Changeset View
Changeset View
Standalone View
Standalone View
sys/net/pfvar.h
Show First 20 Lines • Show All 60 Lines • ▼ Show 20 Lines | |||||
struct pfi_dynaddr { | struct pfi_dynaddr { | ||||
TAILQ_ENTRY(pfi_dynaddr) entry; | TAILQ_ENTRY(pfi_dynaddr) entry; | ||||
struct pf_addr pfid_addr4; | struct pf_addr pfid_addr4; | ||||
struct pf_addr pfid_mask4; | struct pf_addr pfid_mask4; | ||||
struct pf_addr pfid_addr6; | struct pf_addr pfid_addr6; | ||||
struct pf_addr pfid_mask6; | struct pf_addr pfid_mask6; | ||||
struct pfr_ktable *pfid_kt; | struct pfr_ktable *pfid_kt; | ||||
struct pfi_kif *pfid_kif; | struct pfi_kkif *pfid_kif; | ||||
int pfid_net; /* mask or 128 */ | int pfid_net; /* mask or 128 */ | ||||
int pfid_acnt4; /* address count IPv4 */ | int pfid_acnt4; /* address count IPv4 */ | ||||
int pfid_acnt6; /* address count IPv6 */ | int pfid_acnt6; /* address count IPv6 */ | ||||
sa_family_t pfid_af; /* rule af */ | sa_family_t pfid_af; /* rule af */ | ||||
u_int8_t pfid_iflags; /* PFI_AFLAG_* */ | u_int8_t pfid_iflags; /* PFI_AFLAG_* */ | ||||
}; | }; | ||||
/* | /* | ||||
▲ Show 20 Lines • Show All 211 Lines • ▼ Show 20 Lines | ((aw)->type == PF_ADDR_ADDRMASK && \ | ||||
&(aw)->v.a.mask, (x), (af))))) != \ | &(aw)->v.a.mask, (x), (af))))) != \ | ||||
(neg) \ | (neg) \ | ||||
) | ) | ||||
#define PF_ALGNMNT(off) (((off) % 2) == 0) | #define PF_ALGNMNT(off) (((off) % 2) == 0) | ||||
#ifdef _KERNEL | #ifdef _KERNEL | ||||
struct pf_kpooladdr { | |||||
struct pf_addr_wrap addr; | |||||
TAILQ_ENTRY(pf_kpooladdr) entries; | |||||
char ifname[IFNAMSIZ]; | |||||
struct pfi_kkif *kif; | |||||
}; | |||||
TAILQ_HEAD(pf_kpalist, pf_kpooladdr); | |||||
struct pf_kpool { | |||||
struct pf_kpalist list; | |||||
struct pf_kpooladdr *cur; | |||||
struct pf_poolhashkey key; | |||||
struct pf_addr counter; | |||||
int tblidx; | |||||
u_int16_t proxy_port[2]; | |||||
u_int8_t opts; | |||||
}; | |||||
union pf_krule_ptr { | union pf_krule_ptr { | ||||
struct pf_krule *ptr; | struct pf_krule *ptr; | ||||
u_int32_t nr; | u_int32_t nr; | ||||
}; | }; | ||||
struct pf_krule { | struct pf_krule { | ||||
struct pf_rule_addr src; | struct pf_rule_addr src; | ||||
struct pf_rule_addr dst; | struct pf_rule_addr dst; | ||||
union pf_krule_ptr skip[PF_SKIP_COUNT]; | union pf_krule_ptr skip[PF_SKIP_COUNT]; | ||||
char label[PF_RULE_LABEL_SIZE]; | char label[PF_RULE_LABEL_SIZE]; | ||||
char ifname[IFNAMSIZ]; | char ifname[IFNAMSIZ]; | ||||
char qname[PF_QNAME_SIZE]; | char qname[PF_QNAME_SIZE]; | ||||
char pqname[PF_QNAME_SIZE]; | char pqname[PF_QNAME_SIZE]; | ||||
char tagname[PF_TAG_NAME_SIZE]; | char tagname[PF_TAG_NAME_SIZE]; | ||||
char match_tagname[PF_TAG_NAME_SIZE]; | char match_tagname[PF_TAG_NAME_SIZE]; | ||||
char overload_tblname[PF_TABLE_NAME_SIZE]; | char overload_tblname[PF_TABLE_NAME_SIZE]; | ||||
TAILQ_ENTRY(pf_krule) entries; | TAILQ_ENTRY(pf_krule) entries; | ||||
struct pf_pool rpool; | struct pf_kpool rpool; | ||||
