Show patches with: State = Action Required       |   70 patches
Patch Series A/F/R/T S/W/F Date Submitter Delegate State
[ipset] tests: Fix for standalone calls to setlist_resize.sh [ipset] tests: Fix for standalone calls to setlist_resize.sh - 1 - - --- 2025-07-22 Phil Sutter kadlec Under Review
ipset: Modify pernet_operations check ipset: Modify pernet_operations check - - - - --- 2025-05-23 Mike Pagano kadlec New
[v2,net-next,11/11] netfilter: nft_set_rbtree: validate open interval overlap [v2,net-next,01/11] netfilter: nft_set_rbtree: don't gc elements on insert - 1 - - --- 2026-02-06 Florian Westphal New
[v2,net-next,10/11] netfilter: nft_set_rbtree: validate element belonging to interval [v2,net-next,01/11] netfilter: nft_set_rbtree: don't gc elements on insert - 1 - - --- 2026-02-06 Florian Westphal New
[v2,net-next,09/11] netfilter: nft_set_rbtree: check for partial overlaps in anonymous sets [v2,net-next,01/11] netfilter: nft_set_rbtree: don't gc elements on insert - 1 - - --- 2026-02-06 Florian Westphal New
[v2,net-next,08/11] netfilter: nft_set_rbtree: fix bogus EEXIST with NLM_F_CREATE with null interval [v2,net-next,01/11] netfilter: nft_set_rbtree: don't gc elements on insert - 1 - - --- 2026-02-06 Florian Westphal New
[v2,net-next,07/11] netfilter: nft_counter: fix reset of counters on 32bit archs [v2,net-next,01/11] netfilter: nft_set_rbtree: don't gc elements on insert - 1 - - --- 2026-02-06 Florian Westphal New
[v2,net-next,06/11] netfilter: nft_set_hash: fix get operation on big endian [v2,net-next,01/11] netfilter: nft_set_rbtree: don't gc elements on insert - 1 - - --- 2026-02-06 Florian Westphal New
[v2,net-next,05/11] selftests: netfilter: add IPV6_TUNNEL to config [v2,net-next,01/11] netfilter: nft_set_rbtree: don't gc elements on insert 1 1 - - --- 2026-02-06 Florian Westphal New
[v2,net-next,04/11] netfilter: flowtable: dedicated slab for flow entry [v2,net-next,01/11] netfilter: nft_set_rbtree: don't gc elements on insert - - - - --- 2026-02-06 Florian Westphal New
[v2,net-next,03/11] selftests: netfilter: nft_queue.sh: add udp fraglist gro test case [v2,net-next,01/11] netfilter: nft_set_rbtree: don't gc elements on insert - - - - --- 2026-02-06 Florian Westphal New
[v2,net-next,02/11] netfilter: nfnetlink_queue: do shared-unconfirmed check before segmentation [v2,net-next,01/11] netfilter: nft_set_rbtree: don't gc elements on insert - 1 - - --- 2026-02-06 Florian Westphal New
[v2,net-next,01/11] netfilter: nft_set_rbtree: don't gc elements on insert [v2,net-next,01/11] netfilter: nft_set_rbtree: don't gc elements on insert - 1 - - --- 2026-02-06 Florian Westphal New
[v2,net-next,00/11] netfilter: updates for net-next - - - - --- 2026-02-06 Florian Westphal New
[nf-next,v3,4/4] netfilter: nft_set_rbtree: validate open interval overlap nft_set_rbtree: complete interval overlap detection - 1 - - --- 2026-02-06 Pablo Neira Ayuso Under Review
[nf-next,v3,3/4] netfilter: nft_set_rbtree: validate element belonging to interval nft_set_rbtree: complete interval overlap detection - 1 - - --- 2026-02-06 Pablo Neira Ayuso Under Review
[nf-next,v3,2/4] netfilter: nft_set_rbtree: check for partial overlaps in anonymous sets nft_set_rbtree: complete interval overlap detection - 1 - - --- 2026-02-06 Pablo Neira Ayuso Under Review
[nf-next,v3,1/4] netfilter: nft_set_rbtree: fix bogus EEXIST with NLM_F_CREATE with null interval nft_set_rbtree: complete interval overlap detection - 1 - - --- 2026-02-06 Pablo Neira Ayuso Under Review
[nft,v2] configure: Implement --enable-profiling option [nft,v2] configure: Implement --enable-profiling option - - - - --- 2026-02-05 Phil Sutter New
[nft,v2] Makefile: Pass PKG_CONFIG_PATH to internal builds [nft,v2] Makefile: Pass PKG_CONFIG_PATH to internal builds - - - - --- 2026-02-05 Phil Sutter New
[v5] netfilter: annotate NAT helper hook pointers with __rcu [v5] netfilter: annotate NAT helper hook pointers with __rcu - - - - --- 2026-02-05 Sun Jian Under Review
