Netfilter-Devel Archive on lore.kernel.org
 help / color / Atom feed
[nft PATCH] tests/py: Fix test script for Python3 tempfile
 2019-10-29 11:25 UTC  - mbox.gz / Atom

[PATCH nf-next] netfilter: nf_tables_offload: allow ethernet interface type only
 2019-10-29 10:40 UTC  - mbox.gz / Atom

libnftnl: Attribute and data length validation for objects
 2019-10-29  9:40 UTC  - mbox.gz / Atom

general protection fault in ip6_sublist_rcv
 2019-10-29  9:21 UTC  (3+ messages) - mbox.gz / Atom
` [PATCH net-next] inet: do not call sublist_rcv on empty list

[PATCH nf-next] netfilter: nf_tables_offload: support offload iif types meta offload
 2019-10-29  9:11 UTC  (4+ messages) - mbox.gz / Atom

[nft PATCH] mnl: Replace use of untyped nftnl data setters
 2019-10-28 22:38 UTC  - mbox.gz / Atom

[PATCH trivial] net: Fix various misspellings of "connect"
 2019-10-28 20:42 UTC  (4+ messages) - mbox.gz / Atom

[iptables PATCH v2 00/10] Reduce code size around arptables-nft
 2019-10-28 15:48 UTC  (11+ messages) - mbox.gz / Atom
` [iptables PATCH v2 01/10] ip6tables, xtables-arp: Drop unused struct pprot
` [iptables PATCH v2 02/10] xshared: Share a common add_command() implementation
` [iptables PATCH v2 03/10] xshared: Share a common implementation of parse_rulenumber()
` [iptables PATCH v2 04/10] Merge CMD_* defines
` [iptables PATCH v2 05/10] xtables-arp: Drop generic_opt_check()
` [iptables PATCH v2 06/10] Replace TRUE/FALSE with true/false
` [iptables PATCH v2 07/10] xtables-arp: Integrate OPT_* defines into xshared.h
` [iptables PATCH v2 08/10] xtables-arp: Drop some unused variables
` [iptables PATCH v2 09/10] xtables-arp: Use xtables_parse_interface()
` [iptables PATCH v2 10/10] nft-arp: Use xtables_print_mac_and_mask()

[PATCH nf-next] netfilter: nft_meta: offload support for interface index
 2019-10-28 15:02 UTC  - mbox.gz / Atom

[iptables PATCH 00/10] Reduce code size around arptables-nft
 2019-10-28 14:28 UTC  (13+ messages) - mbox.gz / Atom
` [iptables PATCH 01/10] ip6tables, xtables-arp: Drop unused struct pprot
` [iptables PATCH 02/10] xshared: Share a common add_command() implementation
` [iptables PATCH 03/10] xshared: Share a common implementation of parse_rulenumber()
` [iptables PATCH 04/10] Merge CMD_* defines
` [iptables PATCH 05/10] xtables-arp: Drop generic_opt_check()
` [iptables PATCH 06/10] Replace TRUE/FALSE with true/false
` [iptables PATCH 07/10] xtables-arp: Integrate OPT_* defines into xshared.h
` [iptables PATCH 08/10] xtables-arp: Drop some unused variables
` [iptables PATCH 09/10] xtables-arp: Use xtables_parse_interface()
` [iptables PATCH 10/10] nft-arp: Use xtables_print_mac_and_mask()

nftables: secmark support
 2019-10-28 14:27 UTC  (3+ messages) - mbox.gz / Atom

[PATCH nf,v2] netfilter: nf_tables_offload: check for register data length mismatches
 2019-10-28 14:07 UTC  - mbox.gz / Atom

[PATCH] netfilter: nf_tables_offload: check for register data length mismatches
 2019-10-28 14:06 UTC  - mbox.gz / Atom

[PATCH nf] netfilter: nft_cmp: check for register data length mismatches
 2019-10-28 13:48 UTC  - mbox.gz / Atom