counter_u64_t evaluations; | counter_u64_t evaluations; | ||||
counter_u64_t packets[2]; | counter_u64_t packets[2]; | ||||
counter_u64_t bytes[2]; | counter_u64_t bytes[2]; | ||||
struct pfi_kif *kif; | struct pfi_kkif *kif; | ||||
struct pf_kanchor *anchor; | struct pf_kanchor *anchor; | ||||
struct pfr_ktable *overload_tbl; | struct pfr_ktable *overload_tbl; | ||||
pf_osfp_t os_fingerprint; | pf_osfp_t os_fingerprint; | ||||
int rtableid; | int rtableid; | ||||
u_int32_t timeout[PFTM_MAX]; | u_int32_t timeout[PFTM_MAX]; | ||||
u_int32_t max_states; | u_int32_t max_states; | ||||
▲ Show 20 Lines • Show All 62 Lines • ▼ Show 20 Lines | struct pf_krule { | ||||
} divert; | } divert; | ||||
}; | }; | ||||
struct pf_ksrc_node { | struct pf_ksrc_node { | ||||
LIST_ENTRY(pf_ksrc_node) entry; | LIST_ENTRY(pf_ksrc_node) entry; | ||||
struct pf_addr addr; | struct pf_addr addr; | ||||
struct pf_addr raddr; | struct pf_addr raddr; | ||||
union pf_krule_ptr rule; | union pf_krule_ptr rule; | ||||
struct pfi_kif *kif; | struct pfi_kkif *kif; | ||||
counter_u64_t bytes[2]; | counter_u64_t bytes[2]; | ||||
counter_u64_t packets[2]; | counter_u64_t packets[2]; | ||||
u_int32_t states; | u_int32_t states; | ||||
u_int32_t conn; | u_int32_t conn; | ||||
struct pf_threshold conn_rate; | struct pf_threshold conn_rate; | ||||
u_int32_t creation; | u_int32_t creation; | ||||
u_int32_t expire; | u_int32_t expire; | ||||
sa_family_t af; | sa_family_t af; | ||||
▲ Show 20 Lines • Show All 85 Lines • ▼ Show 20 Lines | struct pf_state { | ||||
LIST_ENTRY(pf_state) entry; | LIST_ENTRY(pf_state) entry; | ||||
struct pf_state_peer src; | struct pf_state_peer src; | ||||
struct pf_state_peer dst; | struct pf_state_peer dst; | ||||
union pf_krule_ptr rule; | union pf_krule_ptr rule; | ||||
union pf_krule_ptr anchor; | union pf_krule_ptr anchor; | ||||
union pf_krule_ptr nat_rule; | union pf_krule_ptr nat_rule; | ||||
struct pf_addr rt_addr; | struct pf_addr rt_addr; | ||||
struct pf_state_key *key[2]; /* addresses stack and wire */ | struct pf_state_key *key[2]; /* addresses stack and wire */ | ||||
struct pfi_kif *kif; | struct pfi_kkif *kif; | ||||
struct pfi_kif *rt_kif; | struct pfi_kkif *rt_kif; | ||||
struct pf_ksrc_node *src_node; | struct pf_ksrc_node *src_node; | ||||
struct pf_ksrc_node *nat_src_node; | struct pf_ksrc_node *nat_src_node; | ||||
counter_u64_t packets[2]; | counter_u64_t packets[2]; | ||||
counter_u64_t bytes[2]; | counter_u64_t bytes[2]; | ||||
u_int32_t creation; | u_int32_t creation; | ||||
u_int32_t expire; | u_int32_t expire; | ||||
u_int32_t pfsync_time; | u_int32_t pfsync_time; | ||||
u_int16_t tag; | u_int16_t tag; | ||||
▲ Show 20 Lines • Show All 88 Lines • ▼ Show 20 Lines | |||||
extern pfsync_detach_ifnet_t *pfsync_detach_ifnet_ptr; | extern pfsync_detach_ifnet_t *pfsync_detach_ifnet_ptr; | ||||
void pfsync_state_export(struct pfsync_state *, | void pfsync_state_export(struct pfsync_state *, | ||||