[nft,20/20] evaluate: skip EXPR_SET_ELEM in error path of set statements prepare for EXPR_SET_ELEM removal - - - - --- 2026-02-05 Pablo Neira Ayuso New
[nft,19/20] evaluate: remove check for constant expression in set/map statement prepare for EXPR_SET_ELEM removal - - - - --- 2026-02-05 Pablo Neira Ayuso New
[nft,18/20] segtree: use set->key->byteorder instead of expr->byteorder prepare for EXPR_SET_ELEM removal - - - - --- 2026-02-05 Pablo Neira Ayuso New
[nft,17/20] segtree: consolidate calls to expr_value() to fetch the element key prepare for EXPR_SET_ELEM removal - - - - --- 2026-02-05 Pablo Neira Ayuso New
[nft,16/20] segtree: replace default case by specific types in get_set_intervals() prepare for EXPR_SET_ELEM removal - - - - --- 2026-02-05 Pablo Neira Ayuso New
[nft,15/20] segtree: disentangle concat_range_aggregate() prepare for EXPR_SET_ELEM removal - - - - --- 2026-02-05 Pablo Neira Ayuso New
[nft,14/20] segtree: remove dead code in set_expr_add_splice() prepare for EXPR_SET_ELEM removal - - - - --- 2026-02-05 Pablo Neira Ayuso New
[nft,13/20] segtree: more assert on EXPR_SET_ELEM prepare for EXPR_SET_ELEM removal - - - - --- 2026-02-05 Pablo Neira Ayuso New
[nft,12/20] segtree: remove EXPR_VALUE from expr_value() prepare for EXPR_SET_ELEM removal - - - - --- 2026-02-05 Pablo Neira Ayuso New
[nft,11/20] src: move __set_expr_add() to src/intervals.c prepare for EXPR_SET_ELEM removal - - - - --- 2026-02-05 Pablo Neira Ayuso New
[nft,10/20] intervals: remove interval_expr_key() prepare for EXPR_SET_ELEM removal - - - - --- 2026-02-05 Pablo Neira Ayuso New
[nft,09/20] src: use key location to prepare removal of EXPR_SET_ELEM prepare for EXPR_SET_ELEM removal - - - - --- 2026-02-05 Pablo Neira Ayuso New
[nft,08/20] src: remove EXPR_SET_ELEM in range_expr_value_{low,high}() prepare for EXPR_SET_ELEM removal - - - - --- 2026-02-05 Pablo Neira Ayuso New
[nft,07/20] src: move flags from EXPR_SET_ELEM to key prepare for EXPR_SET_ELEM removal - - - - --- 2026-02-05 Pablo Neira Ayuso New
[nft,06/20] segtree: rename set_elem_add() to set_elem_expr_add() prepare for EXPR_SET_ELEM removal - - - - --- 2026-02-05 Pablo Neira Ayuso New
[nft,05/20] evaluate: clean up expr_evaluate_set() prepare for EXPR_SET_ELEM removal - - - - --- 2026-02-05 Pablo Neira Ayuso New
[nft,04/20] evaluate: simplify sets as set elems evaluation prepare for EXPR_SET_ELEM removal - - - - --- 2026-02-05 Pablo Neira Ayuso New
[nft,03/20] src: assert on EXPR_SET only contains EXPR_SET_ELEM in the expressions list prepare for EXPR_SET_ELEM removal - - - - --- 2026-02-05 Pablo Neira Ayuso New
[nft,02/20] src: allocate EXPR_SET_ELEM for EXPR_SET in embedded set declaration in sets prepare for EXPR_SET_ELEM removal - - - - --- 2026-02-05 Pablo Neira Ayuso New
[nft,01/20] src: normalize set element with EXPR_MAPPING prepare for EXPR_SET_ELEM removal - - - - --- 2026-02-05 Pablo Neira Ayuso New
[v5,nf-next,3/3] netfilter: nft_quota: use atomic64_xchg for reset netfilter: nf_tables: fix reset request deadlock - - - - --- 2026-02-04 Brian Witte Under Review
[v5,nf-next,2/3] netfilter: nft_counter: serialize reset with spinlock netfilter: nf_tables: fix reset request deadlock - - - - --- 2026-02-04 Brian Witte Under Review
[v5,nf-next,1/3] Revert nf_tables commit_mutex in reset path netfilter: nf_tables: fix reset request deadlock - 3 - - --- 2026-02-04 Brian Witte Under Review
[nf-next,v3] netfilter: nf_tables: add math expression support [nf-next,v3] netfilter: nf_tables: add math expression support - - - - --- 2026-02-04 Fernando Fernandez Mancera New
test: shell: run-test.sh: introduce NFT_TEST_EXCLUDES test: shell: run-test.sh: introduce NFT_TEST_EXCLUDES - - - - --- 2026-02-04 Yi Chen New
iptables: fix null dereference parsing bitwise operations iptables: fix null dereference parsing bitwise operations - - - - --- 2026-02-02 Remy D. Farley New
