aboutsummaryrefslogtreecommitdiffstats
path: root/include/linux/netfilter
AgeCommit message (Expand)AuthorFilesLines
2024-01-31netfilter: ipset: fix performance regression in swap operationJozsef Kadlecsik1-0/+4
2023-10-04netfilter: handle the connecting collision properly in nf_conntrack_proto_sctpXin Long1-0/+1
2023-08-08netfilter: h323: Remove unused function declarationsYue Haibing1-4/+0
2023-08-08netfilter: gre: Remove unused function declaration nf_ct_gre_keymap_flush()Yue Haibing1-1/+0
2023-04-22netfilter: nf_tables: don't write table validation state without mutexFlorian Westphal1-1/+0
2023-01-02netfilter: ipset: Rework long task execution when adding/deleting entriesJozsef Kadlecsik1-1/+1
2022-11-30netfilter: ipset: Add support for new bitmask parameterVishwanath Pai1-0/+10
2022-07-11netfilter: h323: merge nat hook pointers into oneFlorian Westphal1-53/+56
2022-07-11netfilter: nf_conntrack: add missing __rcu annotationsFlorian Westphal1-1/+1
2022-02-04netfilter: conntrack: pptp: use single option structureFlorian Westphal1-21/+17
2022-01-09netfilter: conntrack: avoid useless indirection during conntrack destructionFlorian Westphal1-0/+2
2022-01-09netfilter: conntrack: convert to refcount_t apiFlorian Westphal1-4/+4
2021-09-03Merge git://git.kernel.org/pub/scm/linux/kernel/git/pablo/nfJakub Kicinski1-0/+1
2021-08-30netfilter: refuse insertion if chain has grown too largeFlorian Westphal1-0/+1
2021-08-13Merge git://git.kernel.org/pub/scm/linux/kernel/git/netdev/netJakub Kicinski1-0/+3
2021-08-09netfilter: x_tables: never register tables by defaultFlorian Westphal1-3/+3
2021-08-04netfilter: ipset: Limit the maximal range of consecutive elements to add/deleteJozsef Kadlecsik1-0/+3
2021-06-07netfilter: nfnetlink: add struct nfgenmsg to struct nfnl_info and use itPablo Neira Ayuso1-0/+1
2021-05-29netfilter: x_tables: reduce xt_action_param by 8 byteFlorian Westphal1-1/+1
2021-04-26netfilter: allow to turn off xtables compat layerFlorian Westphal1-6/+6
2021-04-26netfilter: nfnetlink: consolidate callback typesPablo Neira Ayuso1-6/+10
2021-04-26netfilter: nfnetlink: pass struct nfnl_info to batch callbacksPablo Neira Ayuso1-4/+2
2021-04-26netfilter: nfnetlink: pass struct nfnl_info to rcu callbacksPablo Neira Ayuso1-4/+2
2021-04-26netfilter: nfnetlink: add struct nfnl_info and pass it to callbacksPablo Neira Ayuso1-4/+9
2021-04-26netfilter: ip_tables: pass table pointer via nf_hook_opsFlorian Westphal1-0/+3
2021-04-26netfilter: x_tables: add xt_find_tableFlorian Westphal1-0/+1
2021-04-06netfilter: nfnetlink: add and use nfnetlink_broadcastFlorian Westphal1-0/+2
2021-03-31netfilter: add helper function to set up the nfnetlink header and use itPablo Neira Ayuso1-0/+27
2021-03-31netfilter: ipset: Remove duplicate declarationWan Jiabing1-2/+0
2021-03-15netfilter: x_tables: Use correct memory barriers.Mark Tomlinson1-1/+1
2021-03-15Revert "netfilter: x_tables: Switch synchronization to RCU"Mark Tomlinson1-4/+1
2020-12-11Merge git://git.kernel.org/pub/scm/linux/kernel/git/netdev/netJakub Kicinski1-1/+4
