shrink pf by 445 lines.

author henning <henning@openbsd.org>

Sat, 19 Apr 2014 12:59:53 +0000 (12:59 +0000)

committer henning <henning@openbsd.org>

Sat, 19 Apr 2014 12:59:53 +0000 (12:59 +0000)
author henning <henning@openbsd.org>
Sat, 19 Apr 2014 12:59:53 +0000 (12:59 +0000)
committer henning <henning@openbsd.org>
Sat, 19 Apr 2014 12:59:53 +0000 (12:59 +0000)
diff --git a/sys/net/pf.c b/sys/net/pf.c

index 662957d..df631ea 100644 (file)
--- a/sys/net/pf.c
+++ b/sys/net/pf.c
@@ -1,4 +1,4 @@
-/*     $OpenBSD: pf.c,v 1.872 2014/04/18 15:13:01 henning Exp $ */
+/*     $OpenBSD: pf.c,v 1.873 2014/04/19 12:59:53 henning Exp $ */
  
  /*
   * Copyright (c) 2001 Daniel Hartmeier
@@ -2366,14 +2366,6 @@ pf_send_tcp(const struct pf_rule *r, sa_family_t af,
         m->m_pkthdr.ph_rtableid = rdom;
         if (r && (r->scrub_flags & PFSTATE_SETPRIO))
                 m->m_pkthdr.pf.prio = r->set_prio[0];
-
-#ifdef ALTQ
-       if (r != NULL && r->qid) {
-               m->m_pkthdr.pf.qid = r->qid;
-               /* add hints for ecn */
-               m->m_pkthdr.pf.hdr = mtod(m, struct ip *);
-       }
-#endif /* ALTQ */
         m->m_data += max_linkhdr;
         m->m_pkthdr.len = m->m_len = len;
         m->m_pkthdr.rcvif = NULL;
@@ -2479,14 +2471,6 @@ pf_send_icmp(struct mbuf *m, u_int8_t type, u_int8_t code, sa_family_t af,
         if (r && (r->scrub_flags & PFSTATE_SETPRIO))
                 m0->m_pkthdr.pf.prio = r->set_prio[0];
  
-#ifdef ALTQ
-       if (r->qid) {
-               m0->m_pkthdr.pf.qid = r->qid;
-               /* add hints for ecn */
-               m0->m_pkthdr.pf.hdr = mtod(m0, struct ip *);
-       }
-#endif /* ALTQ */
-
         switch (af) {
  #ifdef INET
         case AF_INET:
@@ -6611,13 +6595,6 @@ done:
                 s->key[PF_SK_STACK]->inp = pd.m->m_pkthdr.pf.inp;
         }
  
-#ifdef ALTQ
-       if (action == PF_PASS && qid) {
-               pd.m->m_pkthdr.pf.qid = qid;
-               pd.m->m_pkthdr.pf.hdr = mtod(pd.m, caddr_t);/* hints for ecn */
-       }
-#endif /* ALTQ */
-
         /*
          * connections redirected to loopback should not match sockets
          * bound specifically to loopback due to security implications,
diff --git a/sys/net/pf_ioctl.c b/sys/net/pf_ioctl.c

index 7435817..2e68ed1 100644 (file)
--- a/sys/net/pf_ioctl.c
+++ b/sys/net/pf_ioctl.c
@@ -1,4 +1,4 @@
-/*     $OpenBSD: pf_ioctl.c,v 1.270 2014/03/30 21:54:48 guenther Exp $ */
+/*     $OpenBSD: pf_ioctl.c,v 1.271 2014/04/19 12:59:53 henning Exp $ */
  
  /*
   * Copyright (c) 2001 Daniel Hartmeier
@@ -82,22 +82,11 @@
  #include <netinet/in_pcb.h>
  #endif /* INET6 */
  
