH 64/82] netfilter: Refactor intentional wrap-around test
2024-01-23 18:03 UTC (2+ messages)
[PATCH] netfilter: nf_tables: Add a null pointer check in two functions
2024-01-23 17:46 UTC (4+ messages)
` "
[PATCH nf] netfilter: nf_tables: validate NFPROTO_{IPV4,IPV6,INET} family
2024-01-23 17:10 UTC (2+ messages)
[PATCH] tests: shell: add test to cover ct offload by using nft flowtables To cover kernel patch ("netfilter: nf_tables: set transport offset from mac header for netdev/egress")
2024-01-23 8:20 UTC (5+ messages)
[PATCH net] ipvs: Simplify the allocation of ip_vs_conn slab caches
2024-01-22 7:35 UTC (6+ messages)
PROBLEM: nf_conntrack tcp SYN reuse results in incorrect window scaling
2024-01-21 21:51 UTC (4+ messages)
` [PATCH] netfilter: conntrack: correct window scaling with retransmitted SYN
[PATCH nf] netfilter: nf_tables: reject QUEUE/DROP verdict parameters
2024-01-20 21:50 UTC
[PATCH nft 0/2] fix host-endian constant values in set lookup keys
2024-01-19 12:47 UTC (3+ messages)
` [PATCH nft 1/2] netlink_delinearize: move concat and value postprocessing to helpers
` [PATCH nft 2/2] evaluate: permit use of host-endian constant values in set lookup keys
[PATCH nf] netfilter: nf_tables: restrict anonymous set and map names to 16 bytes
2024-01-19 12:34 UTC
[PATCH nf] netfilter: nft_limit: reject configurations that cause integer overflow
2024-01-19 12:11 UTC
[PATCH nf] netfilter: nft_chain_filter: handle NETDEV_UNREGISTER for inet/ingress basechain
2024-01-18 22:22 UTC
[PATCH net,v2 00/13] Netfilter fixes for net
2024-01-18 21:10 UTC (15+ messages)
` [PATCH net 01/13] netfilter: nf_tables: reject invalid set policy
` [PATCH net 02/13] netfilter: nf_tables: validate .maxattr at expression registration
` [PATCH net 03/13] netfilter: nf_tables: bail out if stateful expression provides no .clone
` [PATCH net 04/13] netfilter: nft_limit: do not ignore unsupported flags
` [PATCH net 05/13] netfilter: nfnetlink_log: use proper helper for fetching physinif
` [PATCH net 06/13] netfilter: nf_queue: remove excess nf_bridge variable
` [PATCH net 07/13] netfilter: propagate net to nf_bridge_get_physindev
` [PATCH net 08/13] netfilter: bridge: replace physindev with physinif in nf_bridge_info
` [PATCH net 09/13] netfilter: nf_tables: check if catch-all set element is active in next generation
` [PATCH net 10/13] netfilter: nf_tables: do not allow mismatch field size and set key length
` [PATCH net 11/13] netfilter: nf_tables: skip dead set elements in netlink dump
` [PATCH net 12/13] netfilter: nf_tables: reject NFT_SET_CONCAT with not field length description
` [PATCH net 13/13] ipvs: avoid stat macros calls from preemptible context
[PATCH nft] tests: py: remove huge-limit test cases
2024-01-18 12:24 UTC
[syzbot] [netfilter?] WARNING in nf_hook_entry_head
2024-01-17 18:07 UTC
[PATCH v3 0/4] netlink: bridge: fix nf_bridge->physindev use after free
2024-01-17 14:15 UTC (10+ messages)
` [PATCH v3 1/4] netfilter: nfnetlink_log: use proper helper for fetching physinif
` [PATCH v3 2/4] netfilter: nf_queue: remove excess nf_bridge variable
` [PATCH v3 3/4] netfilter: propagate net to nf_bridge_get_physindev
` [PATCH v3 4/4] netfilter: bridge: replace physindev with physinif in nf_bridge_info
[PATCHv2 RFC net-next 00/14] ipvs: per-net tables and optimizations
2024-01-17 13:09 UTC (4+ messages)
` [PATCHv2 RFC net-next 08/14] ipvs: use resizable hash table for services
[PATCH 0/1] ipset performance regression in swap fix
2024-01-17 12:44 UTC (3+ messages)
` [PATCH 1/1] netfilter: ipset: fix performance regression in swap operation
[PATCH net] net: ipvs: avoid stat macros calls from preemptible context
2024-01-17 12:44 UTC (4+ messages)
[PATCH nft] evaluate: don't assert on net/transport header conflict
2024-01-16 14:21 UTC
[RFC nf-next v5 0/2] netfilter: bpf: support prog update
2024-01-16 13:46 UTC (2+ messages)
Performance regression in ip_set_swap on 6.1.69
2024-01-16 7:57 UTC (13+ messages)
` "
` Re:Performance regression in ip_set_swap on 6.7.0
` Performance "
netfilter ipv6 flow offloading seemingly causing hangs - how to debug?