struct pf_state *); | struct pf_state *); | ||||
/* pflog */ | /* pflog */ | ||||
struct pf_kruleset; | struct pf_kruleset; | ||||
struct pf_pdesc; | struct pf_pdesc; | ||||
typedef int pflog_packet_t(struct pfi_kif *, struct mbuf *, sa_family_t, | typedef int pflog_packet_t(struct pfi_kkif *, struct mbuf *, sa_family_t, | ||||
u_int8_t, u_int8_t, struct pf_krule *, struct pf_krule *, | u_int8_t, u_int8_t, struct pf_krule *, struct pf_krule *, | ||||
struct pf_kruleset *, struct pf_pdesc *, int); | struct pf_kruleset *, struct pf_pdesc *, int); | ||||
extern pflog_packet_t *pflog_packet_ptr; | extern pflog_packet_t *pflog_packet_ptr; | ||||
#endif /* _KERNEL */ | #endif /* _KERNEL */ | ||||
#define PFSYNC_FLAG_SRCNODE 0x04 | #define PFSYNC_FLAG_SRCNODE 0x04 | ||||
#define PFSYNC_FLAG_NATSRCNODE 0x08 | #define PFSYNC_FLAG_NATSRCNODE 0x08 | ||||
▲ Show 20 Lines • Show All 228 Lines • ▼ Show 20 Lines | |||||
#define pfrkt_refcnt pfrkt_kts.pfrkts_refcnt | #define pfrkt_refcnt pfrkt_kts.pfrkts_refcnt | ||||
#define pfrkt_packets pfrkt_kts.pfrkts_packets | #define pfrkt_packets pfrkt_kts.pfrkts_packets | ||||
#define pfrkt_bytes pfrkt_kts.pfrkts_bytes | #define pfrkt_bytes pfrkt_kts.pfrkts_bytes | ||||
#define pfrkt_match pfrkt_kts.pfrkts_match | #define pfrkt_match pfrkt_kts.pfrkts_match | ||||
#define pfrkt_nomatch pfrkt_kts.pfrkts_nomatch | #define pfrkt_nomatch pfrkt_kts.pfrkts_nomatch | ||||
#define pfrkt_tzero pfrkt_kts.pfrkts_tzero | #define pfrkt_tzero pfrkt_kts.pfrkts_tzero | ||||
#endif | #endif | ||||
/* keep synced with pfi_kif, used in RB_FIND */ | #ifdef _KERNEL | ||||
struct pfi_kif_cmp { | struct pfi_kkif { | ||||
char pfik_name[IFNAMSIZ]; | char pfik_name[IFNAMSIZ]; | ||||
}; | |||||
struct pfi_kif { | |||||
char pfik_name[IFNAMSIZ]; | |||||
union { | union { | ||||
RB_ENTRY(pfi_kif) _pfik_tree; | RB_ENTRY(pfi_kkif) _pfik_tree; | ||||
LIST_ENTRY(pfi_kif) _pfik_list; | LIST_ENTRY(pfi_kkif) _pfik_list; | ||||
} _pfik_glue; | } _pfik_glue; | ||||
#define pfik_tree _pfik_glue._pfik_tree | #define pfik_tree _pfik_glue._pfik_tree | ||||
#define pfik_list _pfik_glue._pfik_list | #define pfik_list _pfik_glue._pfik_list | ||||
u_int64_t pfik_packets[2][2][2]; | u_int64_t pfik_packets[2][2][2]; | ||||
u_int64_t pfik_bytes[2][2][2]; | u_int64_t pfik_bytes[2][2][2]; | ||||
u_int32_t pfik_tzero; | u_int32_t pfik_tzero; | ||||
u_int pfik_flags; | u_int pfik_flags; | ||||
struct ifnet *pfik_ifp; | struct ifnet *pfik_ifp; | ||||
struct ifg_group *pfik_group; | struct ifg_group *pfik_group; | ||||
u_int pfik_rulerefs; | u_int pfik_rulerefs; | ||||
TAILQ_HEAD(, pfi_dynaddr) pfik_dynaddrs; | TAILQ_HEAD(, pfi_dynaddr) pfik_dynaddrs; | ||||
}; | }; | ||||
#endif | |||||
#define PFI_IFLAG_REFS 0x0001 /* has state references */ | #define PFI_IFLAG_REFS 0x0001 /* has state references */ | ||||
#define PFI_IFLAG_SKIP 0x0100 /* skip filtering on interface */ | #define PFI_IFLAG_SKIP 0x0100 /* skip filtering on interface */ | ||||