2020-12-08netfilter: x_tables: Switch synchronization to RCUSubash Abhinov Kasiviswanathan1-1/+4
2020-11-06Merge git://git.kernel.org/pub/scm/linux/kernel/git/netdev/netJakub Kicinski1-1/+8
2020-10-31netfilter: ipset: Add bucketsize parameter to all hash typesJozsef Kadlecsik1-0/+5
2020-10-30netfilter: nf_tables: missing validation from the abort pathPablo Neira Ayuso1-1/+8
2020-09-09Merge git://git.kernel.org/pub/scm/linux/kernel/git/pablo/nf-nextDavid S. Miller1-1/+1
2020-08-28netfilter: nfnetlink: nfnetlink_unicast() reports EAGAIN instead of ENOBUFSPablo Neira Ayuso1-2/+1
2020-08-28netfilter: conntrack: add clash resolution stat counterFlorian Westphal1-0/+1
2020-08-28netfilter: conntrack: remove ignore statsFlorian Westphal1-1/+0
2020-08-20netfilter: conntrack: allow sctp hearbeat after connection re-useFlorian Westphal1-0/+2
2020-07-24netfilter: switch xt_copy_counters to sockptr_tChristoph Hellwig1-2/+2
2020-07-19netfilter: remove the compat argument to xt_copy_counters_from_userChristoph Hellwig1-1/+1
2020-05-27netfilter: nf_conntrack_pptp: fix compilation warning with W=1 buildPablo Neira Ayuso1-1/+1
2020-05-25netfilter: nf_conntrack_pptp: prevent buffer overflows in debug codePablo Neira Ayuso1-1/+1
2020-03-15netfilter: Replace zero-length array with flexible-array memberGustavo A. R. Silva2-5/+5
2020-02-22netfilter: ipset: Fix "INFO: rcu detected stall in hash_xxx" reportsJozsef Kadlecsik1-1/+10
2020-01-24netfilter: nf_tables: autoload modules from the abort pathPablo Neira Ayuso1-1/+1
2020-01-20netfilter: ipset: use bitmap infrastructure completelyKadlecsik József1-7/+0
2019-10-07netfilter: ipset: move ip_set_get_ip_port() to ip_set_bitmap_port.c.Jeremy Sowden1-3/+0
2019-10-07netfilter: ipset: move function to ip_set_bitmap_ip.c.Jeremy Sowden1-14/+0
2019-10-07netfilter: ipset: make ip_set_put_flags extern.Jeremy Sowden1-22/+1
2019-10-07netfilter: ipset: move functions to ip_set_core.c.Jeremy Sowden1-102/+0
2019-10-07netfilter: ipset: move ip_set_comment functions from ip_set.h to ip_set_core.c.Jeremy Sowden1-61/+2
2019-10-07netfilter: ipset: add a coding-style fix to ip_set_ext_destroy.Jeremy Sowden1-3/+5
2019-09-13netfilter: remove CONFIG_NETFILTER checks from headers.Jeremy Sowden1-6/+0
2019-09-13netfilter: conntrack: move code to linux/nf_conntrack_common.h.Jeremy Sowden1-0/+20
2019-09-13netfilter: replace defined(CONFIG...) || defined(CONFIG...MODULE) with IS_ENA...Jeremy Sowden1-1/+1
2019-09-13netfilter: inline xt_hashlimit, ebt_802_3 and xt_physdev headersJeremy Sowden2-19/+0
2019-09-13netfilter: fix coding-style errors.Jeremy Sowden1-1/+1
2019-08-27Merge git://git.kernel.org/pub/scm/linux/kernel/git/netdev/netDavid S. Miller1-0/+5
2019-08-19netfilter: add include guard to nf_conntrack_h323_types.hMasahiro Yamada1-0/+5
2019-08-13netfilter: remove "#ifdef __KERNEL__" guards from some headers.Jeremy Sowden7-21/+0
2019-08-13netfilter: add missing IS_ENABLED(CONFIG_NETFILTER) checks to some header-files.Jeremy Sowden1-0/+6
2019-08-13netfilter: add missing includes to a number of header-files.Jeremy Sowden10-11/+39