[PATCH ghak90 V7 00/21] audit: implement container identifier
 2019-10-28 12:20 UTC  (33+ messages) - mbox.gz / Atom
` [PATCH ghak90 V7 04/21] audit: convert to contid list to check for orch/engine ownership
` [PATCH ghak90 V7 05/21] audit: log drop of contid on exit of last task
` [PATCH ghak90 V7 06/21] audit: contid limit of 32k imposed to avoid DoS
` [PATCH ghak90 V7 08/21] audit: add contid support for signalling the audit daemon
` [PATCH ghak90 V7 14/21] audit: contid check descendancy and nesting
` [PATCH ghak90 V7 20/21] audit: add capcontid to set contid outside init_user_ns

[PATCH 0/5] Netfilter/IPVS fixes for net
 2019-10-27 19:13 UTC  (7+ messages) - mbox.gz / Atom
` [PATCH 1/5] netfilter: nf_flow_table: set timeout before insertion into hashes
` [PATCH 2/5] netfilter: nf_tables_offload: restore basechain deletion
` [PATCH 3/5] ipvs: don't ignore errors in case refcounting ip_vs module fails
` [PATCH 4/5] ipvs: move old_secure_tcp into struct netns_ipvs
` [PATCH 5/5] netfilter: nft_payload: fix missing check for matching length in offloads

[PATCH nf-next 0/5] netfilter: nft_tunnel: support tunnel match expr offload
 2019-10-27 10:32 UTC  (7+ messages) - mbox.gz / Atom
` [PATCH nf-next 1/5] netfilter: nft_tunnel: add nft_tunnel_mode_validate function
` [PATCH nf-next 2/5] netfilter: nft_tunnel: support NFT_TUNNEL_IPV4_SRC/DST match
` [PATCH nf-next 3/5] netfilter: nft_tunnel: add inet type check in nft_tunnel_mode_validate
` [PATCH nf-next 4/5] netfilter: nft_tunnel: support NFT_TUNNEL_IPV6_SRC/DST match
` [PATCH nf-next 5/5] netfilter: nft_tunnel: add nft_tunnel_get_offload support

[PATCH libnfnetlink 0/1] Minimally resurrect doxygen documentation
 2019-10-27  8:49 UTC  (18+ messages) - mbox.gz / Atom
` [PATCH libnfnetlink 1/1] src: "
      ` [PATCH libnfnetlink v2 0/2] "
      ` [PATCH libnfnetlink v2 1/2] "
      ` [PATCH libnfnetlink v2 2/2] Make it clear that this library is deprecated
      ` [PATCH libnfnetlink v3 0/2] Minimally resurrect doxygen documentation
      ` [PATCH libnfnetlink v3 1/2] "
      ` [PATCH libnfnetlink v3 2/2] Make it clear that this library is deprecated

[PATCH libnetfilter_queue] src: doc: Document nfq_nlmsg_verdict_put_mark() and nfq_nlmsg_verdict_put_pkt()
 2019-10-27  8:38 UTC  - mbox.gz / Atom

