Show patches with: Submitter = Florian Westphal       |    Archived = No       |   2594 patches
« 1 2 3 425 26 »
Patch Series A/F/R/T S/W/F Date Submitter Delegate State
[nft,v2] support for afl++ (american fuzzy lop++) fuzzer [nft,v2] support for afl++ (american fuzzy lop++) fuzzer - - - - --- 2025-10-17 Florian Westphal New
[nf] netfilter: nft_set_pipapo: don't return bogus extension pointer [nf] netfilter: nft_set_pipapo: don't return bogus extension pointer - 1 - - --- 2025-08-04 Florian Westphal Accepted
[nf,2/2] netfilter: ctnetlink: remove refcounting in expectation dumpers netfilter: ctnetlink: fix memory leak in ctnetlink dump - 2 - - --- 2025-08-01 Florian Westphal Accepted
[nf,1/2] netfilter: ctnetlink: fix refcount leak on table dump netfilter: ctnetlink: fix memory leak in ctnetlink dump - 1 - - --- 2025-08-01 Florian Westphal Accepted
[nf] netfilter: xt_nfacct: don't assume acct name is null-terminated [nf] netfilter: xt_nfacct: don't assume acct name is null-terminated - 1 - 1 --- 2025-07-18 Florian Westphal Accepted
[nf-next,v2,5/5] netfilter: nft_set_pipapo: prefer kvmalloc for scratch maps netfilter: nft_set updates - - 1 - --- 2025-07-09 Florian Westphal Accepted
[nf-next,v2,4/5] netfilter: nft_set_pipapo: merge pipapo_get/lookup netfilter: nft_set updates - - 1 - --- 2025-07-09 Florian Westphal Accepted
[nf-next,v2,3/5] netfilter: nft_set: remove indirection from update API call netfilter: nft_set updates - - - - --- 2025-07-09 Florian Westphal Accepted
[nf-next,v2,2/5] netfilter: nft_set: remove one argument from lookup and update functions netfilter: nft_set updates - - 1 - --- 2025-07-09 Florian Westphal Accepted
[nf-next,v2,1/5] netfilter: nft_set_pipapo: remove unused arguments netfilter: nft_set updates - - 1 - --- 2025-07-09 Florian Westphal Accepted
[nf] netfilter: nf_tables: hide clash bit from userspace [nf] netfilter: nf_tables: hide clash bit from userspace - 1 - - --- 2025-07-07 Florian Westphal Accepted
[nf] selftests: netfilter: nft_concat_range.sh: send packets to empty set [nf] selftests: netfilter: nft_concat_range.sh: send packets to empty set - - - - --- 2025-07-01 Florian Westphal Accepted
[nf,3/4] selftests: netfilter: conntrack_resize.sh: also use udpclash tool netfilter: conntrack: fix obscure confirmed race - - - - --- 2025-06-27 Florian Westphal Accepted
[nf,2/4] selftests: netfilter: add conntrack clash resolution test case netfilter: conntrack: fix obscure confirmed race - - - - --- 2025-06-27 Florian Westphal Accepted
[nf,1/4] selftests: netfilter: conntrack_resize.sh: extend resize test netfilter: conntrack: fix obscure confirmed race - - - - --- 2025-06-27 Florian Westphal Accepted
[nf-next,v2,2/2] netfilter: nf_tables: add packets conntrack state to debug trace info netfilter: nf_tables: include conntrack state in trace messages - - - - --- 2025-05-22 Florian Westphal Accepted
[nf-next,v2,1/2] netfilter: conntrack: make nf_conntrack_id callable without a module dependency netfilter: nf_tables: include conntrack state in trace messages - - - - --- 2025-05-22 Florian Westphal Accepted
[nf-next,v2,5/5] selftests: netfilter: nft_fib.sh: add type and oif tests with and without VRFs netfilter: resolve fib+vrf issues - - - - --- 2025-05-21 Florian Westphal Accepted
[nf-next,v2,4/5] netfilter: nf_tables: nft_fib: consistent l3mdev handling netfilter: resolve fib+vrf issues - 1 - - --- 2025-05-21 Florian Westphal Accepted
[nf-next,v2,3/5] netfilter: nf_tables: nft_fib_ipv6: fix VRF ipv4/ipv6 result discrepancy netfilter: resolve fib+vrf issues - 1 - - --- 2025-05-21 Florian Westphal Accepted
