Lines Matching defs:ruleset
633 /* destroy main ruleset */
693 struct pf_ruleset *ruleset;
697 ruleset = pf_find_ruleset(anchor);
698 if (ruleset == NULL)
705 ruleset->rules[rs_num].active.ticket)
708 rule = TAILQ_LAST(ruleset->rules[rs_num].active.ptr,
711 rule = TAILQ_FIRST(ruleset->rules[rs_num].active.ptr);
714 ruleset->rules[rs_num].inactive.ticket)
717 rule = TAILQ_LAST(ruleset->rules[rs_num].inactive.ptr,
720 rule = TAILQ_FIRST(ruleset->rules[rs_num].inactive.ptr);
1309 /* Calculate checksum for the main ruleset */
1953 struct pf_ruleset *ruleset = &pf_main_ruleset;
1957 ruleset->rules[PF_RULESET_FILTER].active.ptr, entries) {
2785 pf_delete_rule_from_ruleset(struct pf_ruleset *ruleset, int rs_num,
2793 pf_rm_rule(ruleset->rules[rs_num].active.ptr, rule);
2794 if (ruleset->rules[rs_num].active.rcount-- == 0)
2796 r = TAILQ_FIRST(ruleset->rules[rs_num].active.ptr);
2806 pf_ruleset_cleanup(struct pf_ruleset *ruleset, int rs)
2808 pf_calc_skip_steps(ruleset->rules[rs].active.ptr);
2809 ruleset->rules[rs].active.ticket =
2810 ++ruleset->rules[rs].inactive.ticket;
2816 struct pf_ruleset *ruleset;
2823 if ((ruleset = pf_find_ruleset_with_owner(pr->anchor,
2833 rule = TAILQ_FIRST(ruleset->rules[rs_num].active.ptr);
2843 if (rule->anchor && (ruleset != &pf_main_ruleset) &&
2844 ((strcmp(ruleset->anchor->owner, "")) == 0) &&
2845 ((ruleset->rules[rs_num].active.rcount - 1) == 0)) {
2846 /* set rule & ruleset to parent and repeat */
2848 struct pf_ruleset *delete_ruleset = ruleset;
2850 #define parent_ruleset ruleset->anchor->parent->ruleset
2851 if (ruleset->anchor->parent == NULL)
2852 ruleset = &pf_main_ruleset;
2854 ruleset = &parent_ruleset;
2856 rule = TAILQ_FIRST(ruleset->rules[rs_num].active.ptr);
2875 pf_delete_rule_from_ruleset(ruleset, rs_num,
2877 pf_ruleset_cleanup(ruleset, rs_num);
2887 struct pf_ruleset *ruleset;
2893 ruleset = &pf_main_ruleset;
2899 if (rule->anchor->ruleset.rules[rs].active.rcount > 0) {
2901 pf_ruleset_cleanup(ruleset, rs);
2905 ruleset =
2906 &rule->anchor->ruleset;
2907 rule = TAILQ_FIRST(ruleset->rules[rs].active.ptr);
2913 pf_delete_rule_from_ruleset(ruleset, rs, rule);
2924 pf_delete_rule_from_ruleset(ruleset,
2932 pf_ruleset_cleanup(ruleset, rs);
2935 if (ruleset != &pf_main_ruleset)
2936 pf_deleterule_anchor_step_out(&ruleset,
2947 struct pf_ruleset *ruleset = *ruleset_ptr;
2951 struct pf_ruleset *rs_copy = ruleset;
2952 ruleset = ruleset->anchor->parent?