[PATCH 00/31] Netfilter/IPVS updates for net-next
 2019-10-26 18:36 UTC  (33+ messages) - mbox.gz / Atom
` [PATCH 01/31] netfilter: ipset: add a coding-style fix to ip_set_ext_destroy
` [PATCH 02/31] netfilter: ipset: remove inline from static functions in .c files
` [PATCH 03/31] netfilter: ipset: move ip_set_comment functions from ip_set.h to ip_set_core.c
` [PATCH 04/31] netfilter: ipset: move functions "
` [PATCH 05/31] netfilter: ipset: make ip_set_put_flags extern
` [PATCH 06/31] netfilter: ipset: move function to ip_set_bitmap_ip.c
` [PATCH 07/31] netfilter: ipset: move ip_set_get_ip_port() to ip_set_bitmap_port.c
` [PATCH 08/31] ipvs: no need to update skb route entry for local destination packets
` [PATCH 09/31] ipvs: batch __ip_vs_cleanup
` [PATCH 10/31] ipvs: batch __ip_vs_dev_cleanup
` [PATCH 11/31] selftests: netfilter: add ipvs test script
` [PATCH 12/31] selftests: netfilter: add ipvs nat test case
` [PATCH 13/31] selftests: netfilter: add ipvs tunnel "
` [PATCH 14/31] netfilter: ecache: document extension area access rules
` [PATCH 15/31] netfilter: ctnetlink: don't dump ct extensions of unconfirmed conntracks
` [PATCH 16/31] netfilter: conntrack: free extension area immediately
` [PATCH 17/31] netfilter: add and use nf_hook_slow_list()
` [PATCH 18/31] netfilter: nft_tproxy: Fix typo in IPv6 module description
` [PATCH 19/31] netfilter: nf_flow_table: move priority to struct nf_flowtable
` [PATCH 20/31] netfilter: nf_tables: dynamically allocate hooks per net_device in flowtables
` [PATCH 21/31] netfilter: nf_tables: allow netdevice to be used only once per flowtable
` [PATCH 22/31] netfilter: nf_tables: increase maximum devices number "
` [PATCH 23/31] netfilter: nf_tables_offload: add nft_flow_block_chain()
` [PATCH 24/31] netfilter: nf_tables_offload: Pass callback list to nft_setup_cb_call()
` [PATCH 25/31] netfilter: nf_tables_offload: add nft_flow_cls_offload_setup()
` [PATCH 26/31] netfilter: nf_tables_offload: remove rules on unregistered device only
` [PATCH 27/31] netfilter: nf_tables: support for multiple devices per netdev hook
` [PATCH 28/31] netfilter: ecache: don't look for ecache extension on dying/unconfirmed conntracks
` [PATCH 29/31] netfilter: nf_tables_offload: add nft_chain_offload_cmd()
` [PATCH 30/31] netfilter: nf_tables_offload: add nft_flow_block_offload_init()
` [PATCH 31/31] netfilter: nf_tables_offload: unbind if multi-device binding fails

[PATCH nf-next] netfilter: ecache: don't look for ecache extension on dying/unconfirmed conntracks
 2019-10-26 18:27 UTC  (3+ messages) - mbox.gz / Atom

[PATCH AUTOSEL 5.3 49/99] netfilter: conntrack: avoid possible false sharing
 2019-10-26 13:15 UTC  - mbox.gz / Atom

[PATCH nft] mnl: remove artifical cap on 8 devices per flowtable
 2019-10-26 11:25 UTC  - mbox.gz / Atom

[PATCH nft,v3] src: add multidevice support for netdev chain
 2019-10-26 11:23 UTC  - mbox.gz / Atom

[PATCH nft,v2] src: add multidevice support for netdev chain
 2019-10-26 11:16 UTC  (2+ messages) - mbox.gz / Atom

[PATCH libnftnl,v2] chain: multi-device support
 2019-10-26 11:05 UTC  - mbox.gz / Atom

[PATCH libnftnl,v2] flowtable: device array dynamic allocation
 2019-10-26 11:01 UTC  - mbox.gz / Atom

[iptables PATCH 1/2] iptables-xml: Use add_param_to_argv()
 2019-10-26 10:56 UTC  (4+ messages) - mbox.gz / Atom
` [iptables PATCH 2/2] xshared: Introduce struct argv_store

[GIT PULL] IPVS fixes for v5.4
 2019-10-26 10:48 UTC  (4+ messages) - mbox.gz / Atom
` [PATCH 1/2] ipvs: don't ignore errors in case refcounting ip_vs module fails
` [PATCH 2/2] ipvs: move old_secure_tcp into struct netns_ipvs

[iptables PATCH] xtables-arp: Use xtables_ipparse_multiple()
 2019-10-25 20:36 UTC  (2+ messages) - mbox.gz / Atom

[PATCH AUTOSEL 5.3 11/33] netfilter: conntrack: avoid possible false sharing
 2019-10-25 13:54 UTC  (2+ messages) - mbox.gz / Atom
` [PATCH AUTOSEL 5.3 16/33] netfilter: connlabels: prefer static lock initialiser

KASAN: use-after-free Read in nf_ct_deliver_cached_events
 2019-10-25  6:11 UTC  (4+ messages) - mbox.gz / Atom

