moonjuice/kernel_arpi
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
Files
cb8aa9a3affb7d23b11b11fbed41e2feaabc4b0a
kernel_arpi/net/netfilter
History
Romain Bellan cb8aa9a3af netfilter: ctnetlink: add kernel side filtering for dump 
Conntrack dump does not support kernel side filtering (only get exists,
but it returns only one entry. And user has to give a full valid tuple)

It means that userspace has to implement filtering after receiving many
irrelevant entries, consuming resources (conntrack table is sometimes
very huge, much more than a routing table for example).

This patch adds filtering in kernel side. To achieve this goal, we:

 * Add a new CTA_FILTER netlink attributes, actually a flag list to
   parametize filtering
 * Convert some *nlattr_to_tuple() functions, to allow a partial parsing
   of CTA_TUPLE_ORIG and CTA_TUPLE_REPLY (so nf_conntrack_tuple it not
   fully set)

Filtering is now possible on:
 * IP SRC/DST values
 * Ports for TCP and UDP flows
 * IMCP(v6) codes types and IDs

Filtering is done as an "AND" operator. For example, when flags
PROTO_SRC_PORT, PROTO_NUM and IP_SRC are sets, only entries matching all
values are dumped.

Changes since v1:
  Set NLM_F_DUMP_FILTERED in nlm flags if entries are filtered

Changes since v2:
  Move several constants to nf_internals.h
  Move a fix on netlink values check in a separate patch
  Add a check on not-supported flags
  Return EOPNOTSUPP if CDA_FILTER is set in ctnetlink_flush_conntrack
  (not yet implemented)
  Code style issues

Changes since v3:
  Fix compilation warning reported by kbuild test robot

Changes since v4:
  Fix a regression introduced in v3 (returned EINVAL for valid netlink
  messages without CTA_MARK)

Changes since v5:
  Change definition of CTA_FILTER_F_ALL
  Fix a regression when CTA_TUPLE_ZONE is not set

