Netfilter-Devel Archive on lore.kernel.org
 help / color / Atom feed
[PATCH 0/7] iptables: introduce cache evaluation phase
 2020-01-06 12:20 UTC  (7+ messages) - mbox.gz / Atom
` [PATCH 1/7] nft: do not check for existing chain from parser
` [PATCH 3/7] nft: calculate cache requirements from list of commands
` [PATCH 4/7] nft: restore among support
` [PATCH 5/7] nft: remove cache build calls
` [PATCH 6/7] nft: skip table list release if uninitialized
` [PATCH 7/7] nft: missing nft_fini() call in bridge family

[PATCH nf-next] netfilter: flowtable: refresh flow if hardware offload fails
 2020-01-06 12:03 UTC  - mbox.gz / Atom

[PATCH nf] netfilter: flowtable: restrict flow dissector match on meta ingress device
 2020-01-06 11:47 UTC  - mbox.gz / Atom

[PATCH nftables] evaluate: remove expr_set_context call
 2020-01-06  9:31 UTC  (6+ messages) - mbox.gz / Atom
` [PATCH nft v2] evaluate: fix expr_set_context call for shift binops

[PATCH nf,v3] netfilter: flowtable: add nf_flowtable_time_stamp
 2020-01-06  9:16 UTC  (2+ messages) - mbox.gz / Atom

[PATCH RFC libnetfilter_queue 0/1] Make usable man pages
 2020-01-06  7:09 UTC  (2+ messages) - mbox.gz / Atom
` [PATCH RFC libnetfilter_queue 1/1] doc: setup: Add shell script fixmanpages.sh to make "

[PATCH nf,v2] netfilter: flowtable: add nf_flowtable_time_stamp
 2020-01-06  3:40 UTC  (2+ messages) - mbox.gz / Atom

[PATCH nf,v2] netfilter: flowtable: fetch stats only if flow is still alive
 2020-01-06  3:25 UTC  (2+ messages) - mbox.gz / Atom

[PATCH libnetfilter_queue 0/1] New pktb_usebuf() function
 2020-01-06  3:17 UTC  (5+ messages) - mbox.gz / Atom
` [PATCH libnetfilter_queue v2 0/1] New pktb_make() function
` [PATCH libnetfilter_queue v2 1/1] src: Add alternative function to pktb_alloc to avoid malloc / free overhead

[PATCH nf-next,v2 1/3] netfilter: flowtable: add nf_flow_offload_work_alloc()
 2020-01-05 22:04 UTC  (3+ messages) - mbox.gz / Atom
` [PATCH nf-next,v2 2/3] netfilter: flowtable: remove dying bit, use teardown bit instead
` [PATCH nf-next,v2 3/3] netfilter: flowtable: use atomic bitwise operations for flow flags

[PATCH] netfilter: flowtable: fetch stats only if flow is still alive
 2020-01-05 21:38 UTC  - mbox.gz / Atom

[PATCH nf-next 1/3] netfilter: flowtable: use atomic bitwise operations for flow flags
 2020-01-05 20:23 UTC  (3+ messages) - mbox.gz / Atom
` [PATCH nf-next 2/3] netfilter: flowtable: add nf_flow_offload_work_alloc()
` [PATCH nf-next 3/3] netfilter: flowtable: remove dying bit, use teardown bit instead

[nftables] bug: rejects empty set literals
 2020-01-05 14:57 UTC  - mbox.gz / Atom

[PATCH libnftnl] include: Remove buffer.h
 2020-01-05  9:28 UTC  (2+ messages) - mbox.gz / Atom

[nftables] bug: set output inconsistent syntax and missing information
 2020-01-05  1:21 UTC  - mbox.gz / Atom

[nftables] bug: prefix masks applied to set lookup keys are decompiled as a prefix length applied to the set
 2020-01-05  0:41 UTC  - mbox.gz / Atom

