[PATCH nf] netfilter: disable payload mangling in userns
2026-05-16 15:23 UTC
[PATCH net 00/12] Netfilter/IPVS fixes for net
2026-05-16 11:56 UTC (13+ messages)
` [PATCH net 01/12] netfilter: nf_conntrack_helper: fix possible null deref during error log
` [PATCH net 02/12] ipvs: avoid possible loop in ip_vs_dst_event on resizing
` [PATCH net 03/12] netfilter: ipset: fix a potential dump-destroy race
` [PATCH net 04/12] netfilter: nft_inner: Fix IPv6 inner_thoff desync
` [PATCH net 05/12] netfilter: ipset: stop hash:* range iteration at end
` [PATCH net 06/12] netfilter: nft_inner: release local_lock before re-enabling softirqs
` [PATCH net 07/12] netfilter: ip6t_hbh: reject oversized option lists
` [PATCH net 08/12] netfilter: ipset: Fix data race between add and list header in all hash types
` [PATCH net 09/12] netfilter: ipset: Fix data race between add and dump "
` [PATCH net 10/12] netfilter: ipset: annotate "pos" for concurrent readers/writers
` [PATCH net 11/12] netfilter: br_netfilter: Reallocate headroom if necessary in neigh_hh_bridge()
` [PATCH net 12/12] netfilter: nf_queue: hold bridge skb->dev while queued
[PATCH net 0/2] ipv4: harden against ihl < 5 IP_HDRINCL packets
2026-05-15 23:00 UTC (9+ messages)
` [PATCH net 1/2] ipv4: raw: reject IP_HDRINCL packets with ihl < 5
` [PATCH net 2/2] ipv4: ah: harden ah_output options-copy guard against "
[PATCH v2 net-next 2/2] ipvs: Replace use of system_unbound_wq with system_dfl_long_wq
2026-05-15 13:51 UTC
[RFC] netfilter: disable payload mangling in userns
2026-05-15 12:48 UTC (3+ messages)
[PATCH nf,v2] netfilter: conntrack: add dead flag to helpers
2026-05-15 12:26 UTC (10+ messages)
[PATCH nf] netfilter: nf_conntrack_gre: fix gre keymap list corruption
2026-05-15 10:34 UTC
[PATCH nf v2 1/1] netfilter: nf_queue: hold bridge skb->dev while queued
2026-05-15 3:19 UTC
[PATCH nf 1/1] netfilter: xt_IDLETIMER: scope timer reuse to the owning netns
2026-05-15 1:54 UTC (3+ messages)
[PATCH v7 00/10] netfilter: ipset fixes
2026-05-14 16:34 UTC (12+ messages)
` [PATCH v7 01/10] netfilter: ipset: fix a potential dump-destroy race
` [PATCH v7 02/10] netfilter: ipset: Fix data race between add and list header in all hash types
` [PATCH v7 03/10] netfilter: ipset: Fix data race between add and dump "
` [PATCH v7 04/10] netfilter: ipset: annotate "pos" for concurrent readers/writers
` [PATCH v7 05/10] netfilter: ipset: Don't use test_bit() in lockless RCU readers in hash types
` [PATCH v7 06/10] netfilter: ipset: Don't use test_bit() in lockless RCU readers in bitmap types
` [PATCH v7 07/10] netfilter: ipset: fix order of kfree_rcu() and rcu_assign_pointer()
` [PATCH v7 08/10] netfilter: ipset: skip gc when resize is in progress
` [PATCH v7 09/10] netfilter: ipset: fix potential torn read in reuse/forceadd cases
` [PATCH v7 10/10] netfilter: ipset: add comment how cidr bookkeeping is working
` [syzbot ci] Re: netfilter: ipset fixes
[PATCH nf,v3 1/2] netfilter: nfnetlink_cthelper: use {READ,WRITE}_ONCE for accessing helper flags
2026-05-14 15:38 UTC (2+ messages)
` [PATCH nf,v3 2/2] netfilter: conntrack: add dead flag to helpers