Signed-off-by: Romain Bellan <romain.bellan@wifirst.fr>
Signed-off-by: Florent Fourcot <florent.fourcot@wifirst.fr>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
2020-05-27 22:20:34 +02:00
..
ipset
netfilter: ipset: Pass lockdep expression to RCU lists
2020-04-06 14:31:25 +02:00
ipvs
sysctl: pass kernel pointers to ->proc_handler
2020-04-27 02:07:40 -04:00
core.c
netfilter: revert introduction of egress hook
2020-03-18 16:35:48 -07:00
Kconfig
docs: networking: convert tproxy.txt to ReST
2020-04-30 12:56:38 -07:00
Makefile
x86: update AS_* macros to binutils >=2.23, supporting ADX and AVX2
2020-04-09 00:12:48 +09:00
nf_conncount.c
treewide: Add SPDX license identifier for more missed files
2019-05-21 10:50:45 +02:00
nf_conntrack_acct.c
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 500
2019-06-19 17:09:55 +02:00
nf_conntrack_amanda.c
netfilter: nf_conntrack_sip: fix expectation clash
2019-07-16 13:16:59 +02:00
nf_conntrack_broadcast.c
netfilter: nf_conntrack_sip: fix expectation clash
2019-07-16 13:16:59 +02:00
nf_conntrack_core.c
netfilter: ctnetlink: add kernel side filtering for dump
2020-05-27 22:20:34 +02:00
nf_conntrack_ecache.c
netfilter: ecache: don't look for ecache extension on dying/unconfirmed conntracks
2019-10-26 12:36:42 +02:00
nf_conntrack_expect.c
netfilter: update include directives.
2019-09-13 12:33:06 +02:00
nf_conntrack_extend.c
netfilter: conntrack: remove two export symbols
2019-12-17 22:59:31 +01:00
nf_conntrack_ftp.c
Merge git://git.kernel.org/pub/scm/linux/kernel/git/netdev/net
2019-09-02 11:20:17 -07:00
nf_conntrack_h323_asn1.c
netfilter: Update obsolete comments referring to ip_conntrack
2019-07-16 13:17:00 +02:00
nf_conntrack_h323_main.c
netfilter: nf_conntrack_sip: fix expectation clash
2019-07-16 13:16:59 +02:00
nf_conntrack_h323_types.c
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 484
2019-06-19 17:09:52 +02:00
nf_conntrack_helper.c
netfilter: update include directives.
2019-09-13 12:33:06 +02:00
nf_conntrack_irc.c
netfilter: nf_conntrack_sip: fix expectation clash
2019-07-16 13:16:59 +02:00
nf_conntrack_labels.c
netfilter: not mark a spinlock as __read_mostly
2019-08-27 18:07:03 +02:00
nf_conntrack_netbios_ns.c
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 152
2019-05-30 11:26:32 -07:00
nf_conntrack_netlink.c
netfilter: ctnetlink: add kernel side filtering for dump
2020-05-27 22:20:34 +02:00
nf_conntrack_pptp.c
netfilter: nf_conntrack_sip: fix expectation clash
2019-07-16 13:16:59 +02:00
nf_conntrack_proto_dccp.c
netfilter: conntrack: dccp, sctp: handle null timeout argument
2020-01-08 23:31:22 +01:00
nf_conntrack_proto_generic.c
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 500
2019-06-19 17:09:55 +02:00
nf_conntrack_proto_gre.c
netfilter: Update obsolete comments referring to ip_conntrack
2019-07-16 13:17:00 +02:00
nf_conntrack_proto_icmp.c
netfilter: ctnetlink: add kernel side filtering for dump
2020-05-27 22:20:34 +02:00
nf_conntrack_proto_icmpv6.c
netfilter: ctnetlink: add kernel side filtering for dump
2020-05-27 22:20:34 +02:00
nf_conntrack_proto_sctp.c
netfilter: conntrack: sctp: use distinct states for new SCTP connections
2020-01-24 18:26:53 +01:00
nf_conntrack_proto_tcp.c
netfilter: remove unnecessary spaces
2019-08-13 12:08:48 +02:00
nf_conntrack_proto_udp.c
netfilter: conntrack: allow insertion of clashing entries
2020-02-17 10:55:14 +01:00
nf_conntrack_proto.c
netfilter: nf_conntrack_bridge: register inet conntrack for bridge
2019-05-30 14:18:18 -07:00
nf_conntrack_sane.c
netfilter: nf_conntrack_sip: fix expectation clash
2019-07-16 13:16:59 +02:00
nf_conntrack_seqadj.c
netfilter: conntrack, nat: prefer skb_ensure_writable
2019-05-31 18:02:45 +02:00
nf_conntrack_sip.c
netfilter: nf_conntrack_sip: fix expectation clash
2019-07-16 13:16:59 +02:00
nf_conntrack_snmp.c
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 152
2019-05-30 11:26:32 -07:00