Numen with reference to vmap
 2020-01-04 12:30 UTC  (14+ messages) - mbox.gz / Atom

[PATCH nf] netfilter: nf_tables: unbind callbacks from flowtable destroy path
 2020-01-04  9:02 UTC  (2+ messages) - mbox.gz / Atom

[PATCH nf] netfilter: nft_flow_offload: fix unnecessary use counter decrease in destory
 2020-01-04  8:28 UTC  (7+ messages) - mbox.gz / Atom

[PATCH nftables geoip 0/1] contrib: geoip: add geoip python script
 2020-01-03 21:31 UTC  (4+ messages) - mbox.gz / Atom
` [PATCH nftables geoip 1/1] "

Adding NAT64 to Netfilter
 2020-01-03 18:09 UTC  - mbox.gz / Atom

[PATCH nf v3 0/3] netfilter: nf_flow_table_offload: something fixes
 2020-01-03 17:56 UTC  (3+ messages) - mbox.gz / Atom

[PATCH nf] netfilter: flowtable: add nf_flowtable_time_stamp
 2020-01-03 17:10 UTC  - mbox.gz / Atom

[PATCH nft] scanner: incorrect error reporting after file inclusion
 2020-01-03 13:05 UTC  - mbox.gz / Atom

[PATCH libnetfilter_queue 0/2] Add mangle functions for IPv6, IPv6/TCP and IPv6/UDP
 2020-01-03 12:25 UTC  (7+ messages) - mbox.gz / Atom
` [PATCH libnetfilter_queue 1/2] src: more IPv6 checksum fixes
    ` [PATCH libnetfilter_queue] src: checksum.c: remove redundant 0xFFFF mask of uint16_t
` [PATCH libnetfilter_queue 2/2] src: add mangle functions for IPv6, IPv6/TCP and IPv6/UDP

Calling mnl_socket_sendto caused error of netlink attribute type 1 has an invalid length
 2020-01-02  7:59 UTC  (3+ messages) - mbox.gz / Atom

[PATCH nf-next v3 0/4] netfilter: nf_flow_table_offload: support tunnel offload
 2020-01-02  3:32 UTC  (4+ messages) - mbox.gz / Atom

[PATCH nf-next] netfilter: nft_bitwise: correct uapi header comment
 2020-01-01 13:41 UTC  - mbox.gz / Atom

[PATCH ghak90 V8 00/16] audit: implement container identifier
 2019-12-31 19:48 UTC  (17+ messages) - mbox.gz / Atom
` [PATCH ghak90 V8 01/16] audit: collect audit task parameters
` [PATCH ghak90 V8 02/16] audit: add container id
` [PATCH ghak90 V8 03/16] audit: read container ID of a process
` [PATCH ghak90 V8 04/16] audit: convert to contid list to check for orch/engine ownership
` [PATCH ghak90 V8 05/16] audit: log drop of contid on exit of last task
` [PATCH ghak90 V8 06/16] audit: log container info of syscalls
` [PATCH ghak90 V8 07/16] audit: add contid support for signalling the audit daemon
` [PATCH ghak90 V8 08/16] audit: add support for non-syscall auxiliary records
` [PATCH ghak90 V8 09/16] audit: add containerid support for user records
` [PATCH ghak90 V8 10/16] audit: add containerid filtering
` [PATCH ghak90 V8 11/16] audit: add support for containerid to network namespaces
` [PATCH ghak90 V8 12/16] audit: contid check descendancy and nesting
` [PATCH ghak90 V8 13/16] audit: track container nesting
` [PATCH ghak90 V8 14/16] audit: check contid depth and add limit config param
` [PATCH ghak90 V8 15/16] audit: check contid count per netns and add config param limit
` [PATCH ghak90 V8 16/16] audit: add capcontid to set contid outside init_user_ns