2019-08-13netfilter: inline four headers files into another one.Jeremy Sowden5-280/+234
2019-07-16netfilter: Update obsolete comments referring to ip_conntrackYonatan Goldschmidt1-2/+1
2019-06-25Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net-nextPablo Neira Ayuso7-31/+10
2019-06-19treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 500Thomas Gleixner5-20/+5
2019-06-19treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 484Thomas Gleixner2-5/+2
2019-06-10Update my email addressJozsef Kadlecsik4-4/+4
2019-04-27ipset: drop ipset_nest_start() and ipset_nest_end()Michal Kubecek1-7/+4
2019-04-27netlink: make nla_nest_start() add NLA_F_NESTED flagMichal Kubecek1-1/+1
2019-04-08netfilter: make two functions staticFlorian Westphal1-1/+0
2019-04-08netfilter: nft_osf: Add version option supportFernando Fernandez Mancera1-3/+8
2019-03-01netfilter: convert the proto argument from u8 to u16Li RongQing1-2/+2
2019-01-18netfilter: conntrack: remove pkt_to_tuple callbackFlorian Westphal1-0/+2
2019-01-18netfilter: conntrack: gre: switch module to be built-inFlorian Westphal1-13/+1
2019-01-18netfilter: conntrack: gre: convert rwlock to rcuFlorian Westphal1-0/+1
2018-12-20Merge git://git.kernel.org/pub/scm/linux/kernel/git/pablo/nf-nextDavid S. Miller2-3/+1
2018-12-17netfilter: nat: remove nf_nat_l4proto structFlorian Westphal1-2/+0
2018-12-04netfilter: nf_tables: fix suspicious RCU usage in nft_chain_stats_replace()Taehee Yoo1-12/+0
2018-11-26netfilter: nfnetlink_cttimeout: fetch timeouts for udplite and gre, tooFlorian Westphal1-0/+13
2018-11-12Merge branch 'master' of git://blackhole.kfki.hu/nf-nextPablo Neira Ayuso1-1/+1
2018-11-03netfilter: ipset: Correct rcu_dereference() call in ip_set_put_comment()Jozsef Kadlecsik1-2/+2
2018-11-01netfilter: ipset: list:set: Decrease refcount synchronously on deletion and r...Stefano Brivio1-1/+1
2018-10-27netfilter: ipset: Introduction of new commands and protocol version 7Jozsef Kadlecsik1-1/+1
2018-10-16netfilter: nft_osf: Add ttl option supportFernando Fernandez Mancera1-1/+2
2018-09-17netfilter: remove obsolete need_conntrack stubFlorian Westphal1-3/+0
2018-08-08netfilter: nfnetlink_osf: add missing enum in nfnetlink_osf uapi headerFernando Fernandez Mancera1-12/+0
2018-08-03netfilter: nfnetlink_osf: rename nf_osf header file to nfnetlink_osfFernando Fernandez Mancera1-1/+1
2018-08-03netfilter: nf_osf: move nf_osf_fingers to non-uapi header fileFernando Fernandez Mancera1-0/+2
2018-07-30netfilter: nf_osf: add nf_osf_find()Pablo Neira Ayuso1-0/+9
2018-07-18netfilter: nf_tables: take module reference when starting a batchFlorian Westphal1-0/+1
2018-06-11Merge git://git.kernel.org/pub/scm/linux/kernel/git/pablo/nfDavid S. Miller1-6/+14
2018-06-06netfilter: ipset: Limit max timeout valueJozsef Kadlecsik1-4/+6
2018-06-06netfilter: ipset: List timing out entries with "timeout 1" instead of zeroJozsef Kadlecsik1-2/+8
2018-06-01netfilter: nf_tables: fix chain dependency validationPablo Neira Ayuso1-0/+1
2018-05-17netfilter: fix fallout from xt/nf osf separationFlorian Westphal1-0/+6