[nf-next,v2,2/5] selftests: netfilter: move fib vrf test to nft_fib.sh netfilter: resolve fib+vrf issues - - - - --- 2025-05-21 Florian Westphal Accepted
[nf-next,v2,1/5] selftests: netfilter: nft_fib.sh: add 'type' mode tests netfilter: resolve fib+vrf issues - - - - --- 2025-05-21 Florian Westphal Accepted
[nf-next] netfilter: xtables: support arpt_mark and ipv6 optstrip for iptables-nft only builds [nf-next] netfilter: xtables: support arpt_mark and ipv6 optstrip for iptables-nft only builds - 1 - - --- 2025-05-16 Florian Westphal Accepted
[nf-next] selftests: netfilter: nft_concat_range.sh: add coverage for 4bit group representation [nf-next] selftests: netfilter: nft_concat_range.sh: add coverage for 4bit group representation - - 1 - --- 2025-05-06 Florian Westphal Accepted
[nf-next] tools: selftests: prepare for non-default IP_TABLES_LEGACY [nf-next] tools: selftests: prepare for non-default IP_TABLES_LEGACY - - - - --- 2025-04-24 Florian Westphal Accepted
[nf-next] netfilter: nf_tables: fix debug splat when dumping pipapo avx2 set [nf-next] netfilter: nf_tables: fix debug splat when dumping pipapo avx2 set - 1 - - --- 2025-04-23 Florian Westphal Accepted
[nf-next] selftests: netfilter: nft_fib.sh: check lo packets bypass fib lookup [nf-next] selftests: netfilter: nft_fib.sh: check lo packets bypass fib lookup - - - - --- 2025-04-23 Florian Westphal Accepted
[v2,nf-next] netfilter: nf_conntrack: speed up reads from nf_conntrack proc file [v2,nf-next] netfilter: nf_conntrack: speed up reads from nf_conntrack proc file - - - - --- 2025-04-22 Florian Westphal Accepted
[nf-next] selftests: netfilter: add conntrack stress test [nf-next] selftests: netfilter: add conntrack stress test - - - - --- 2025-04-17 Florian Westphal Accepted
[nf] netfilter: conntrack: fix erronous removal of offload bit [nf] netfilter: conntrack: fix erronous removal of offload bit - 1 - - --- 2025-04-15 Florian Westphal Accepted
[v2,nf-next] netfilter: nf_tables: export set count and backend name to userspace [v2,nf-next] netfilter: nf_tables: export set count and backend name to userspace - - - - --- 2025-04-08 Florian Westphal Accepted
[v3,nf,2/3] selftests: netfilter: add test case for recent mismatch bug nft_set_pipapo: fix incorrect avx2 match of 5th field octet - - 1 - --- 2025-04-07 Florian Westphal Accepted
[v3,nf,1/3] nft_set_pipapo: fix incorrect avx2 match of 5th field octet nft_set_pipapo: fix incorrect avx2 match of 5th field octet - 1 1 - --- 2025-04-07 Florian Westphal Accepted
[nf] selftests: netfilter: skip br_netfilter queue tests if kernel is tainted [nf] selftests: netfilter: skip br_netfilter queue tests if kernel is tainted - - - - --- 2025-03-11 Florian Westphal Accepted
[nf-next] netfilter: fib: avoid lookup if socket is available [nf-next] netfilter: fib: avoid lookup if socket is available - - - - --- 2025-02-20 Florian Westphal Accepted
[nf] netfilter: nf_tables: do not defer rule destruction via call_rcu [nf] netfilter: nf_tables: do not defer rule destruction via call_rcu - 1 - - --- 2024-12-07 Florian Westphal Accepted
[nf-next] ipvs: speed up reads from ip_vs_conn proc file [nf-next] ipvs: speed up reads from ip_vs_conn proc file 1 - - - --- 2024-12-03 Florian Westphal Accepted
[nf-next,v5,5/5] netfilter: nf_tables: allocate element update information dynamically netfilter: nf_tables: reduce set element transaction size - - - - --- 2024-11-13 Florian Westphal Accepted
[nf-next,v5,4/5] netfilter: nf_tables: switch trans_elem to real flex array netfilter: nf_tables: reduce set element transaction size - - - - --- 2024-11-13 Florian Westphal Accepted