struct pf_pdesc { | struct pf_pdesc { | ||||
struct { | struct { | ||||
int done; | int done; | ||||
uid_t uid; | uid_t uid; | ||||
▲ Show 20 Lines • Show All 490 Lines • ▼ Show 20 Lines | |||||
#define V_pf_swi_cookie VNET(pf_swi_cookie) | #define V_pf_swi_cookie VNET(pf_swi_cookie) | ||||
VNET_DECLARE(uint64_t, pf_stateid[MAXCPU]); | VNET_DECLARE(uint64_t, pf_stateid[MAXCPU]); | ||||
#define V_pf_stateid VNET(pf_stateid) | #define V_pf_stateid VNET(pf_stateid) | ||||
TAILQ_HEAD(pf_altqqueue, pf_altq); | TAILQ_HEAD(pf_altqqueue, pf_altq); | ||||
VNET_DECLARE(struct pf_altqqueue, pf_altqs[4]); | VNET_DECLARE(struct pf_altqqueue, pf_altqs[4]); | ||||
#define V_pf_altqs VNET(pf_altqs) | #define V_pf_altqs VNET(pf_altqs) | ||||
VNET_DECLARE(struct pf_palist, pf_pabuf); | VNET_DECLARE(struct pf_kpalist, pf_pabuf); | ||||
#define V_pf_pabuf VNET(pf_pabuf) | #define V_pf_pabuf VNET(pf_pabuf) | ||||
VNET_DECLARE(u_int32_t, ticket_altqs_active); | VNET_DECLARE(u_int32_t, ticket_altqs_active); | ||||
#define V_ticket_altqs_active VNET(ticket_altqs_active) | #define V_ticket_altqs_active VNET(ticket_altqs_active) | ||||
VNET_DECLARE(u_int32_t, ticket_altqs_inactive); | VNET_DECLARE(u_int32_t, ticket_altqs_inactive); | ||||
#define V_ticket_altqs_inactive VNET(ticket_altqs_inactive) | #define V_ticket_altqs_inactive VNET(ticket_altqs_inactive) | ||||
VNET_DECLARE(int, altqs_inactive_open); | VNET_DECLARE(int, altqs_inactive_open); | ||||
#define V_altqs_inactive_open VNET(altqs_inactive_open) | #define V_altqs_inactive_open VNET(altqs_inactive_open) | ||||
Show All 32 Lines | |||||
extern void pf_purge_thread(void *); | extern void pf_purge_thread(void *); | ||||
extern void pf_unload_vnet_purge(void); | extern void pf_unload_vnet_purge(void); | ||||
extern void pf_intr(void *); | extern void pf_intr(void *); | ||||
extern void pf_purge_expired_src_nodes(void); | extern void pf_purge_expired_src_nodes(void); | ||||
extern int pf_unlink_state(struct pf_state *, u_int); | extern int pf_unlink_state(struct pf_state *, u_int); | ||||
#define PF_ENTER_LOCKED 0x00000001 | #define PF_ENTER_LOCKED 0x00000001 | ||||
#define PF_RETURN_LOCKED 0x00000002 | #define PF_RETURN_LOCKED 0x00000002 | ||||
extern int pf_state_insert(struct pfi_kif *, | extern int pf_state_insert(struct pfi_kkif *, | ||||
struct pf_state_key *, | struct pf_state_key *, | ||||
struct pf_state_key *, | struct pf_state_key *, | ||||
struct pf_state *); | struct pf_state *); | ||||
extern void pf_free_state(struct pf_state *); | extern void pf_free_state(struct pf_state *); | ||||
static __inline void | static __inline void | ||||
pf_ref_state(struct pf_state *s) | pf_ref_state(struct pf_state *s) | ||||
{ | { | ||||
Show All 31 Lines | |||||
VNET_DECLARE(struct pf_krule, pf_default_rule); | VNET_DECLARE(struct pf_krule, pf_default_rule); | ||||
#define V_pf_default_rule VNET(pf_default_rule) | #define V_pf_default_rule VNET(pf_default_rule) | ||||