[PATCH libnetfilter_queue 0/2] src: doc: fix remaining doxygen warnings
 2019-12-31 11:03 UTC  (6+ messages) - mbox.gz / Atom
` [PATCH libnetfilter_queue 1/2] src: tcp.c: change 1 remaining pkt formal arg to pktb
    ` [PATCH libnetfilter_queue] src: Always use pktb as formal arg of type struct pkt_buff
` [PATCH libnetfilter_queue 2/2] src: doc: tcp.c: fix remaining doxygen warnings

[PATCH libnetfilter_queue] src: doc: Eliminate doxygen warnings from libnetfilter_queue.c
 2019-12-31  1:49 UTC  (4+ messages) - mbox.gz / Atom
  ` [PATCH libnetfilter_queue 1/2] src: libnetfilter_queue.c: whitespace: remove trailing spaces
  ` [PATCH libnetfilter_queue 2/2] src: doc: Eliminate doxygen warnings from libnetfilter_queue.c

[PATCH 00/17] Netfilter updates for net-next
 2019-12-30 22:29 UTC  (19+ messages) - mbox.gz / Atom
` [PATCH 01/17] netfilter: Clean up unnecessary #ifdef
` [PATCH 02/17] netfilter: Document ingress hook
` [PATCH 03/17] netfilter: nft_tunnel: no need to call htons() when dumping ports
` [PATCH 04/17] netfilter: nft_tunnel: add the missing ERSPAN_VERSION nla_policy
` [PATCH 05/17] netfilter: nft_tunnel: also dump ERSPAN_VERSION
` [PATCH 06/17] netfilter: nft_tunnel: also dump OPTS_ERSPAN/VXLAN
` [PATCH 07/17] netfilter: nft_tunnel: add the missing nla_nest_cancel()
` [PATCH 08/17] netfilter: conntrack: remove two export symbols
` [PATCH 09/17] netfilter: nft_meta: move time handling to helper
` [PATCH 10/17] netfilter: nft_meta: move pkttype "
` [PATCH 11/17] netfilter: nft_meta: move sk uid/git "
` [PATCH 12/17] netfilter: nft_meta: move cgroup "
` [PATCH 13/17] netfilter: nft_meta: move interface kind "
` [PATCH 14/17] netfilter: nft_meta: move all interface related keys "
` [PATCH 15/17] netfilter: nft_meta: place prandom handling in a helper
` [PATCH 16/17] netfilter: nft_meta: place rtclassid "
` [PATCH 17/17] netfilter: nft_meta: add support for slave device ifindex matching

[PATCH nf-next] netfilter: ctnetlink: add kernel side filtering for dump
 2019-12-30 12:12 UTC  (2+ messages) - mbox.gz / Atom

general protection fault in xt_rateest_tg_checkentry
 2019-12-30 12:09 UTC  (6+ messages) - mbox.gz / Atom
` [PATCH nf] netfilter: arp_tables: init netns pointer in xt_tgchk_param struct

[PATCH] doc: Fix typo in IGMP section
 2019-12-30 12:01 UTC  (2+ messages) - mbox.gz / Atom

[PATCH libnetfilter_queue 1/2] doc: whitespace: Remove trailing spaces from doxygen.cfg.in
 2019-12-30 11:51 UTC  (4+ messages) - mbox.gz / Atom
` [PATCH libnetfilter_queue 2/2] doc: doxygen.cfg.in: Eliminate 20 doxygen warnings

Documentation question
 2019-12-30 11:38 UTC  (6+ messages) - mbox.gz / Atom
  ` [PATCH libnetfilter_queue] src: pktb_mangle has signed offset arg so can mangle MAC header with -ve one

[PATCH iptables] extensions: AUDIT: fix man-page typo
 2019-12-30 10:57 UTC  (2+ messages) - mbox.gz / Atom

general protection fault in nf_ct_netns_do_get
 2019-12-28 11:19 UTC  - mbox.gz / Atom

general protection fault in nf_ct_netns_do_get
 2019-12-28 10:32 UTC  (3+ messages) - mbox.gz / Atom