2018-05-07netfilter: extract Passive OS fingerprint infrastructure from xt_osfFernando Fernandez Mancera1-0/+27
2018-03-30Merge git://git.kernel.org/pub/scm/linux/kernel/git/pablo/nf-nextDavid S. Miller2-3/+5
2018-03-11netfilter: x_tables: add and use xt_check_proc_nameFlorian Westphal1-0/+2
2018-03-05netfilter: compat: prepare xt_compat_init_offsets to return errorsFlorian Westphal1-1/+1
2018-03-05netfilter: x_tables: add counters allocation wrapperFlorian Westphal1-0/+1
2018-03-05netfilter: x_tables: move hook entry checks into coreFlorian Westphal1-0/+2
2018-03-05netfilter: nfnetlink_acct: remove useless parameterTaehee Yoo1-2/+1
2018-01-31Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net-nextLinus Torvalds3-6/+27
2018-01-08netfilter: ipset: Fix "don't update counters" mode when counters used at the ...Jozsef Kadlecsik2-6/+25
2018-01-08netfilter: xtables: add and use xt_request_find_table_lockFlorian Westphal1-0/+2
2017-12-05netlink: Remove smp_read_barrier_depends() from commentPaul E. McKenney1-2/+1
2017-11-07Merge branch 'linus' into locking/core, to resolve conflictsIngo Molnar25-0/+25
2017-11-02License cleanup: add SPDX GPL-2.0 license identifier to files with no licenseGreg Kroah-Hartman25-0/+25
2017-10-25locking/atomics, net/netlink/netfilter: Convert ACCESS_ONCE() to READ_ONCE()/...Mark Rutland1-1/+1
2017-09-04netfilter: xt_hashlimit: add rate match modeVishwanath Pai1-1/+2
2017-06-19netfilter: nfnetlink: extended ACK reportingPablo Neira Ayuso1-4/+6
2017-05-15netfilter: xtables: zero padding in data_to_userWillem de Bruijn1-1/+1
2017-04-07netfilter: Add nfnl_msg_type() helper functionPablo Neira Ayuso1-0/+5
2017-02-12netfilter: nfnetlink: allow to check for generation IDPablo Neira Ayuso1-0/+1
2017-01-09xtables: add xt_match, xt_target and data copy_to_user functionsWillem de Bruijn1-0/+9
2016-12-06netfilter: x_tables: pack percpu counter allocationsFlorian Westphal1-1/+6
2016-12-06netfilter: x_tables: pass xt_counters struct to counter allocatorFlorian Westphal1-26/+1
2016-12-06netfilter: x_tables: pass xt_counters struct instead of packet counterFlorian Westphal1-5/+1
2016-12-04netfilter: conntrack: built-in support for DCCPDavide Caratti1-1/+1
2016-11-10netfilter: ipset: Count non-static extension memory for userspaceJozsef Kadlecsik2-4/+11
2016-11-10netfilter: ipset: Add element count to all set types headerJozsef Kadlecsik2-1/+3
2016-11-10netfilter: ipset: Regroup ip_set_put_extensions and add externJozsef Kadlecsik1-4/+2
2016-11-10netfilter: ipset: Split extensions into separate filesJozsef Kadlecsik3-93/+123
2016-11-10netfilter: ipset: Use kmalloc() in comment extension helperJozsef Kadlecsik1-1/+1
2016-11-10netfilter: ipset: Improve skbinfo get/init helpersJozsef Kadlecsik1-19/+11
2016-11-10netfilter: ipset: Headers file cleanupJozsef Kadlecsik1-21/+21
2016-11-10netfilter: ipset: Mark some helper args as const.Jozsef Kadlecsik3-5/+5
2016-11-10netfilter: ipset: Remove extra whitespaces in ip_set.hJozsef Kadlecsik1-6/+7
2016-11-03netfilter: x_tables: move hook state into xt_action_param structurePablo Neira Ayuso1-10/+38