extern void pf_addrcpy(struct pf_addr *, struct pf_addr *, | extern void pf_addrcpy(struct pf_addr *, struct pf_addr *, | ||||
u_int8_t); | u_int8_t); | ||||
void pf_free_rule(struct pf_krule *); | void pf_free_rule(struct pf_krule *); | ||||
#ifdef INET | #ifdef INET | ||||
int pf_test(int, int, struct ifnet *, struct mbuf **, struct inpcb *); | int pf_test(int, int, struct ifnet *, struct mbuf **, struct inpcb *); | ||||
int pf_normalize_ip(struct mbuf **, int, struct pfi_kif *, u_short *, | int pf_normalize_ip(struct mbuf **, int, struct pfi_kkif *, u_short *, | ||||
struct pf_pdesc *); | struct pf_pdesc *); | ||||
#endif /* INET */ | #endif /* INET */ | ||||
#ifdef INET6 | #ifdef INET6 | ||||
int pf_test6(int, int, struct ifnet *, struct mbuf **, struct inpcb *); | int pf_test6(int, int, struct ifnet *, struct mbuf **, struct inpcb *); | ||||
int pf_normalize_ip6(struct mbuf **, int, struct pfi_kif *, u_short *, | int pf_normalize_ip6(struct mbuf **, int, struct pfi_kkif *, u_short *, | ||||
struct pf_pdesc *); | struct pf_pdesc *); | ||||
void pf_poolmask(struct pf_addr *, struct pf_addr*, | void pf_poolmask(struct pf_addr *, struct pf_addr*, | ||||
struct pf_addr *, struct pf_addr *, u_int8_t); | struct pf_addr *, struct pf_addr *, u_int8_t); | ||||
void pf_addr_inc(struct pf_addr *, sa_family_t); | void pf_addr_inc(struct pf_addr *, sa_family_t); | ||||
int pf_refragment6(struct ifnet *, struct mbuf **, struct m_tag *); | int pf_refragment6(struct ifnet *, struct mbuf **, struct m_tag *); | ||||
#endif /* INET6 */ | #endif /* INET6 */ | ||||
u_int32_t pf_new_isn(struct pf_state *); | u_int32_t pf_new_isn(struct pf_state *); | ||||
Show All 11 Lines | |||||
int pf_match_addr(u_int8_t, struct pf_addr *, struct pf_addr *, | int pf_match_addr(u_int8_t, struct pf_addr *, struct pf_addr *, | ||||
struct pf_addr *, sa_family_t); | struct pf_addr *, sa_family_t); | ||||
int pf_match_addr_range(struct pf_addr *, struct pf_addr *, | int pf_match_addr_range(struct pf_addr *, struct pf_addr *, | ||||
struct pf_addr *, sa_family_t); | struct pf_addr *, sa_family_t); | ||||
int pf_match_port(u_int8_t, u_int16_t, u_int16_t, u_int16_t); | int pf_match_port(u_int8_t, u_int16_t, u_int16_t, u_int16_t); | ||||
void pf_normalize_init(void); | void pf_normalize_init(void); | ||||
void pf_normalize_cleanup(void); | void pf_normalize_cleanup(void); | ||||
int pf_normalize_tcp(int, struct pfi_kif *, struct mbuf *, int, int, void *, | int pf_normalize_tcp(int, struct pfi_kkif *, struct mbuf *, int, int, void *, | ||||
struct pf_pdesc *); | struct pf_pdesc *); | ||||
void pf_normalize_tcp_cleanup(struct pf_state *); | void pf_normalize_tcp_cleanup(struct pf_state *); | ||||
int pf_normalize_tcp_init(struct mbuf *, int, struct pf_pdesc *, | int pf_normalize_tcp_init(struct mbuf *, int, struct pf_pdesc *, | ||||
struct tcphdr *, struct pf_state_peer *, struct pf_state_peer *); | struct tcphdr *, struct pf_state_peer *, struct pf_state_peer *); | ||||
