aboutsummaryrefslogtreecommitdiffstats
path: root/net/netfilter
Commit message (Expand)AuthorAgeFilesLines
...
| * | | | netfilter: remove nf_conntrack_helper sysctl and modparam togglesPablo Neira Ayuso2022-08-315-94/+11
| | |_|/ | |/| |
* | | | netfilter: nft_payload: reject out-of-range attributes via policyFlorian Westphal2022-09-071-3/+3
| |/ / |/| |
* | | netlink: Bounds-check struct nlmsgerr creationKees Cook2022-09-051-3/+5
* | | genetlink: start to validate reserved header bytesJakub Kicinski2022-08-291-0/+1
* | | Merge git://git.kernel.org/pub/scm/linux/kernel/git/netdev/netJakub Kicinski2022-08-259-22/+106
|\| |
| * | Merge git://git.kernel.org/pub/scm/linux/kernel/git/netfilter/nfJakub Kicinski2022-08-248-20/+104
| |\ \
| | * | netfilter: flowtable: fix stuck flows on cleanup due to pending workPablo Neira Ayuso2022-08-242-4/+11
| | * | netfilter: flowtable: add function to invoke garbage collection immediatelyPablo Neira Ayuso2022-08-241-3/+9
| | * | netfilter: nf_tables: disallow binding to already bound chainPablo Neira Ayuso2022-08-241-0/+2
| | * | netfilter: nft_tunnel: restrict it to netdev familyPablo Neira Ayuso2022-08-241-0/+1
| | * | netfilter: nft_osf: restrict osf to ipv4, ipv6 and inet familiesPablo Neira Ayuso2022-08-241-3/+15
| | * | netfilter: nf_tables: do not leave chain stats enabled on errorPablo Neira Ayuso2022-08-241-2/+4
| | * | netfilter: nft_payload: do not truncate csum_offset and csum_typePablo Neira Ayuso2022-08-241-6/+13
| | * | netfilter: nft_payload: report ERANGE for too long offset and lengthPablo Neira Ayuso2022-08-241-2/+8
| | * | netfilter: nf_tables: make table handle allocation per-netns friendlyPablo Neira Ayuso2022-08-241-2/+1
| | * | netfilter: nf_tables: disallow updates of implicit chainPablo Neira Ayuso2022-08-241-0/+3
| | * | netfilter: nft_tproxy: restrict to prerouting hookFlorian Westphal2022-08-231-0/+8
| | * | netfilter: conntrack: work around exceeded receive windowFlorian Westphal2022-08-231-0/+31
| * | | net: Fix data-races around sysctl_[rw]mem_(max|default).Kuniyuki Iwashima2022-08-241-2/+2
| |/ /
* | | Remove DECnet support from kernelStephen Hemminger2022-08-222-17/+0
* | | Merge git://git.kernel.org/pub/scm/linux/kernel/git/netdev/netJakub Kicinski2022-08-187-90/+182
|\| |
| * | netfilter: conntrack: NF_CONNTRACK_PROCFS should no longer default to yGeert Uytterhoeven2022-08-171-1/+0
| * | netfilter: nf_tables: check NFT_SET_CONCAT flag if field_count is specifiedPablo Neira Ayuso2022-08-151-0/+5
| * | netfilter: nf_tables: disallow NFT_SET_ELEM_CATCHALL and NFT_SET_ELEM_INTERVA...Pablo Neira Ayuso2022-08-151-0/+3
| * | netfilter: nf_tables: NFTA_SET_ELEM_KEY_END requires concat and interval flagsPablo Neira Ayuso2022-08-151-0/+24
| * | netfilter: nf_tables: validate NFTA_SET_ELEM_OBJREF based on NFT_SET_OBJECT flagPablo Neira Ayuso2022-08-121-4/+9
| * | netfilter: nf_tables: really skip inactive sets when allocating namePablo Neira Ayuso2022-08-111-1/+1
| * | netfilter: nfnetlink: re-enable conntrack expectation eventsFlorian Westphal2022-08-111-12/+71
| * | netfilter: nf_tables: fix scheduling-while-atomic splatFlorian Westphal2022-08-111-4/+0
| * | netfilter: nf_ct_irc: cap packet search space to 4kFlorian Westphal2022-08-111-3/+9
| * | netfilter: nf_ct_ftp: prefer skb_linearizeFlorian Westphal2022-08-111-18/+6
| * | netfilter: nf_ct_h323: cap packet size at 64kFlorian Westphal2022-08-111-1/+9
| * | netfilter: nf_ct_sane: remove pseudo skb linearizationFlorian Westphal2022-08-111-38/+30
| * | netfilter: nf_tables: possible module reference underflow in error pathPablo Neira Ayuso2022-08-101-1/+1
| * | netfilter: nf_tables: disallow NFTA_SET_ELEM_KEY_END with NFT_SET_ELEM_INTERV...Pablo Neira Ayuso2022-08-101-0/+1
| * | netfilter: nf_tables: use READ_ONCE and WRITE_ONCE for shared generation id a...Pablo Neira Ayuso2022-08-101-7/+13
| |/
* | Merge https://git.kernel.org/pub/scm/linux/kernel/git/bpf/bpf-nextJakub Kicinski2022-08-171-6/+0
|\ \ | |/ |/|
| * net: netfilter: Remove ifdefs for code shared by BPF and ctnetlinkKumar Kartikeya Dwivedi2022-08-091-6/+0
* | netfilter: nf_tables: fix null deref due to zeroed list headFlorian Westphal2022-08-091-0/+1
* | netfilter: nf_tables: disallow jump to implicit chain from set elementPablo Neira Ayuso2022-08-091-0/+4
* | netfilter: nf_tables: upfront validation of data via nft_data_init()Pablo Neira Ayuso2022-08-095-113/+124
* | netfilter: nf_tables: do not allow RULE_ID to refer to another chainThadeu Lima de Souza Cascardo2022-08-091-2/+5
* | netfilter: nf_tables: do not allow CHAIN_ID to refer to another tableThadeu Lima de Souza Cascardo2022-08-091-2/+4
* | netfilter: nf_tables: do not allow SET_ID to refer to another tableThadeu Lima de Souza Cascardo2022-08-091-1/+3
* | netfilter: nf_tables: validate variable length element extensionPablo Neira Ayuso2022-08-092-16/+70
* | netfilter: flowtable: fix incorrect Kconfig dependenciesPablo Neira Ayuso2022-08-051-2/+1
* | netfilter: nf_tables: fix crash when nf_trace is enabledFlorian Westphal2022-08-051-11/+10
|/
* Merge git://git.kernel.org/pub/scm/linux/kernel/git/netdev/netJakub Kicinski2022-07-283-1/+39
|\
| * netfilter: nft_queue: only allow supported familes and hooksFlorian Westphal2022-07-261-0/+27
| * netfilter: nf_tables: add rescheduling points during loop detection walksFlorian Westphal2022-07-261-0/+6
generated by cgit (git 2.34.1) at 2025-02-23 12:59:52 +0000