nf_conntrack_standalone.c
Merge git://git.kernel.org/pub/scm/linux/kernel/git/bpf/bpf-next
2020-05-01 17:02:27 -07:00
nf_conntrack_tftp.c
netfilter: nf_conntrack_sip: fix expectation clash
2019-07-16 13:16:59 +02:00
nf_conntrack_timeout.c
netfilter: update include directives.
2019-09-13 12:33:06 +02:00
nf_conntrack_timestamp.c
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 77
2019-05-24 17:37:51 +02:00
nf_dup_netdev.c
netfilter: nft_{fwd,dup}_netdev: add offload support
2019-09-10 22:44:29 +02:00
nf_flow_table_core.c
netfilter: flowtable: set NF_FLOW_TEARDOWN flag on entry expiration
2020-05-12 13:19:08 +02:00
nf_flow_table_inet.c
netfilter: nf_flow_table_offload: add IPv6 support
2019-11-15 23:44:47 +01:00
nf_flow_table_ip.c
Merge git://git.kernel.org/pub/scm/linux/kernel/git/pablo/nf-next
2020-03-30 19:40:46 -07:00
nf_flow_table_offload.c
Merge git://git.kernel.org/pub/scm/linux/kernel/git/netdev/net
2020-05-15 13:48:59 -07:00
nf_internals.h
netfilter: ctnetlink: add kernel side filtering for dump
2020-05-27 22:20:34 +02:00
nf_log_common.c
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 500
2019-06-19 17:09:55 +02:00
nf_log_netdev.c
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 500
2019-06-19 17:09:55 +02:00
nf_log.c
sysctl: pass kernel pointers to ->proc_handler
2020-04-27 02:07:40 -04:00
nf_nat_amanda.c
netfilter: nf_conntrack_sip: fix expectation clash
2019-07-16 13:16:59 +02:00
nf_nat_core.c
netfilter: update include directives.
2019-09-13 12:33:06 +02:00
nf_nat_ftp.c
netfilter: nf_conntrack_sip: fix expectation clash
2019-07-16 13:16:59 +02:00
nf_nat_helper.c
Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net
2019-06-22 08:59:24 -04:00
nf_nat_irc.c
netfilter: nf_conntrack_sip: fix expectation clash
2019-07-16 13:16:59 +02:00
nf_nat_masquerade.c
netfilter: nf_nat_masquerade: unify ipv4/6 notifier registration
2019-04-11 20:59:34 +02:00
nf_nat_proto.c
netfilter: nat: never update the UDP checksum when it's 0
2020-04-26 23:57:18 +02:00
nf_nat_redirect.c
Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net
2019-06-22 08:59:24 -04:00
nf_nat_sip.c
netfilter: nf_conntrack_sip: fix expectation clash
2019-07-16 13:16:59 +02:00
nf_nat_tftp.c
netfilter: nf_conntrack_sip: fix expectation clash
2019-07-16 13:16:59 +02:00
nf_queue.c
netfilter: nf_queue: prefer nf_queue_entry_free
2020-03-29 16:28:29 +02:00
nf_sockopt.c
nf_synproxy_core.c
netfilter: synproxy: synproxy_cpu_seq_next should increase position index
2020-03-04 02:27:18 +01:00
nf_tables_api.c
netfilter: nf_tables: allow up to 64 bytes in the set element data area
2020-04-27 22:20:09 +02:00
nf_tables_core.c
netfilter: nft_meta: move bridge meta keys into nft_meta_bridge
2019-07-05 21:34:47 +02:00
nf_tables_offload.c
netfilter: flowtable: Fix incorrect tc_setup_type type
2020-03-27 18:41:52 +01:00
nf_tables_trace.c
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 500
2019-06-19 17:09:55 +02:00
nfnetlink_acct.c
netfilter: Replace zero-length array with flexible-array member
2020-03-15 15:20:16 +01:00
nfnetlink_cthelper.c
netfilter: cthelper: add missing attribute validation for cthelper
2020-03-04 02:28:08 +01:00
nfnetlink_cttimeout.c
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 77
2019-05-24 17:37:51 +02:00
nfnetlink_log.c
netfilter: nfnetlink_log: add support for VLAN information
2019-08-26 11:06:07 +02:00
nfnetlink_osf.c
netfilter: nf_osf: avoid passing pointer to local var
2020-04-29 21:17:57 +02:00
nfnetlink_queue.c
netfilter: nf_queue: make nf_queue_entry_release_refs static
2020-03-29 16:28:29 +02:00
nfnetlink.c
netfilter: nf_tables: autoload modules from the abort path
2020-01-24 20:54:29 +01:00
nft_bitwise.c
netfilter: bitwise: use more descriptive variable-names.
2020-03-15 15:20:16 +01:00
nft_byteorder.c
netfilter: nf_tables: Introduce new 64-bit helper register functions
2019-08-26 11:01:00 +02:00
nft_chain_filter.c
netfilter: revert introduction of egress hook