2016-09-12netfilter: conntrack: remove packet hotpath statsFlorian Westphal1-4/+0
2016-09-07netfilter: gre: Use consistent GRE and PTTP header structure instead of the o...Gao Feng1-42/+0
2016-09-07netfilter: gre: Use consistent GRE_* macros instead of ones defined by netfil...Gao Feng1-20/+2
2016-08-18netfilter: nfnetlink_acct: report overquota to the right netnsLiping Zhang1-2/+2
2016-07-18netfilter: x_tables: speed up jump target validationFlorian Westphal1-0/+4
2016-07-03netfilter: Convert FWINV<[foo]> macros and uses to NF_INVFJoe Perches1-0/+4
2016-04-29netfilter: fix IS_ERR_VALUE usagePablo Neira Ayuso1-3/+3
2016-04-24Merge git://git.kernel.org/pub/scm/linux/kernel/git/pablo/nf-nextDavid S. Miller1-1/+11
2016-04-23libnl: nla_put_net64(): align on a 64-bit areaNicolas Dichtel1-3/+6
2016-04-14netfilter: x_tables: introduce and use xt_copy_counters_from_userFlorian Westphal1-0/+3
2016-04-14netfilter: x_tables: xt_compat_match_from_user doesn't need a retvalFlorian Westphal1-1/+1
2016-04-14netfilter: x_tables: check for bogus target offsetFlorian Westphal1-2/+2
2016-04-14netfilter: x_tables: add compat version of xt_check_entry_offsetsFlorian Westphal1-0/+3
2016-04-14netfilter: x_tables: add and use xt_check_entry_offsetsFlorian Westphal1-0/+4
2016-03-28netfilter: ipset: fix race condition in ipset save, swap and deleteVishwanath Pai1-0/+4
2016-03-02netfilter: xtables: don't hook tables by defaultFlorian Westphal1-2/+4
2016-02-18nfnetlink: remove nfnetlink_alloc_skbFlorian Westphal1-2/+0
2015-12-28netfilter: nfnetlink: pass down netns pointer to commit() and abort() callbacksPablo Neira Ayuso1-2/+2
2015-12-28netfilter: nfnetlink: pass down netns pointer to call() and call_rcu()Pablo Neira Ayuso1-4/+4
2015-12-18Merge git://git.kernel.org/pub/scm/linux/kernel/git/pablo/nf-nextDavid S. Miller1-0/+13
2015-12-10netfilter: nfnetlink: avoid recurrent netns lookups in call_batchPablo Neira Ayuso1-1/+1
2015-11-23netfilter: nf_ct_sctp: move ip_ct_sctp away from UAPIMarcelo Ricardo Leitner1-0/+13
2015-11-07netfilter: ipset: Fix extension alignmentJozsef Kadlecsik1-1/+1
2015-10-09net/nfnetlink: lockdep_nfnl_is_held can be booleanYaowei Bai1-3/+3
2015-09-18netfilter: x_tables: Pass struct net in xt_action_paramEric W. Biederman1-1/+2
2015-09-02netfilter: nf_conntrack: make nf_ct_zone_dflt built-inDaniel Borkmann1-0/+23
2015-08-07netfilter: nfacct: per network namespace supportAndreas Schultz1-1/+2
2015-07-15netfilter: add and use jump label for xt_teeFlorian Westphal1-0/+7
2015-07-15netfilter: xtables: don't save/restore jumpstack offsetFlorian Westphal1-1/+0
2015-06-18netfilter: xtables: fix warnings on 32bit platformsFlorian Westphal1-4/+4
2015-06-18netfilter: x_tables: align per cpu xt_counterEric Dumazet1-2/+4
2015-06-15netfilter: x_tables: remove XT_TABLE_INFO_SZ and a dereference.Eric Dumazet1-4/+1
2015-06-14netfilter: ipset: Fix coding styles reported by checkpatch.plJozsef Kadlecsik1-3/+2
2015-06-14netfilter: ipset: Prepare the ipset core to use RCU at set levelJozsef Kadlecsik3-28/+44
2015-06-14netfilter: ipset: Fix parallel resizing and listing of the same setJozsef Kadlecsik1-5/+8