[nf-next,v5,3/5] netfilter: nf_tables: prepare nft audit for set element compaction netfilter: nf_tables: reduce set element transaction size - - - - --- 2024-11-13 Florian Westphal Accepted
[nf-next,v5,2/5] netfilter: nf_tables: prepare for multiple elements in nft_trans_elem structure netfilter: nf_tables: reduce set element transaction size - - - - --- 2024-11-13 Florian Westphal Accepted
[nf-next,v5,1/5] netfilter: nf_tables: add nft_trans_commit_list_add_elem helper netfilter: nf_tables: reduce set element transaction size - - - - --- 2024-11-13 Florian Westphal Accepted
[nf-next,v3,7/7] netfilter: nf_tables: must hold rcu read lock while iterating object type list netfilter: nf_tables: avoid PROVE_RCU_LIST splats - 1 - - --- 2024-11-04 Florian Westphal Accepted
[nf-next,v3,6/7] netfilter: nf_tables: must hold rcu read lock while iterating expression type list netfilter: nf_tables: avoid PROVE_RCU_LIST splats - 1 - - --- 2024-11-04 Florian Westphal Accepted
[nf-next,v3,5/7] netfilter: nf_tables: avoid false-positive lockdep splats with basechain hook netfilter: nf_tables: avoid PROVE_RCU_LIST splats - - - - --- 2024-11-04 Florian Westphal Accepted
[nf-next,v3,4/7] netfilter: nf_tables: avoid false-positive lockdep splats in set walker netfilter: nf_tables: avoid PROVE_RCU_LIST splats - - - - --- 2024-11-04 Florian Westphal Accepted
[nf-next,v3,3/7] netfilter: nf_tables: avoid false-positive lockdep splats with flowtables netfilter: nf_tables: avoid PROVE_RCU_LIST splats - - - - --- 2024-11-04 Florian Westphal Accepted
[nf-next,v3,2/7] netfilter: nf_tables: avoid false-positive lockdep splats with sets netfilter: nf_tables: avoid PROVE_RCU_LIST splats - - - - --- 2024-11-04 Florian Westphal Accepted
[nf-next,v3,1/7] netfilter: nf_tables: avoid false-positive lockdep splat on rule deletion netfilter: nf_tables: avoid PROVE_RCU_LIST splats - 1 - 1 --- 2024-11-04 Florian Westphal Accepted
[nft,v2] doc: extend description of fib expression [nft,v2] doc: extend description of fib expression - - 1 - --- 2024-10-30 Florian Westphal Accepted
[nft] src: allow to map key to nfqueue number [nft] src: allow to map key to nfqueue number - - - - --- 2024-10-25 Florian Westphal Accepted
[nf] netfilter: bpf: must hold reference on net namespace [nf] netfilter: bpf: must hold reference on net namespace - 1 1 - --- 2024-10-10 Florian Westphal Accepted
[nf,2/2] selftests: netfilter: conntrack_vrf.sh: add fib test case [nf,1/2] netfilter: fib: check correct rtable in vrf setups - - - - --- 2024-10-09 Florian Westphal Accepted
[nf,1/2] netfilter: fib: check correct rtable in vrf setups [nf,1/2] netfilter: fib: check correct rtable in vrf setups - 1 - - --- 2024-10-09 Florian Westphal Accepted
[nf,v3] netfilter: xtables: avoid NFPROTO_UNSPEC where needed [nf,v3] netfilter: xtables: avoid NFPROTO_UNSPEC where needed - 1 - - --- 2024-10-07 Florian Westphal Accepted
[nf-next,4/4] netfilter: nf_tables: use skb_drop_reason netfilter: use skb_drop_reason in more places - - - - --- 2024-10-02 Florian Westphal Accepted
[nf-next,3/4] netfilter: nf_nat: use skb_drop_reason netfilter: use skb_drop_reason in more places - - - - --- 2024-10-02 Florian Westphal Accepted
[nf-next,2/4] netfilter: xt_nat: drop packet earlier netfilter: use skb_drop_reason in more places - - - - --- 2024-10-02 Florian Westphal Accepted
[nf-next,1/4] netfilter: xt_nat: compact nf_nat_setup_info calls netfilter: use skb_drop_reason in more places - - - - --- 2024-10-02 Florian Westphal Accepted
[nf] kselftest: add test for nfqueue induced conntrack race [nf] kselftest: add test for nfqueue induced conntrack race - - - - --- 2024-09-18 Florian Westphal Accepted