2020-03-18 16:35:48 -07:00
nft_chain_nat.c
netfilter: nft_chain_nat: inet family is missing module ownership
2020-03-06 18:00:43 +01:00
nft_chain_route.c
netfilter: nf_tables: merge route type into core
2019-04-08 23:01:42 +02:00
nft_cmp.c
netfilter: nf_tables: validate NFT_DATA_VALUE after nft_data_init()
2019-12-09 13:14:03 +01:00
nft_compat.c
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 500
2019-06-19 17:09:55 +02:00
nft_connlimit.c
netfilter: nft_connlimit: disable bh on garbage collection
2019-10-01 18:42:15 +02:00
nft_counter.c
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 500
2019-06-19 17:09:55 +02:00
nft_ct.c
treewide: Use sizeof_field() macro
2019-12-09 10:36:44 -08:00
nft_dup_netdev.c
netfilter: nft_{fwd,dup}_netdev: add offload support
2019-09-10 22:44:29 +02:00
nft_dynset.c
netfilter: nft_dynset: validate set expression definition
2020-03-30 02:05:38 +02:00
nft_exthdr.c
netfilter: nft_exthdr: fix endianness of tcp option cast
2020-03-30 21:17:53 +02:00
nft_fib_inet.c
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 500
2019-06-19 17:09:55 +02:00
nft_fib_netdev.c
netfilter: nft_fib_netdev: Terminate rule eval if protocol=IPv6 and ipv6 module is disabled
2019-09-03 22:53:56 +02:00
nft_fib.c
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 500
2019-06-19 17:09:55 +02:00
nft_flow_offload.c
netfilter: nft_flow_offload: fix underflow in flowtable reference counter
2020-01-05 10:06:22 +01:00
nft_fwd_netdev.c
net: Fix CONFIG_NET_CLS_ACT=n and CONFIG_NFT_FWD_NETDEV={y, m} build
2020-03-25 12:24:33 -07:00
nft_hash.c
netfilter: nft_hash: fix symhash with modulus one
2019-07-16 13:17:03 +02:00
nft_immediate.c
netfilter: nf_tables: store data in offload context registers
2019-08-13 12:10:01 +02:00
nft_limit.c
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 500
2019-06-19 17:09:55 +02:00
nft_log.c
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 500
2019-06-19 17:09:55 +02:00
nft_lookup.c
netfilter: nf_tables: do not update stateful expressions if lookup is inverted
2020-04-05 23:26:36 +02:00
nft_masq.c
treewide: Use sizeof_field() macro
2019-12-09 10:36:44 -08:00
nft_meta.c
netfilter: nft_meta: add support for slave device ifindex matching
2019-12-26 17:41:34 +01:00
nft_nat.c
netfilter: nft_nat: add netmap support
2020-04-28 00:53:54 +02:00
nft_numgen.c
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 500
2019-06-19 17:09:55 +02:00
nft_objref.c
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 422
2019-06-05 17:37:15 +02:00
nft_osf.c
netfilter: nft_osf: add missing check for DREG attribute
2020-01-18 21:18:41 +01:00
nft_payload.c
netfilter: nft_payload: add missing attribute validation for payload csum flags
2020-03-04 02:28:17 +01:00
nft_queue.c
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 500
2019-06-19 17:09:55 +02:00
nft_quota.c
netfilter: nft_quota: add quota object update support
2019-09-03 19:05:00 +02:00
nft_range.c
netfilter: nf_tables: validate NFT_DATA_VALUE after nft_data_init()
2019-12-09 13:14:03 +01:00
nft_redir.c
treewide: Use sizeof_field() macro
2019-12-09 10:36:44 -08:00
nft_reject_inet.c
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 500
2019-06-19 17:09:55 +02:00
nft_reject.c
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 500
2019-06-19 17:09:55 +02:00
nft_rt.c
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 500
2019-06-19 17:09:55 +02:00
nft_set_bitmap.c
netfilter: nf_tables: do not update stateful expressions if lookup is inverted
2020-04-05 23:26:36 +02:00
nft_set_hash.c
netfilter: nf_tables: make all set structs const
2020-03-15 15:20:16 +01:00
nft_set_pipapo_avx2.c
nft_set_pipapo: Prepare for single ranged field usage
2020-03-15 15:27:46 +01:00
nft_set_pipapo_avx2.h
x86: update AS_* macros to binutils >=2.23, supporting ADX and AVX2
2020-04-09 00:12:48 +09:00
nft_set_pipapo.c
x86: update AS_* macros to binutils >=2.23, supporting ADX and AVX2