2015-06-14netfilter: ipset: Fix cidr handling for hash:*net* typesJozsef Kadlecsik1-2/+0
2015-06-14netfilter: ipset: Use MSEC_PER_SEC consistentlyJozsef Kadlecsik1-2/+2
2015-06-12netfilter: xtables: avoid percpu ruleset duplicationFlorian Westphal1-2/+2
2015-06-12netfilter: xtables: use percpu rule countersFlorian Westphal1-0/+49
2015-05-15netfilter: x_tables: add context to know if extension runs from nft_compatPablo Neira Ayuso1-0/+2
2015-05-14netfilter: ipset: deinline ip_set_put_extensions()Denys Vlasenko1-22/+2
2015-05-13netfilter: ipset: Fix ext_*() macrosSergey Popovich1-4/+4
2015-03-31netlink: implement nla_put_in_addr and nla_put_in6_addrJiri Benc1-3/+2
2014-09-15netfilter: ipset: send nonzero skbinfo extensions onlyJozsef Kadlecsik1-7/+11
2014-09-15netfilter: ipset: Add skbinfo extension kernel support in the ipset core.Anton Danilov1-1/+55
2014-08-24netfilter: ipset: Fix warn: integer overflows 'sizeof(*map) + size * set->dsize'Jozsef Kadlecsik1-0/+1
2014-04-29netfilter: nfnetlink_acct: Adding quota support to accounting frameworkMathieu Poirier1-1/+7
2014-04-08netfilter: nf_conntrack: flush net_gre->keymap_list only from gre helperAndrey Vagin1-1/+0
2014-03-06netfilter: ipset: add forceadd kernel support for hash set typesJosh Hunt1-0/+3
2014-03-06netfilter: ipset: Prepare the kernel for create option flags when no extensio...Jozsef Kadlecsik1-0/+2
2014-03-06netfilter: ipset: add hash:ip,mark data type to ipsetVytas Dauksa1-4/+6
2014-02-25netfilter: nfnetlink: add rcu_dereference_protected() helpersPatrick McHardy1-0/+21
2014-01-03netfilter: ipset: remove unused codestephen hemminger1-1/+0
2013-11-04Merge branch 'master' of git://git.kernel.org/pub/scm/linux/kernel/git/pablo/...David S. Miller1-0/+10
2013-10-22netfilter: ipset: Use netlink callback dump args onlyJozsef Kadlecsik1-0/+10
2013-10-14netfilter: nfnetlink: add batch support and use it from nf_tablesPablo Neira Ayuso1-0/+5
2013-10-04Merge branch 'master' of git://git.kernel.org/pub/scm/linux/kernel/git/pablo/...David S. Miller4-77/+242
2013-10-01netfilter: nf_ct_sip: consolidate NAT hook functionsholger@eitzenberger.org1-49/+58
2013-09-30netfiler: ipset: Add net namespace for ipsetVitaly Lavrov1-7/+9
2013-09-30netfilter: ipset: Use a common function at listing the extensionsJozsef Kadlecsik1-0/+21
2013-09-30netfilter: ipset: Support comments for ipset entries in the core.Oliver Smith2-8/+100
2013-09-30netfilter: ipset: Support extensions which need a per data destroy functionJozsef Kadlecsik1-5/+17
2013-09-30netfilter: ipset: Generalize extensions supportJozsef Kadlecsik1-0/+13
2013-09-30netfilter: ipset: Move extension data to set structureJozsef Kadlecsik2-11/+22
2013-09-30netfilter: ipset: Rename extension offset ids to extension idsJozsef Kadlecsik1-8/+8
2013-09-30netfilter: ipset: Prepare ipset to support multiple networks for hash typesJozsef Kadlecsik1-0/+2
2013-09-30netfilter: ipset: Use fix sized type for timeout in the extension partJozsef Kadlecsik1-1/+1
generated by cgit 1.2.3-korg (git 2.39.0) at 2024-05-24 15:27:56 +0000