[nf] netfilter: nfnetlink_queue: remove old clash resolution logic [nf] netfilter: nfnetlink_queue: remove old clash resolution logic - - - 1 --- 2024-09-18 Florian Westphal Accepted
[nf-next,3/3] selftests: netfilter: add reverse-clash resolution test case netfilter: conntrack: clash resolution for reverse collisions - - - - --- 2024-09-10 Florian Westphal Accepted
[nf-next,2/3] netfilter: conntrack: add clash resolution for reverse collisions netfilter: conntrack: clash resolution for reverse collisions - - - - --- 2024-09-10 Florian Westphal Accepted
[nf-next,1/3] netfilter: nf_nat: don't try nat source port reallocation for reverse dir clash netfilter: conntrack: clash resolution for reverse collisions - - - - --- 2024-09-10 Florian Westphal Accepted
[nf,v2,2/2] netfilter: nft_socket: make cgroupsv2 matching work with namespaces Untitled series #422862 - 1 - - --- 2024-09-07 Florian Westphal Accepted
[nf,1/2] netfilter: nft_socket: fix sk refcount leaks [nf,1/2] netfilter: nft_socket: fix sk refcount leaks - 1 - - --- 2024-09-05 Florian Westphal Accepted
[nf-next] netfilter: nf_tables: drop unused 3rd argument from validate callback ops [nf-next] netfilter: nf_tables: drop unused 3rd argument from validate callback ops - - - - --- 2024-08-28 Florian Westphal Accepted
[nf-next,3/3] netfilter: nf_tables: don't initialize registers in nft_do_chain() netfilter: nf_tables: reject loads from - - - - --- 2024-08-20 Florian Westphal Accepted
[nf-next,2/3] netfilter: nf_tables: allow loads only when register is initialized netfilter: nf_tables: reject loads from - - - - --- 2024-08-20 Florian Westphal Accepted
[nf-next,1/3] netfilter: nf_tables: pass context structure to nft_parse_register_load netfilter: nf_tables: reject loads from - - - - --- 2024-08-20 Florian Westphal Accepted
[nf] selftests: netfilter: add test case for recent mismatch bug [nf] selftests: netfilter: add test case for recent mismatch bug - - 1 - --- 2024-07-15 Florian Westphal Accepted
[nf] netfilter: nf_set_pipapo: fix initial map fill [nf] netfilter: nf_set_pipapo: fix initial map fill - 1 1 - --- 2024-07-15 Florian Westphal Accepted
[nf-next] netfilter: nf_tables: store new sets in dedicated list [nf-next] netfilter: nf_tables: store new sets in dedicated list - 1 - - --- 2024-07-10 Florian Westphal Accepted
[nf] netfilter: nf_tables: unconditionally flush pending work before notifier [nf] netfilter: nf_tables: unconditionally flush pending work before notifier - 1 - - --- 2024-07-02 Florian Westphal Accepted
[nf-next] selftests: netfilter: nft_queue.sh: sctp coverage [nf-next] selftests: netfilter: nft_queue.sh: sctp coverage - - - - --- 2024-07-02 Florian Westphal Accepted
[nf-next] selftests: netfilter: nft_queue.sh: add test for disappearing listener [nf-next] selftests: netfilter: nft_queue.sh: add test for disappearing listener - - - - --- 2024-06-19 Florian Westphal Accepted
[nf] netfilter: Use flowlabel flow key when re-routing mangled packets [nf] netfilter: Use flowlabel flow key when re-routing mangled packets - 1 - - --- 2024-06-06 Florian Westphal Accepted
[nftables] tests: shell: add test case for reset tcp warning [nftables] tests: shell: add test case for reset tcp warning - - - - --- 2024-06-04 Florian Westphal Accepted
[nf-next,11/11] netfilter: nf_tables: do not store nft_ctx in transaction objects netfilter: nf_tables: reduce transaction log memory usage - - - - --- 2024-05-13 Florian Westphal Accepted
[nf-next,10/11] netfilter: nf_tables: pass nft_table to destroy function netfilter: nf_tables: reduce transaction log memory usage - - - - --- 2024-05-13 Florian Westphal Accepted