[PATCH net v4] net: neigh: Reallocate headroom if necessary in neigh_hh_bridge()
2026-05-14 14:46 UTC
[PATCH net v3] net: neigh: Reallocate headroom if necessary in neigh_hh_bridge()
2026-05-14 14:24 UTC (5+ messages)
[PATCH nf v2] netfilter: nf_conncount: prevent connlimit drops for early confirmed ct
2026-05-14 14:16 UTC
[PATCH nf 1/1] bridge: br_netfilter: give fake rtable its own lifetime
2026-05-14 3:48 UTC
[PATCH net v2] net: neigh: Reallocate headroom if necessary in neigh_hh_bridge()
2026-05-13 16:16 UTC (3+ messages)
[PATCH nf] netfilter: conntrack: add dead flag to helpers
2026-05-13 15:52 UTC (5+ messages)
[PATCH nf] netfilter: nf_conncount: prevent connlimit drops for early confirmed ct
2026-05-13 14:52 UTC (5+ messages)
[patch V2 00/11] hrtimers: Prevent hrtimer interrupt starvation
2026-05-13 12:57 UTC (4+ messages)
` [patch V2 01/11] hrtimer: Provide hrtimer_start_range_ns_user()
[PATCH nf 1/1] netfilter: ip6t_hbh: reject oversized option lists
2026-05-13 7:57 UTC
[PATCH nf 1/1] netfilter: ipset: fix comment extension lifetime during hash resize
2026-05-13 5:54 UTC
[PATCH net 0/8] IPVS fixes for net
2026-05-13 1:41 UTC (4+ messages)
[PATCH nf,v2] netfilter: nf_queue: hold reference on skb->dev
2026-05-12 23:43 UTC
[PATCH nf] netfilter: nf_queue: hold reference on skb->dev
2026-05-12 23:25 UTC (2+ messages)
[PATCH net-next] netfilter: nf_conntrack_proto_tcp: fix typos in comments
2026-05-12 21:55 UTC
[PATCH nf-next v2] netfilter: add option for GCOV profiling
2026-05-12 20:51 UTC (2+ messages)
[PATCH v3 nf-next] netfilter: nft_byteorder: remove multi-register support
2026-05-12 13:51 UTC (2+ messages)
[PATCH nf] netfilter: nft_inner: release local_lock before re-enabling softirqs
2026-05-12 12:57 UTC (2+ messages)
[PATCH nf 1/1] netfilter: nf_queue: hold bridge skb->dev while queued
2026-05-12 11:29 UTC (5+ messages)
[PATCH v5 nf-next] selftests: netfilter: Add bridge_fastpath.sh
2026-05-12 10:34 UTC
[PATCH v20 nf-next 0/2] conntrack: bridge: add double vlan, pppoe and pppoe-in-q
2026-05-12 10:33 UTC (3+ messages)
` [PATCH v20 nf-next 1/2] netfilter: utils: nf_ip(6)_checksum(_partial) correct data!=networkheader
` [PATCH v20 nf-next 2/2] netfilter: bridge: Add conntrack double vlan and pppoe
[PATCH nf 1/4] netfilter: ipset: stop hash:ip,mark range iteration at end
2026-05-12 8:50 UTC (4+ messages)
` [PATCH nf 2/4] netfilter: ipset: stop hash:ip,port,ip "
` [PATCH nf 3/4] netfilter: ipset: stop hash:ip,port "
` [PATCH nf 4/4] netfilter: ipset: hash:ip,port,net: stop IPv4 range walk at upper bound
[PATCH v2 nf] netfilter: nft_inner: Fix IPv6 inner_thoff desync
2026-05-12 8:13 UTC (2+ messages)
[PATCH net-next 2/2] ipvs: Replace use of system_unbound_wq with system_dfl_wq
2026-05-12 7:36 UTC (3+ messages)
[PATCH nft] cache: honor -c/--check for reset commands
2026-05-11 20:06 UTC
[PATCH nft] netfilter: nft_inner: Fix IPv6 inner_thoff desync
2026-05-11 16:27 UTC (4+ messages)
` [PATCH v2 "
[PATCH net] net: neigh: Reallocate headroom if necessary in neigh_hh_bridge()
2026-05-11 15:52 UTC (3+ messages)
[PATCH nf] netfilter: conntrack: tcp: do not force CLOSE on invalid-seq RST without direction check