int pf_normalize_tcp_stateful(struct mbuf *, int, struct pf_pdesc *, | int pf_normalize_tcp_stateful(struct mbuf *, int, struct pf_pdesc *, | ||||
u_short *, struct tcphdr *, struct pf_state *, | u_short *, struct tcphdr *, struct pf_state *, | ||||
struct pf_state_peer *, struct pf_state_peer *, int *); | struct pf_state_peer *, struct pf_state_peer *, int *); | ||||
u_int32_t | u_int32_t | ||||
pf_state_expires(const struct pf_state *); | pf_state_expires(const struct pf_state *); | ||||
void pf_purge_expired_fragments(void); | void pf_purge_expired_fragments(void); | ||||
void pf_purge_fragments(uint32_t); | void pf_purge_fragments(uint32_t); | ||||
int pf_routable(struct pf_addr *addr, sa_family_t af, struct pfi_kif *, | int pf_routable(struct pf_addr *addr, sa_family_t af, struct pfi_kkif *, | ||||
int); | int); | ||||
int pf_socket_lookup(int, struct pf_pdesc *, struct mbuf *); | int pf_socket_lookup(int, struct pf_pdesc *, struct mbuf *); | ||||
struct pf_state_key *pf_alloc_state_key(int); | struct pf_state_key *pf_alloc_state_key(int); | ||||
void pfr_initialize(void); | void pfr_initialize(void); | ||||
void pfr_cleanup(void); | void pfr_cleanup(void); | ||||
int pfr_match_addr(struct pfr_ktable *, struct pf_addr *, sa_family_t); | int pfr_match_addr(struct pfr_ktable *, struct pf_addr *, sa_family_t); | ||||
void pfr_update_stats(struct pfr_ktable *, struct pf_addr *, sa_family_t, | void pfr_update_stats(struct pfr_ktable *, struct pf_addr *, sa_family_t, | ||||
u_int64_t, int, int, int); | u_int64_t, int, int, int); | ||||
Show All 26 Lines | int pfr_tst_addrs(struct pfr_table *, struct pfr_addr *, int, int *, | ||||
int); | int); | ||||
int pfr_ina_begin(struct pfr_table *, u_int32_t *, int *, int); | int pfr_ina_begin(struct pfr_table *, u_int32_t *, int *, int); | ||||
int pfr_ina_rollback(struct pfr_table *, u_int32_t, int *, int); | int pfr_ina_rollback(struct pfr_table *, u_int32_t, int *, int); | ||||
int pfr_ina_commit(struct pfr_table *, u_int32_t, int *, int *, int); | int pfr_ina_commit(struct pfr_table *, u_int32_t, int *, int *, int); | ||||
int pfr_ina_define(struct pfr_table *, struct pfr_addr *, int, int *, | int pfr_ina_define(struct pfr_table *, struct pfr_addr *, int, int *, | ||||
int *, u_int32_t, int); | int *, u_int32_t, int); | ||||
MALLOC_DECLARE(PFI_MTYPE); | MALLOC_DECLARE(PFI_MTYPE); | ||||
VNET_DECLARE(struct pfi_kif *, pfi_all); | VNET_DECLARE(struct pfi_kkif *, pfi_all); | ||||
#define V_pfi_all VNET(pfi_all) | #define V_pfi_all VNET(pfi_all) | ||||
void pfi_initialize(void); | void pfi_initialize(void); | ||||
void pfi_initialize_vnet(void); | void pfi_initialize_vnet(void); | ||||
void pfi_cleanup(void); | void pfi_cleanup(void); | ||||
void pfi_cleanup_vnet(void); | void pfi_cleanup_vnet(void); | ||||
void pfi_kif_ref(struct pfi_kif *); | void pfi_kkif_ref(struct pfi_kkif *); | ||||
void pfi_kif_unref(struct pfi_kif *); | void pfi_kkif_unref(struct pfi_kkif *); | ||||
