raspi/linux
1
0
Fork 1
mirror of https://github.com/raspberrypi/linux.git synced 2025-12-22 17:52:09 +00:00
Code Issues Projects Releases Wiki Activity
Files
1c470b53ece5833193a5b28b6e89cb1531c1de8c
linux/net/netfilter/ipset
History
Vasily Averin 9446ab34ac netfilter: ipset: enable memory accounting for ipset allocations 
Currently netadmin inside non-trusted container can quickly allocate
whole node's memory via request of huge ipset hashtable.
Other ipset-related memory allocations should be restricted too.

v2: fixed typo ALLOC -> ACCOUNT

Signed-off-by: Vasily Averin <vvs@virtuozzo.com>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
2020-10-04 21:08:25 +02:00
..
ip_set_bitmap_gen.h
netfilter: ipset: use bitmap infrastructure completely
2020-01-20 17:41:45 +01:00
ip_set_bitmap_ip.c
netfilter: ipset: call ip_set_free() instead of kfree()
2020-06-30 19:09:56 +02:00
ip_set_bitmap_ipmac.c
netfilter: ipset: call ip_set_free() instead of kfree()
2020-06-30 19:09:56 +02:00
ip_set_bitmap_port.c
netfilter: ipset: call ip_set_free() instead of kfree()
2020-06-30 19:09:56 +02:00
ip_set_core.c
netfilter: ipset: enable memory accounting for ipset allocations
2020-10-04 21:08:25 +02:00
ip_set_getport.c
netfilter: ipset: move ip_set_get_ip_port() to ip_set_bitmap_port.c.
2019-10-07 23:59:02 +02:00
ip_set_hash_gen.h
netfilter: ipset: call ip_set_free() instead of kfree()
2020-06-30 19:09:56 +02:00
ip_set_hash_ip.c
netfilter: ipset: remove inline from static functions in .c files.
2019-10-07 23:57:45 +02:00
ip_set_hash_ipmac.c
Merge git://git.kernel.org/pub/scm/linux/kernel/git/netdev/net
2019-11-09 11:04:37 -08:00
ip_set_hash_ipmark.c
netfilter: ipset: remove inline from static functions in .c files.
2019-10-07 23:57:45 +02:00
ip_set_hash_ipport.c
netfilter: ipset: remove inline from static functions in .c files.
2019-10-07 23:57:45 +02:00
ip_set_hash_ipportip.c
netfilter: ipset: remove inline from static functions in .c files.
2019-10-07 23:57:45 +02:00
ip_set_hash_ipportnet.c
netfilter: ipset: remove inline from static functions in .c files.
2019-10-07 23:57:45 +02:00
ip_set_hash_mac.c
netfilter: ipset: remove inline from static functions in .c files.
2019-10-07 23:57:45 +02:00
ip_set_hash_net.c
Merge git://git.kernel.org/pub/scm/linux/kernel/git/netdev/net
2019-11-09 11:04:37 -08:00
ip_set_hash_netiface.c
netfilter: ipset: Add wildcard support to net,iface
2019-11-04 20:44:17 +01:00
ip_set_hash_netnet.c
Merge git://git.kernel.org/pub/scm/linux/kernel/git/netdev/net
2019-11-09 11:04:37 -08:00
ip_set_hash_netport.c
netfilter: ipset: remove inline from static functions in .c files.
2019-10-07 23:57:45 +02:00
ip_set_hash_netportnet.c
netfilter: ipset: remove inline from static functions in .c files.
2019-10-07 23:57:45 +02:00
ip_set_list_set.c
netfilter: ipset: Fix subcounter update skip
2020-05-25 20:39:14 +02:00
Kconfig
treewide: Add SPDX license identifier - Makefile/Kconfig
2019-05-21 10:50:46 +02:00
Makefile
License cleanup: add SPDX GPL-2.0 license identifier to files with no license
2017-11-02 11:10:55 +01:00
pfxlen.c
treewide: Add SPDX license identifier for missed files
2019-05-21 10:50:45 +02:00