2953 &ruleset->anchor->parent->ruleset:&pf_main_ruleset;
2955 rule = TAILQ_FIRST(ruleset->rules[rs].active.ptr);
2960 if (rule->anchor->ruleset.rules[rs].active.rcount > 0)
2963 *ruleset_ptr = ruleset;
2969 struct pf_ruleset *ruleset) {
3016 if (pf_tbladdr_setup(ruleset, &rule->src.addr))
3018 if (pf_tbladdr_setup(ruleset, &rule->dst.addr))
3020 if (pf_anchor_setup(rule, ruleset, pr->anchor_call))
3023 if (pf_tbladdr_setup(ruleset, &apa->addr))
3027 if ((rule->overload_tbl = pfr_attach_table(ruleset,
3060 struct pf_ruleset *ruleset;
3066 ruleset = pf_find_ruleset(pr->anchor);
3067 if (ruleset == NULL) {
3080 if (pr->ticket != ruleset->rules[rs_num].inactive.ticket) {
3108 tail = TAILQ_LAST(ruleset->rules[rs_num].inactive.ptr,
3115 if ((error = pf_rule_setup(pr, rule, ruleset)))
3118 TAILQ_INSERT_TAIL(ruleset->rules[rs_num].inactive.ptr,
3120 ruleset->rules[rs_num].inactive.rcount++;
3127 struct pf_ruleset *ruleset;
3133 ruleset = pf_find_ruleset(pr->anchor);
3134 if (ruleset == NULL) {
3143 tail = TAILQ_LAST(ruleset->rules[rs_num].active.ptr,
3149 pr->ticket = ruleset->rules[rs_num].active.ticket;
3154 struct pf_ruleset *ruleset;
3160 ruleset = pf_find_ruleset(pr->anchor);
3161 if (ruleset == NULL) {
3170 if (pr->ticket != ruleset->rules[rs_num].active.ticket) {
3174 rule = TAILQ_FIRST(ruleset->rules[rs_num].active.ptr);
3182 if (pf_anchor_copyout(ruleset, rule, pr)) {
3209 struct pf_ruleset *ruleset;
3229 ruleset = pf_find_ruleset(pcr->anchor);
3230 if (ruleset == NULL) {
3241 pcr->ticket = ++ruleset->rules[rs_num].active.ticket;
3245 ruleset->rules[rs_num].active.ticket) {
3324 if (pf_tbladdr_setup(ruleset, &newrule->src.addr))
3326 if (pf_tbladdr_setup(ruleset, &newrule->dst.addr))
3328 if (pf_anchor_setup(newrule, ruleset, pcr->anchor_call))
3331 if (pf_tbladdr_setup(ruleset, &pa->addr))
3336 ruleset, newrule->overload_tblname)) ==
3366 ruleset->rules[rs_num].active.ptr);
3369 ruleset->rules[rs_num].active.ptr, pf_rulequeue);
3372 ruleset->rules[rs_num].active.ptr);
3384 pf_rm_rule(ruleset->rules[rs_num].active.ptr, oldrule);
3385 ruleset->rules[rs_num].active.rcount--;
3389 ruleset->rules[rs_num].active.ptr,
3396 ruleset->rules[rs_num].active.ptr,
3398 ruleset->rules[rs_num].active.rcount++;
3403 ruleset->rules[rs_num].active.ptr, entries)
3406 ruleset->rules[rs_num].active.ticket++;
3408 pf_calc_skip_steps(ruleset->rules[rs_num].active.ptr);
3409 pf_remove_if_empty_ruleset(ruleset);
3415 struct pf_ruleset *ruleset;
3424 if ((ruleset = pf_find_ruleset_with_owner(pr->anchor,
3440 r = TAILQ_FIRST(ruleset->rules[rs_num].active.ptr);
3478 r = TAILQ_FIRST(ruleset->rules[rs_num].active.ptr);
3483 TAILQ_LAST(ruleset->rules[rs_num].active.ptr,
3492 if ((error = pf_rule_setup(pr, rule, ruleset)))
3504 TAILQ_INSERT_TAIL(ruleset->rules[rs_num].active.ptr,
3506 ruleset->rules[rs_num].active.rcount++;
3508 /* Calculate checksum for the main ruleset */
3509 if (ruleset == &pf_main_ruleset)
3510 error = pf_setup_pfsync_matching(ruleset);
3512 pf_ruleset_cleanup(ruleset, rs_num);
3513 rule->ticket = ruleset->rules[rs_num].active.ticket;
4057 struct pf_ruleset *ruleset;
4072 ruleset = pf_find_ruleset(pca->anchor);
4073 if (ruleset == NULL) {
4115 pf_tbladdr_setup(ruleset, &newpa->addr)) {
4181 struct pf_ruleset *ruleset;
4186 if ((ruleset = pf_find_ruleset(pr->path)) == NULL) {
4191 if (ruleset->anchor == NULL) {
4198 &ruleset->anchor->children)
4205 struct pf_ruleset *ruleset;
4210 if ((ruleset = pf_find_ruleset(pr->path)) == NULL) {
4215 if (ruleset->anchor == NULL) {
4225 &ruleset->anchor->children)