2024-01-15 16:01 UTC (2+ messages)
[PATCH nft] rule: fix sym refcount assertion
2024-01-15 13:27 UTC
[PATCH nft] evaluate: error out when store needs more than one 128bit register of align fixup
2024-01-15 13:11 UTC
[PATCH nf] netfilter: nf_tables: skip dead set elements in netlink dump
2024-01-15 13:08 UTC
[PATCH nf] netfilter: nf_tables: reject NFT_SET_CONCAT with not field length description
2024-01-15 13:08 UTC
[PATCH nf] netfilter: nf_tables: do not allow mismatch field size and set key length
2024-01-15 13:07 UTC
[PATCH bpf-next v3 0/3] Annotate kfuncs in .BTF_ids section
2024-01-13 19:49 UTC (6+ messages)
[PATCH nf] netfilter: nf_tables: check if catch-all set element is active in next generation
2024-01-12 22:31 UTC
[PATCH libnftnl,v3] set_elem: use nftnl_data_cpy() in NFTNL_SET_ELEM_{KEY,KEY_END,DATA}
2024-01-12 16:36 UTC
[PATCH libnftnl] set_elem: use nftnl_data_cpy() in NFTNL_SET_ELEM_{KEY,KEY_END,DATA}
2024-01-12 16:21 UTC
[PATCH libnftnl] set: buffer overflow in NFTNL_SET_DESC_CONCAT setter
2024-01-12 12:39 UTC (4+ messages)
[PATCH nft] rule: do not crash if to-be-printed flowtable lacks priority
2024-01-12 12:32 UTC
[PATCH 1/2] parser: reject raw payload expressions with 0 length
2024-01-12 12:27 UTC
[PATCH nft v3] src: do not merge a set with a erroneous one
2024-01-12 12:19 UTC
[PATCH libnftnl] set_elem: use nftnl_data_cpy() in NFTNL_SET_ELEM_{KEY,KEY_END,DATA}
2024-01-12 11:36 UTC
[PATCH nft 0/2] memleak fixes for tests/shell/testcases/bogons/nft-f/
2024-01-11 21:55 UTC (3+ messages)
` [PATCH nft 1/2] evaluate: release key expression in error path of implicit map with unknown datatype
` [PATCH nft 2/2] evaluate: release mpz type in expr_evaluate_list() error path
[PATCH nft,v2] evaluate: bail out if anonymous concat set defines a non concat expression
2024-01-11 21:50 UTC
[PATCH nft 0/2] evaluate: add more checks for '... set 1-3'
2024-01-11 17:14 UTC (3+ messages)
` [PATCH nft 1/2] evaluate: tproxy: move range error checks after arg evaluation
` [PATCH nft v2 2/2] evaluate: add missing range checks for dup,fwd and payload statements
[PATCH v14 00/12] Network support for Landlock
2024-01-11 17:06 UTC (6+ messages)
` [PATCH v14 10/12] selftests/landlock: Add network tests
` "
[PATCH nft] evaluate: disable ct set with ranges
2024-01-11 17:03 UTC (3+ messages)
[PATCH nft] evaluate: error out when expression has no datatype
2024-01-11 15:57 UTC
GUI Frontend for iptables and nftables Linux firewalls
2024-01-11 13:49 UTC (5+ messages)
[PATCH nft] payload: only assert if l2 header base has no length
2024-01-11 12:11 UTC
[PATCH nft 0/4] assorted fixes
2024-01-11 9:30 UTC (5+ messages)
` [PATCH nft 3/4] evaluate: bail out if anonymous concat set defines a non concat expression
` [PATCH nft 4/4] Revert "datatype: do not assert when value exceeds expected width"
[iptables PATCH v2 0/3] iptables-save: Avoid /etc/protocols lookups
2024-01-10 22:41 UTC (4+ messages)
` [iptables PATCH v2 1/3] Revert "xshared: Print protocol numbers if --numeric was given"
` [iptables PATCH v2 2/3] libxtables: Add dccp and ipcomp to xtables_chain_protos
` [iptables PATCH v2 3/3] iptables-save: Avoid /etc/protocols lookups
[iptables PATCH v2] ebtables: Default to extrapositioned negations
2024-01-10 22:34 UTC (2+ messages)
page: next (older) | prev (newer) | latest
- recent:[subjects (threaded)|topics (new)|topics (active)]
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).