2026-05-11 14:43 UTC
[PATCH nf v4] netfilter: nf_tables: fix dst corruption in same register operation
2026-05-11 14:37 UTC
[PATCH v6 0/8] netfilter: ipset fixes
2026-05-11 7:45 UTC (12+ messages)
` [PATCH v6 1/8] netfilter: ipset: fix a potential dump-destroy race
` [PATCH v6 2/8] netfilter: ipset: Fix data race between add and list header in all hash types
` [PATCH v6 3/8] netfilter: ipset: Fix data race between add and dump "
` [PATCH v6 4/8] netfilter: ipset: annotate "pos" for concurrent readers/writers
` [PATCH v6 5/8] netfilter: ipset: Don't use test_bit() in lockless RCU readers
` [PATCH v6 6/8] netfilter: ipset: fix potential torn read in reuse/forceadd cases
` [PATCH v6 7/8] netfilter: ipset: skip gc when resize is in progress
` [PATCH v6 8/8] netfilter: ipset: fix order of usage counters
[PATCH v3 nf] ipvs: avoid possible loop in ip_vs_dst_event on resizing
2026-05-10 10:46 UTC
[PATCH conntrack-tools] tests: cli-test.sh: improve logging for CI pipelines
2026-05-09 22:01 UTC
[PATCH conntrack-tools] tests: bulk-load-stress.sh: return early if ct_max is reached
2026-05-09 22:00 UTC
[PATCH nf] netfilter: nf_conntrack_helper: fix possible null deref during error log
2026-05-09 8:27 UTC
[PATCH net 00/13] Netfilter fixes for net
2026-05-09 1:40 UTC (15+ messages)
` [PATCH net 01/13] netfilter: x_tables: allow initial table replace without emitting audit log message
` [PATCH net 02/13] netfilter: x_tables: allocate hook ops while under mutex
` [PATCH net 03/13] netfilter: x_tables: add and use xt_unregister_table_pre_exit
` [PATCH net 04/13] netfilter: x_tables: unregister the templates first
` [PATCH net 05/13] netfilter: x_tables: add and use xtables_unregister_table_exit
` [PATCH net 06/13] netfilter: ebtables: move to two-stage removal scheme
` [PATCH net 07/13] netfilter: ebtables: close dangling table module init race
` [PATCH net 08/13] netfilter: x_tables: "
` [PATCH net 09/13] netfilter: bridge: eb_tables: close "
` [PATCH net 10/13] netfilter: nf_conntrack_expect: restore helper propagation via expectation
` [PATCH net 11/13] netfilter: ctnetlink: check tuple and mask in expectations created via nfqueue
` [PATCH net 12/13] netfilter: nf_conntrack_sip: get helper before allocating expectation
` [PATCH net 13/13] netfilter: nft_ct: fix missing expect put in obj eval
[RFC PATCH v4 00/19] Support socket access-control
2026-05-08 13:29 UTC (6+ messages)
` [RFC PATCH v4 01/19] landlock: "
[nft PATCH v2] scanner: Accept all statements' first words in all scopes
2026-05-08 11:15 UTC
[nft PATCH] scanner: Accept all statements' first words in all scopes
2026-05-08 10:28 UTC (4+ messages)
[PATCH v2 nf] ipvs: avoid possible loop in ip_vs_dst_event on resizing
2026-05-08 9:58 UTC (2+ messages)
[PATCH nft v2 0/2] netfilter: fix expectation reference leaks
2026-05-07 18:16 UTC (4+ messages)
` [PATCH nft v2 1/2] netfilter: nf_conntrack_sip: get helper before allocating expectation
` [PATCH nft v2 2/2] netfilter: nft_ct: fix missing expect put in obj eval
[PATCH nf,v3] netfilter: nf_conntrack_expect: restore helper propagation via expectation