[PATCH AUTOSEL 4.4 02/25] netfilter: ctnetlink: netns exit must wait for callbacks
 2019-12-27 18:15 UTC  (3+ messages) - mbox.gz / Atom
` [PATCH AUTOSEL 4.4 04/25] netfilter: uapi: Avoid undefined left-shift in xt_sctp.h
` [PATCH AUTOSEL 4.4 05/25] netfilter: bridge: make sure to pull arp header in br_nf_forward_arp()

[PATCH AUTOSEL 4.9 03/38] netfilter: ctnetlink: netns exit must wait for callbacks
 2019-12-27 18:14 UTC  (3+ messages) - mbox.gz / Atom
` [PATCH AUTOSEL 4.9 08/38] netfilter: uapi: Avoid undefined left-shift in xt_sctp.h
` [PATCH AUTOSEL 4.9 09/38] netfilter: bridge: make sure to pull arp header in br_nf_forward_arp()

[PATCH AUTOSEL 4.14 03/57] netfilter: ctnetlink: netns exit must wait for callbacks
 2019-12-27 18:01 UTC  (5+ messages) - mbox.gz / Atom
` [PATCH AUTOSEL 4.14 07/57] netfilter: nf_queue: enqueue skbs with NULL dst
` [PATCH AUTOSEL 4.14 12/57] netfilter: uapi: Avoid undefined left-shift in xt_sctp.h
` [PATCH AUTOSEL 4.14 13/57] netfilter: nf_tables: validate NFT_SET_ELEM_INTERVAL_END
` [PATCH AUTOSEL 4.14 14/57] netfilter: bridge: make sure to pull arp header in br_nf_forward_arp()

[PATCH AUTOSEL 4.19 07/84] netfilter: ctnetlink: netns exit must wait for callbacks
 2019-12-27 17:42 UTC  (7+ messages) - mbox.gz / Atom
` [PATCH AUTOSEL 4.19 12/84] netfilter: nf_queue: enqueue skbs with NULL dst
` [PATCH AUTOSEL 4.19 18/84] netfilter: uapi: Avoid undefined left-shift in xt_sctp.h
` [PATCH AUTOSEL 4.19 19/84] netfilter: nft_set_rbtree: bogus lookup/get on consecutive elements in named sets
` [PATCH AUTOSEL 4.19 20/84] netfilter: nf_tables: validate NFT_SET_ELEM_INTERVAL_END
` [PATCH AUTOSEL 4.19 21/84] netfilter: nf_tables: validate NFT_DATA_VALUE after nft_data_init()
` [PATCH AUTOSEL 4.19 22/84] netfilter: bridge: make sure to pull arp header in br_nf_forward_arp()

[PATCH AUTOSEL 5.4 014/187] netfilter: ctnetlink: netns exit must wait for callbacks
 2019-12-27 17:38 UTC  (10+ messages) - mbox.gz / Atom
` [PATCH AUTOSEL 5.4 017/187] netfilter: nf_tables_offload: Check for the NETDEV_UNREGISTER event
` [PATCH AUTOSEL 5.4 025/187] netfilter: nf_queue: enqueue skbs with NULL dst
` [PATCH AUTOSEL 5.4 032/187] netfilter: uapi: Avoid undefined left-shift in xt_sctp.h
` [PATCH AUTOSEL 5.4 033/187] netfilter: nft_set_rbtree: bogus lookup/get on consecutive elements in named sets
` [PATCH AUTOSEL 5.4 034/187] netfilter: nf_tables: validate NFT_SET_ELEM_INTERVAL_END
` [PATCH AUTOSEL 5.4 035/187] netfilter: nf_tables: validate NFT_DATA_VALUE after nft_data_init()
` [PATCH AUTOSEL 5.4 036/187] netfilter: nf_tables: skip module reference count bump on object updates
` [PATCH AUTOSEL 5.4 037/187] netfilter: nf_tables_offload: return EOPNOTSUPP if rule specifies no actions
` [PATCH AUTOSEL 5.4 038/187] netfilter: bridge: make sure to pull arp header in br_nf_forward_arp()