2020-04-09 00:12:48 +09:00
nft_set_pipapo.h
nft_set_pipapo: Prepare for single ranged field usage
2020-03-15 15:27:46 +01:00
nft_set_rbtree.c
netfilter: nft_set_rbtree: Add missing expired checks
2020-05-12 13:19:34 +02:00
nft_socket.c
netfilter: nft_socket: fix erroneous socket assignment
2019-09-02 23:20:59 +02:00
nft_synproxy.c
netfilter: nft_synproxy: add synproxy stateful object support
2019-09-10 22:35:37 +02:00
nft_tproxy.c
Merge git://git.kernel.org/pub/scm/linux/kernel/git/pablo/nf
2019-12-26 13:11:40 -08:00
nft_tunnel.c
netfilter: nft_tunnel: add support for geneve opts
2020-03-15 15:20:16 +01:00
nft_xfrm.c
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 500
2019-06-19 17:09:55 +02:00
utils.c
netfilter: Fix remainder of pseudo-header protocol 0
2019-06-28 19:30:50 +02:00
x_tables.c
netfilter: x_tables: xt_mttg_seq_next should increase position index
2020-03-04 02:27:18 +01:00
xt_addrtype.c
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 500
2019-06-19 17:09:55 +02:00
xt_AUDIT.c
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 500
2019-06-19 17:09:55 +02:00
xt_bpf.c
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 500
2019-06-19 17:09:55 +02:00
xt_cgroup.c
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 500
2019-06-19 17:09:55 +02:00
xt_CHECKSUM.c
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 500
2019-06-19 17:09:55 +02:00
xt_CLASSIFY.c
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 500
2019-06-19 17:09:55 +02:00
xt_cluster.c
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 500
2019-06-19 17:09:55 +02:00
xt_comment.c
treewide: Add SPDX license identifier for more missed files
2019-05-21 10:50:45 +02:00
xt_connbytes.c
netfilter: x_tables: use pr ratelimiting in all remaining spots
2018-02-14 21:05:38 +01:00
xt_connlabel.c
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 500
2019-06-19 17:09:55 +02:00
xt_connlimit.c
netfilter: update include directives.
2019-09-13 12:33:06 +02:00
xt_connmark.c
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 13
2019-05-21 11:28:45 +02:00
xt_CONNSECMARK.c
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 500
2019-06-19 17:09:55 +02:00
xt_conntrack.c
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 500
2019-06-19 17:09:55 +02:00
xt_cpu.c
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 500
2019-06-19 17:09:55 +02:00
xt_CT.c
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 500
2019-06-19 17:09:55 +02:00
xt_dccp.c
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 500
2019-06-19 17:09:55 +02:00
xt_devgroup.c
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 500
2019-06-19 17:09:55 +02:00
xt_dscp.c
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 500
2019-06-19 17:09:55 +02:00
xt_DSCP.c
Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net
2019-06-22 08:59:24 -04:00
xt_ecn.c
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 500
2019-06-19 17:09:55 +02:00
xt_esp.c
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 500
2019-06-19 17:09:55 +02:00
xt_hashlimit.c
netfilter: Replace zero-length array with flexible-array member
2020-03-15 15:20:16 +01:00
xt_helper.c
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 500
2019-06-19 17:09:55 +02:00
xt_hl.c
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 500
2019-06-19 17:09:55 +02:00
xt_HL.c
Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net
2019-06-22 08:59:24 -04:00
xt_HMARK.c
icmp: remove duplicate code
2019-11-05 14:03:11 -08:00
xt_IDLETIMER.c
netfilter: xt_IDLETIMER: target v1 - match Android layout
2020-04-05 23:26:37 +02:00
xt_ipcomp.c
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 152
2019-05-30 11:26:32 -07:00
xt_iprange.c
Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net-next
2019-06-25 01:32:59 +02:00
xt_ipvs.c
treewide: Add SPDX license identifier for more missed files
2019-05-21 10:50:45 +02:00
xt_l2tp.c