2026-05-07 11:00 UTC
[PATCH nf-next] netfilter: add option for GCOV profiling
2026-05-07 9:34 UTC
[PATCH v3 nf 0/8] netfilter: xtables: fix module load and teardown races
2026-05-07 9:19 UTC (10+ messages)
` [PATCH v3 nf 1/8] netfilter: x_tables: allow initial table replace without emitting audit log message
` [PATCH v3 nf 2/8] netfilter: xtables: allocate hook ops while under mutex
` [PATCH v3 nf 3/8] netfilter: x_tables: add and use xt_unregister_table_pre_exit
` [PATCH v3 nf 4/8] netfilter: x_tables: unregister the templates first
` [PATCH v3 nf 5/8] netfilter: x_tables: add and use xtables_unregister_table_exit
` [PATCH v3 nf 6/8] netfilter: ebtables: move to two-stage removal scheme
` [PATCH v3 nf 7/8] netfilter: ebtables: close dangling table module init race
` [PATCH v3 nf 8/8] netfilter: x_tables: "
` [PATCH v3 nf 9/8] netfilter: bridge: eb_tables: close "
[PATCH nf] ipvs: avoid possible loop in ip_vs_dst_event on resizing
2026-05-07 7:20 UTC (2+ messages)
[PATCH nf-next v2 0/6] Add IPv4 over IPv6 and SIT flowtable SW acceleration
2026-05-06 17:27 UTC (7+ messages)
` [PATCH nf-next v2 1/6] net: netfilter: Add ether_type to net_device_path_ctx
` [PATCH nf-next v2 2/6] net: netfilter: Add encap_proto to flow_offload_tunnel
` [PATCH nf-next v2 3/6] net: netfilter: Add IPv4 over IPv6 tunnel flowtable acceleration
` [PATCH nf-next v2 4/6] selftests: netfilter: nft_flowtable.sh: Add IPv4 over IPv6 flowtable selftest
` [PATCH nf-next v2 5/6] net: netfilter: Add SIT tunnel flowtable acceleration
` [PATCH nf-next v2 6/6] selftests: netfilter: nft_flowtable.sh: Add SIT flowtable selftest
[PATCH nf-next 0/4] Add IPv4 over IPv6 flowtable SW acceleration
2026-05-06 17:27 UTC (5+ messages)
` [PATCH nf-next 2/4] net: netfilter: Add encap_proto to flow_offload_tunnel
` [PATCH nf-next 3/4] net: netfilter: Add IPv4 over IPv6 tunnel flowtable acceleration
` [PATCH nf-next 4/4] selftests: netfilter: nft_flowtable.sh: Add IPv4 over IPv6 flowtable selftest
[PATCH nft 0/2] netfilter: fix nf_ct_expect_alloc() reference leaks
2026-05-06 14:50 UTC (5+ messages)
` [PATCH nft 1/2] netfilter: nf_conntrack_sip: fix missing expect put in REGISTER path
` [PATCH nft 2/2] netfilter: nft_ct: fix missing expect put in obj eval
[PATCH nf,v2 3/3] netfilter: nft_fwd_netdev: use recursion counter in neigh egress path
2026-05-06 10:49 UTC (2+ messages)
[PATCH nft] scanner: enable verdicts in rate scope too
2026-05-06 7:24 UTC (3+ messages)
[PATCH net 1/8] ipvs: fixes for the new ip_vs_status info
2026-05-06 1:10 UTC (2+ messages)
[PATCH net-next v2 0/3] netfilter: conntrack: add shared port parser and use it in IRC and Amanda helpers
2026-05-05 22:33 UTC (4+ messages)
` [PATCH net-next v3 0/4] netfilter: conntrack: shared port parser for helpers
` [PATCH net-next v3 1/4] netfilter: conntrack: add shared port and uint parsers "
[PATCH nf,v2] netfilter: nf_conntrack_expect: restore helper propagation via expectation
2026-05-05 20:01 UTC
page: next (older)
- recent:[subjects (threaded)|topics (new)|topics (active)]
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for read-only IMAP folder(s) and NNTP newsgroup(s).