Weird/High CPU usage caused by LOG target
 2019-12-27  1:58 UTC  (7+ messages) - mbox.gz / Atom

INFO: task hung in htable_put
 2019-12-26 21:15 UTC  - mbox.gz / Atom

[PATCH 0/4] Netfilter fixes for net
 2019-12-26 21:11 UTC  (6+ messages) - mbox.gz / Atom
` [PATCH 1/4] netfilter: nf_flow_table: fix big-endian integer overflow
` [PATCH 2/4] selftests: netfilter: extend flowtable test script with dnat rule
` [PATCH 3/4] netfilter: ebtables: compat: reject all padding in matches/watchers
` [PATCH 4/4] netfilter: nft_tproxy: Fix port selector on Big Endian

[PATCH nf-next 0/9] netfilter: nft_meta: add support for slave device matching
 2019-12-26 16:42 UTC  (2+ messages) - mbox.gz / Atom

[nftables] bug: rejects single-element intervals as supposedly empty
 2019-12-25 18:26 UTC  (3+ messages) - mbox.gz / Atom

[PATCH net-next 0/5] netfilter: add indr block setup in nf_flow_table_offload
 2019-12-25  9:48 UTC  (6+ messages) - mbox.gz / Atom
` [PATCH net-next 1/5] flow_offload: add TC_SETP_FT type in flow_indr_block_call
` [PATCH net-next 2/5] netfilter: nf_flow_table_offload: refactor nf_flow_table_offload_setup to support indir setup
` [PATCH net-next 3/5] netfilter: nf_flow_table_offload: add indr block setup support
` [PATCH net-next 4/5] netfilter: nf_flow_table_offload: add tunnel match offload support
` [PATCH net-next 5/5] netfilter: nf_flow_table_offload: add tunnel encap/decap action "

[PATCH] netfilter: xt_LOG: remove unused headers
 2019-12-24 11:56 UTC  - mbox.gz / Atom

[PATCH nf v2 0/3] netfilter: nf_flow_table_offload: something fixes
 2019-12-20 14:15 UTC  (8+ messages) - mbox.gz / Atom
` [PATCH nf v2 1/3] netfilter: nf_flow_table_offload: fix dst_neigh lookup

[PATCH nf 0/3] netfilter: nf_tables: fix use counter for rule
 2019-12-20  9:12 UTC  (8+ messages) - mbox.gz / Atom
` [PATCH nf 2/3] netfilter: nf_tables: fix miss activate operation in the
` [PATCH nf 3/3] netfilter: nf_tables: fix miss dec set use counter in the nf_tables_destroy_set

[PATCH nf] netfilter: flowtable: clean up entries for FLOW_BLOCK_UNBIND
 2019-12-20  7:03 UTC  (2+ messages) - mbox.gz / Atom

[PATCH nf-next] netfilter: nf_flow_table: clean up entries in hardware
 2019-12-20  7:00 UTC  - mbox.gz / Atom

page:   latest

Netfilter-Devel Archive on lore.kernel.org

Archives are clonable:
	git clone --mirror https://lore.kernel.org/netfilter-devel/0 netfilter-devel/git/0.git

	# If you have public-inbox 1.1+ installed, you may
	# initialize and index your mirror using the following commands:
	public-inbox-init -V2 netfilter-devel netfilter-devel/ https://lore.kernel.org/netfilter-devel \
		netfilter-devel@vger.kernel.org
	public-inbox-index netfilter-devel

Example config snippet for mirrors

Newsgroup available over NNTP:
	nntp://nntp.lore.kernel.org/org.kernel.vger.netfilter-devel


AGPL code for this site: git clone https://public-inbox.org/public-inbox.git