[net-next,v7,5/5] doc/netlink: nftables: Fill out operation attributes doc/netlink: Expand nftables specification - - - - --- 2026-02-02 Remy D. Farley New
[net-next,v7,4/5] doc/netlink: nftables: Add sub-messages doc/netlink: Expand nftables specification - - 1 - --- 2026-02-02 Remy D. Farley New
[net-next,v7,3/5] doc/netlink: nftables: Update attribute sets doc/netlink: Expand nftables specification - - 1 - --- 2026-02-02 Remy D. Farley New
[net-next,v7,2/5] doc/netlink: nftables: Add definitions doc/netlink: Expand nftables specification - - 1 - --- 2026-02-02 Remy D. Farley New
[net-next,v7,1/5] doc/netlink: netlink-raw: Add max check doc/netlink: Expand nftables specification - - 1 - --- 2026-02-02 Remy D. Farley New
[nf-next] selftests: netfilter: add IPV6_TUNNEL to config [nf-next] selftests: netfilter: add IPV6_TUNNEL to config 1 1 - - --- 2026-01-30 Florian Westphal Under Review
[v2,nf-next] netfilter: nfnetlink_queue: do shared-unconfirmed check before segmentation [v2,nf-next] netfilter: nfnetlink_queue: do shared-unconfirmed check before segmentation - 1 - - --- 2026-01-30 Florian Westphal Under Review
[nf-next,v2] netfilter: flowtable: dedicated slab for flow entry [nf-next,v2] netfilter: flowtable: dedicated slab for flow entry - - - - --- 2026-01-30 Qingfang Deng Under Review
[nft,WIP] src: disable set dump content for incremental interval set updates [nft,WIP] src: disable set dump content for incremental interval set updates - - - - --- 2026-01-28 Pablo Neira Ayuso New
Global buffer overflow in parse_ip6_mask() Global buffer overflow in parse_ip6_mask() - - - - --- 2025-12-18 Ilia Kashintsev New
[nft] datatype: Accept IPv4 addresses for ip6addr_type [nft] datatype: Accept IPv4 addresses for ip6addr_type - - - - --- 2025-12-10 Phil Sutter New
[nft,v2] src: Convert ip {s,d}addr to IPv4-mapped as needed [nft,v2] src: Convert ip {s,d}addr to IPv4-mapped as needed - - - - --- 2025-12-10 Phil Sutter New
Some common changes in ulogs: 1) Added debug log to indicate when stack is created. Helps to debug … Some common changes in ulogs: 1) Added debug log to indicate when stack is created. Helps to debug … - - - - --- 2025-11-30 Serhii Ivanov New
Update nlog plufin to provide more information to other ones Update nlog plufin to provide more information to other ones - - - - --- 2025-11-30 Serhii Ivanov New
Added netfilter output plugin with ability to write into pcap nflog packets Added netfilter output plugin with ability to write into pcap nflog packets - - - - --- 2025-11-30 Serhii Ivanov New
[nft,v3] src: add connlimit stateful object support [nft,v3] src: add connlimit stateful object support - - 1 - --- 2025-11-24 Fernando Fernandez Mancera New
[libnftnl] src: add connlimit stateful object support [libnftnl] src: add connlimit stateful object support - - - - --- 2025-11-04 Fernando Fernandez Mancera New
[libnftnl,v2] expr: add support to math expression [libnftnl,v2] expr: add support to math expression - - - - --- 2025-11-03 Fernando Fernandez Mancera New
[V6] netfilter: netns nf_conntrack: per-netns net.netfilter.nf_conntrack_max sysctl [V6] netfilter: netns nf_conntrack: per-netns net.netfilter.nf_conntrack_max sysctl - - - - --- 2025-04-15 lvxiafei Under Review
[nf] netfilter: conntrack: correct sequence on reinitialized TCP connection [nf] netfilter: conntrack: correct sequence on reinitialized TCP connection - 1 - - --- 2025-02-20 Pablo Neira Ayuso New
[nftables] include: fix for musl with iptables v1.8.11 [nftables] include: fix for musl with iptables v1.8.11 - - - - --- 2024-12-19 Alyssa Ross New
[v4] net/bridge: Optimizing read-write locks in ebtables.c [v4] net/bridge: Optimizing read-write locks in ebtables.c - - - - --- 2024-09-25 yushengjin New
[nft] limit: Support arbitrary unit values [nft] limit: Support arbitrary unit values - - - - --- 2024-04-13 Phil Sutter New