[nf-next,09/11] netfilter: nf_tables: reduce trans->ctx.chain references netfilter: nf_tables: reduce transaction log memory usage - - - - --- 2024-05-13 Florian Westphal Accepted
[nf-next,08/11] netfilter: nf_tables: store chain pointer in rule transaction netfilter: nf_tables: reduce transaction log memory usage - - - - --- 2024-05-13 Florian Westphal Accepted
[nf-next,07/11] netfilter: nf_tables: avoid usage of embedded nft_ctx netfilter: nf_tables: reduce transaction log memory usage - - - - --- 2024-05-13 Florian Westphal Accepted
[nf-next,06/11] netfilter: nf_tables: pass more specific nft_trans_chain where possible netfilter: nf_tables: reduce transaction log memory usage - - - - --- 2024-05-13 Florian Westphal Accepted
[nf-next,05/11] netfilter: nf_tables: pass nft_chain to destroy function, not nft_ctx netfilter: nf_tables: reduce transaction log memory usage - - - - --- 2024-05-13 Florian Westphal Accepted
[nf-next,04/11] netfilter: nf_tables: reduce trans->ctx.table references netfilter: nf_tables: reduce transaction log memory usage - - - - --- 2024-05-13 Florian Westphal Accepted
[nf-next,03/11] netfilter: nf_tables: compact chain+ft transaction objects netfilter: nf_tables: reduce transaction log memory usage - - - - --- 2024-05-13 Florian Westphal Accepted
[nf-next,02/11] netfilter: nf_tables: move bind list_head into relevant subtypes netfilter: nf_tables: reduce transaction log memory usage - - - - --- 2024-05-13 Florian Westphal Accepted
[nf-next,01/11] netfilter: nf_tables: make struct nft_trans first member of derived subtypes netfilter: nf_tables: reduce transaction log memory usage - - - - --- 2024-05-13 Florian Westphal Accepted
[nf] netfilter: tproxy: bail out if IP has been disabled on the device [nf] netfilter: tproxy: bail out if IP has been disabled on the device - 1 - - --- 2024-05-13 Florian Westphal Accepted
[v2,nf] netfilter: nft_set_pipapo: do not free live element [v2,nf] netfilter: nft_set_pipapo: do not free live element - 1 1 - --- 2024-04-10 Florian Westphal Accepted
[nf] netfilter: nf_tables: use kzalloc for hook allocation [nf] netfilter: nf_tables: use kzalloc for hook allocation - 1 - - --- 2024-02-21 Florian Westphal pablo Accepted
[nf] netfilter: nf_tables: set dormant flag on hook register failure [nf] netfilter: nf_tables: set dormant flag on hook register failure - 1 - - --- 2024-02-19 Florian Westphal pablo Accepted
[nf,v2,3/3] netfilter: nft_set_pipapo: remove scratch_aligned pointer netfilter: nft_set_pipapo: nft_set_pipapo: map_index must be per set - 1 1 - --- 2024-02-07 Florian Westphal Accepted
[nf,v2,2/3] netfilter: nft_set_pipapo: add helper to release pcpu scratch area netfilter: nft_set_pipapo: nft_set_pipapo: map_index must be per set - - 1 - --- 2024-02-07 Florian Westphal Accepted
[nf,v2,1/3] netfilter: nft_set_pipapo: store index in scratch maps netfilter: nft_set_pipapo: nft_set_pipapo: map_index must be per set - 1 1 - --- 2024-02-07 Florian Westphal Accepted
[nf] netfilter: nfnetlink_queue: un-break NF_REPEAT [nf] netfilter: nfnetlink_queue: un-break NF_REPEAT - 1 - - --- 2024-02-06 Florian Westphal Accepted
[nf-next,9/9] netfilter: ebtables: allow xtables-nft only builds [nf-next,1/9] netfilter: uapi: Document NFT_TABLE_F_OWNER flag - - - - --- 2024-01-29 Florian Westphal Accepted
[nf-next,8/9] netfilter: xtables: allow xtables-nft only builds [nf-next,1/9] netfilter: uapi: Document NFT_TABLE_F_OWNER flag - - - - --- 2024-01-29 Florian Westphal Accepted
[nf-next,7/9] netfilter: arptables: allow xtables-nft only builds [nf-next,1/9] netfilter: uapi: Document NFT_TABLE_F_OWNER flag - - 1 - --- 2024-01-29 Florian Westphal Accepted
« 1 2 3 425 26 »