struct pfi_kif *pfi_kif_find(const char *); | struct pfi_kkif *pfi_kkif_find(const char *); | ||||
struct pfi_kif *pfi_kif_attach(struct pfi_kif *, const char *); | struct pfi_kkif *pfi_kkif_attach(struct pfi_kkif *, const char *); | ||||
int pfi_kif_match(struct pfi_kif *, struct pfi_kif *); | int pfi_kkif_match(struct pfi_kkif *, struct pfi_kkif *); | ||||
void pfi_kif_purge(void); | void pfi_kkif_purge(void); | ||||
int pfi_match_addr(struct pfi_dynaddr *, struct pf_addr *, | int pfi_match_addr(struct pfi_dynaddr *, struct pf_addr *, | ||||
sa_family_t); | sa_family_t); | ||||
int pfi_dynaddr_setup(struct pf_addr_wrap *, sa_family_t); | int pfi_dynaddr_setup(struct pf_addr_wrap *, sa_family_t); | ||||
void pfi_dynaddr_remove(struct pfi_dynaddr *); | void pfi_dynaddr_remove(struct pfi_dynaddr *); | ||||
void pfi_dynaddr_copyout(struct pf_addr_wrap *); | void pfi_dynaddr_copyout(struct pf_addr_wrap *); | ||||
void pfi_update_status(const char *, struct pf_status *); | void pfi_update_status(const char *, struct pf_status *); | ||||
void pfi_get_ifaces(const char *, struct pfi_kif *, int *); | void pfi_get_ifaces(const char *, struct pfi_kif *, int *); | ||||
int pfi_set_flags(const char *, int); | int pfi_set_flags(const char *, int); | ||||
▲ Show 20 Lines • Show All 57 Lines • ▼ Show 20 Lines | |||||
int pf_step_out_of_anchor(struct pf_kanchor_stackframe *, int *, | int pf_step_out_of_anchor(struct pf_kanchor_stackframe *, int *, | ||||
struct pf_kruleset **, int, struct pf_krule **, | struct pf_kruleset **, int, struct pf_krule **, | ||||
struct pf_krule **, int *); | struct pf_krule **, int *); | ||||
int pf_map_addr(u_int8_t, struct pf_krule *, | int pf_map_addr(u_int8_t, struct pf_krule *, | ||||
struct pf_addr *, struct pf_addr *, | struct pf_addr *, struct pf_addr *, | ||||
struct pf_addr *, struct pf_ksrc_node **); | struct pf_addr *, struct pf_ksrc_node **); | ||||
struct pf_krule *pf_get_translation(struct pf_pdesc *, struct mbuf *, | struct pf_krule *pf_get_translation(struct pf_pdesc *, struct mbuf *, | ||||
int, int, struct pfi_kif *, struct pf_ksrc_node **, | int, int, struct pfi_kkif *, struct pf_ksrc_node **, | ||||
struct pf_state_key **, struct pf_state_key **, | struct pf_state_key **, struct pf_state_key **, | ||||
struct pf_addr *, struct pf_addr *, | struct pf_addr *, struct pf_addr *, | ||||
uint16_t, uint16_t, struct pf_kanchor_stackframe *); | uint16_t, uint16_t, struct pf_kanchor_stackframe *); | ||||
struct pf_state_key *pf_state_key_setup(struct pf_pdesc *, struct pf_addr *, | struct pf_state_key *pf_state_key_setup(struct pf_pdesc *, struct pf_addr *, | ||||
struct pf_addr *, u_int16_t, u_int16_t); | struct pf_addr *, u_int16_t, u_int16_t); | ||||
struct pf_state_key *pf_state_key_clone(struct pf_state_key *); | struct pf_state_key *pf_state_key_clone(struct pf_state_key *); | ||||
#endif /* _KERNEL */ | #endif /* _KERNEL */ | ||||
#endif /* _NET_PFVAR_H_ */ | #endif /* _NET_PFVAR_H_ */ |