[iptables PATCH v3 0/7] Improve xtables-restore performance
 2019-10-24 16:37 UTC  (8+ messages) - mbox.gz / Atom
` [iptables PATCH v3 1/7] xtables-restore: Integrate restore callbacks into struct nft_xt_restore_parse
` [iptables PATCH v3 2/7] xtables-restore: Introduce struct nft_xt_restore_state
` [iptables PATCH v3 3/7] xtables-restore: Introduce line parsing function
` [iptables PATCH v3 4/7] xtables-restore: Remove some pointless linebreaks
` [iptables PATCH v3 5/7] xtables-restore: Allow lines without trailing newline character
` [iptables PATCH v3 6/7] xtables-restore: Improve performance of --noflush operation
` [iptables PATCH v3 7/7] tests: shell: Add ipt-restore/0007-flush-noflush_0

[PATCH nft 0/4] Output Flag Fixes
 2019-10-24 16:23 UTC  (14+ messages) - mbox.gz / Atom
` [PATCH nft 1/4] doc: add missing output flag documentation
` [PATCH nft 2/4] py: add missing output flags
` [PATCH nft 3/4] main: add missing `OPT_NUMERIC_PROTO` long option
` [PATCH nft 4/4] main: remove duplicate output flag assignment

How to implement transparent proxy in bridge through nftables
 2019-10-24 11:46 UTC  (4+ messages) - mbox.gz / Atom

[iptables PATCH] nft: Use ARRAY_SIZE() macro in nft_strerror()
 2019-10-24 10:01 UTC  (9+ messages) - mbox.gz / Atom

[PATCH nf-next v6 0/8] netfilter: nf_tables_offload: support tunnel offload
 2019-10-24  9:40 UTC  (2+ messages) - mbox.gz / Atom

[PATCH nf-next] netfilter: nf_tables_offload: Fix unbind devices when subsequent device bind failed
 2019-10-24  9:25 UTC  (2+ messages) - mbox.gz / Atom

[PATCH nf] netfilter: nft_payload: fix check the match len for offload to hw
 2019-10-24  9:17 UTC  (2+ messages) - mbox.gz / Atom

[PATCH nf-next 1/3] netfilter: nf_tables_offload: add nft_chain_offload_cmd()
 2019-10-24  9:15 UTC  (3+ messages) - mbox.gz / Atom
` [PATCH nf-next 2/3] netfilter: nf_tables_offload: add nft_flow_block_offload_init()
` [PATCH nf-next 3/3] netfilter: nf_tables_offload: unbind if multi-device binding fails

[PATCH nf-next,RFC 0/2] nf_tables encapsulation/decapsulation support
 2019-10-23 14:45 UTC  (8+ messages) - mbox.gz / Atom
` [PATCH nf-next,RFC 1/2] netfilter: nf_tables: add decapsulation support
` [PATCH nf-next,RFC 2/2] netfilter: nf_tables: add encapsulation support

[nft PATCH] Revert "main: Fix for misleading error with negative chain priority"
 2019-10-23 11:51 UTC  - mbox.gz / Atom

[PATCH net-next] netfilter: nf_conntrack: introduce conntrack limit per-zone
 2019-10-23 11:07 UTC  (4+ messages) - mbox.gz / Atom

[iptables PATCH] xtables-restore: Unbreak *tables-restore
 2019-10-23  8:14 UTC  (2+ messages) - mbox.gz / Atom

[PATCH tip/core/rcu 08/10] net/netfilter: Replace rcu_swap_protected() with rcu_replace()
 2019-10-22 19:12 UTC  - mbox.gz / Atom

page:   latest

Netfilter-Devel Archive on lore.kernel.org

Archives are clonable:
	git clone --mirror https://lore.kernel.org/netfilter-devel/0 netfilter-devel/git/0.git

	# If you have public-inbox 1.1+ installed, you may
	# initialize and index your mirror using the following commands:
	public-inbox-init -V2 netfilter-devel netfilter-devel/ https://lore.kernel.org/netfilter-devel \
		netfilter-devel@vger.kernel.org
	public-inbox-index netfilter-devel

Example config snippet for mirrors

Newsgroup available over NNTP:
	nntp://nntp.lore.kernel.org/org.kernel.vger.netfilter-devel


AGPL code for this site: git clone https://public-inbox.org/public-inbox.git