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 500
2019-06-19 17:09:55 +02:00
xt_LED.c
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 164
2019-05-30 11:26:38 -07:00
xt_length.c
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 500
2019-06-19 17:09:55 +02:00
xt_limit.c
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 500
2019-06-19 17:09:55 +02:00
xt_LOG.c
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 500
2019-06-19 17:09:55 +02:00
xt_mac.c
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 500
2019-06-19 17:09:55 +02:00
xt_mark.c
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 500
2019-06-19 17:09:55 +02:00
xt_MASQUERADE.c
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 500
2019-06-19 17:09:55 +02:00
xt_multiport.c
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 500
2019-06-19 17:09:55 +02:00
xt_nat.c
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 500
2019-06-19 17:09:55 +02:00
xt_NETMAP.c
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 500
2019-06-19 17:09:55 +02:00
xt_nfacct.c
netfilter: xt_nfacct: Fix alignment mismatch in xt_nfacct_match_info
2019-08-19 09:34:21 +02:00
xt_NFLOG.c
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 500
2019-06-19 17:09:55 +02:00
xt_NFQUEUE.c
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 500
2019-06-19 17:09:55 +02:00
xt_osf.c
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 13
2019-05-21 11:28:45 +02:00
xt_owner.c
Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net-next
2019-06-25 01:32:59 +02:00
xt_physdev.c
netfilter: inline xt_hashlimit, ebt_802_3 and xt_physdev headers
2019-09-13 12:32:48 +02:00
xt_pkttype.c
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 500
2019-06-19 17:09:55 +02:00
xt_policy.c
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 500
2019-06-19 17:09:55 +02:00
xt_quota.c
treewide: Add SPDX license identifier for more missed files
2019-05-21 10:50:45 +02:00
xt_rateest.c
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 500
2019-06-19 17:09:55 +02:00
xt_RATEEST.c
treewide: Use sizeof_field() macro
2019-12-09 10:36:44 -08:00
xt_realm.c
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 500
2019-06-19 17:09:55 +02:00
xt_recent.c
netfilter: Replace zero-length array with flexible-array member
2020-03-15 15:20:16 +01:00
xt_REDIRECT.c
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 500
2019-06-19 17:09:55 +02:00
xt_repldata.h
xt_sctp.c
treewide: Add SPDX license identifier for more missed files
2019-05-21 10:50:45 +02:00
xt_SECMARK.c
netfilter: cleanup unused macro
2020-03-15 15:20:16 +01:00
xt_set.c
netfilter: inline four headers files into another one.
2019-08-13 12:14:26 +02:00
xt_socket.c
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 500
2019-06-19 17:09:55 +02:00
xt_state.c
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 500
2019-06-19 17:09:55 +02:00
xt_statistic.c
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 500
2019-06-19 17:09:55 +02:00
xt_string.c
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 500
2019-06-19 17:09:55 +02:00
xt_tcpmss.c
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 500
2019-06-19 17:09:55 +02:00
xt_TCPMSS.c
Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net
2019-06-22 08:59:24 -04:00
xt_TCPOPTSTRIP.c
Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net
2019-06-22 08:59:24 -04:00
xt_tcpudp.c
treewide: Add SPDX license identifier for more missed files
2019-05-21 10:50:45 +02:00
xt_TEE.c
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 3
2019-05-21 11:28:40 +02:00
xt_time.c
netfilter: xt_time: use time64_t
2019-11-15 23:44:45 +01:00
xt_TPROXY.c
treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 500
2019-06-19 17:09:55 +02:00
xt_TRACE.c
treewide: Add SPDX license identifier for more missed files
2019-05-21 10:50:45 +02:00
xt_u32.c
treewide: Add SPDX license identifier for more missed files
2019-05-21 10:50:45 +02:00