| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-Id: <20190905160400.25399-1-pablo@netfilter.org>
Date: Thu, 5 Sep 2019 18:03:52 +0200
From: Pablo Neira Ayuso <pablo@...filter.org>
To: netfilter-devel@...r.kernel.org
Cc: davem@...emloft.net, netdev@...r.kernel.org
Subject: [PATCH 0/8] Netfilter updates for net-next
Hi,
The following patchset contains Netfilter updates for net-next:
1) Add nft_reg_store64() and nft_reg_load64() helpers, from Ander Juaristi.
2) Time matching support, also from Ander Juaristi.
3) VLAN support for nfnetlink_log, from Michael Braun.
4) Support for set element deletions from the packet path, also from Ander.
5) Remove __read_mostly from conntrack spinlock, from Li RongQing.
6) Support for updating stateful objects, this also includes the initial
client for this infrastructure: the quota extension. A follow up fix
for the control plane also comes in this batch. Patches from
Fernando Fernandez Mancera.
You can pull these changes from:
git://git.kernel.org/pub/scm/linux/kernel/git/pablo/nf-next.git
Thanks.
----------------------------------------------------------------
The following changes since commit 0846e1616f0f3365cea732e82e2383932fe644e5:
cirrus: cs89x0: remove set but not used variable 'lp' (2019-08-25 19:48:59 -0700)
are available in the git repository at:
git://git.kernel.org/pub/scm/linux/kernel/git/pablo/nf-next.git HEAD
for you to fetch changes up to aa4095a156b56b00ca202d482b40d191ef5c54e8:
netfilter: nf_tables: fix possible null-pointer dereference in object update (2019-09-05 13:40:27 +0200)
----------------------------------------------------------------
Ander Juaristi (3):
netfilter: nf_tables: Introduce new 64-bit helper register functions
netfilter: nft_meta: support for time matching
netfilter: nft_dynset: support for element deletion
Fernando Fernandez Mancera (3):
netfilter: nf_tables: Introduce stateful object update operation
netfilter: nft_quota: add quota object update support
netfilter: nf_tables: fix possible null-pointer dereference in object update
Li RongQing (1):
netfilter: not mark a spinlock as __read_mostly
Michael Braun (1):
netfilter: nfnetlink_log: add support for VLAN information
include/net/netfilter/nf_tables.h | 44 ++++++++++++---
include/uapi/linux/netfilter/nf_tables.h | 7 +++
include/uapi/linux/netfilter/nfnetlink_log.h | 11 ++++
net/netfilter/nf_conntrack_core.c | 3 +-
net/netfilter/nf_conntrack_labels.c | 2 +-
net/netfilter/nf_tables_api.c | 81 +++++++++++++++++++++++++---
net/netfilter/nfnetlink_log.c | 57 ++++++++++++++++++++
net/netfilter/nft_byteorder.c | 9 ++--
net/netfilter/nft_dynset.c | 6 +++
net/netfilter/nft_meta.c | 46 ++++++++++++++++
net/netfilter/nft_quota.c | 29 +++++++---
net/netfilter/nft_set_hash.c | 19 +++++++
12 files changed, 285 insertions(+), 29 deletions(-)
Powered by blists - more mailing lists