-#ifdef ALTQ
-#include <altq/altq.h>
-#endif
-
  void                    pfattach(int);
  void                    pf_thread_create(void *);
  int                     pfopen(dev_t, int, int, struct proc *);
  int                     pfclose(dev_t, int, int, struct proc *);
  int                     pfioctl(dev_t, u_long, caddr_t, int, struct proc *);
-#ifdef ALTQ
-int                     pf_begin_altq(u_int32_t *);
-int                     pf_rollback_altq(u_int32_t);
-int                     pf_commit_altq(u_int32_t);
-int                     pf_enable_altq(struct pf_altq *);
-int                     pf_disable_altq(struct pf_altq *);
-#endif /* ALTQ */
  int                     pf_begin_rules(u_int32_t *, const char *);
  int                     pf_rollback_rules(u_int32_t, char *);
  int                     pf_create_queues(void);
@@ -114,18 +103,12 @@ void                       pf_trans_set_commit(void);
  void                    pf_pool_copyin(struct pf_pool *, struct pf_pool *);
  int                     pf_rule_copyin(struct pf_rule *, struct pf_rule *,
                             struct pf_ruleset *);
-u_int32_t               pf_oqname2qid(char *);
-void                    pf_oqid2qname(u_int32_t, char *);
-void                    pf_oqid_unref(u_int32_t);
  u_int16_t               pf_qname2qid(char *, int);
  void                    pf_qid2qname(u_int16_t, char *);
  void                    pf_qid_unref(u_int16_t);
  
  struct pf_rule          pf_default_rule, pf_default_rule_new;
  struct rwlock           pf_consistency_lock = RWLOCK_INITIALIZER("pfcnslk");
-#ifdef ALTQ
-static int              pf_altq_running;
-#endif
  
  struct {
         char            statusif[IFNAMSIZ];
@@ -142,7 +125,6 @@ struct {
  
  #define        TAGID_MAX        50000
  TAILQ_HEAD(pf_tags, pf_tagname)        pf_tags = TAILQ_HEAD_INITIALIZER(pf_tags),
-                               pf_oqids = TAILQ_HEAD_INITIALIZER(pf_oqids),
                                 pf_qids = TAILQ_HEAD_INITIALIZER(pf_qids);
  
  #if (PF_QNAME_SIZE != PF_TAG_NAME_SIZE)
@@ -306,11 +288,6 @@ pf_rm_rule(struct pf_rulequeue *rulequeue, struct pf_rule *rule)
                 return;
         pf_tag_unref(rule->tag);
         pf_tag_unref(rule->match_tag);
-#ifdef ALTQ
-       if (rule->pqid != rule->qid)
-               pf_oqid_unref(rule->pqid);
-       pf_oqid_unref(rule->qid);
-#endif
         pf_rtlabel_remove(&rule->src.addr);
         pf_rtlabel_remove(&rule->dst.addr);
         pfi_dynaddr_remove(&rule->src.addr);
@@ -514,180 +491,6 @@ pf_qid_unref(u_int16_t qid)
         tag_unref(&pf_qids, (u_int16_t)qid);
  }
  
-#ifdef ALTQ
-u_int32_t
-pf_oqname2qid(char *qname)
-{
-       return ((u_int32_t)tagname2tag(&pf_oqids, qname, 1));
-}
-
-void
-pf_oqid2qname(u_int32_t qid, char *p)
-{
-       tag2tagname(&pf_oqids, (u_int16_t)qid, p);
-}
-
-void
-pf_oqid_unref(u_int32_t qid)
-{
-       tag_unref(&pf_oqids, (u_int16_t)qid);
-}
-
-int
-pf_begin_altq(u_int32_t *ticket)
-{
-       struct pf_altq  *altq;
-       int              error = 0;
-
-       /* Purge the old altq list */
-       while ((altq = TAILQ_FIRST(pf_altqs_inactive)) != NULL) {
-               TAILQ_REMOVE(pf_altqs_inactive, altq, entries);
-               if (altq->qname[0] == 0) {
-                       /* detach and destroy the discipline */
-                       error = altq_remove(altq);
-               } else
-                       pf_oqid_unref(altq->qid);
-               pool_put(&pf_altq_pl, altq);
-       }
-       if (error)
-               return (error);
-       *ticket = ++ticket_altqs_inactive;
-       altqs_inactive_open = 1;
-       return (0);
-}
-
-int
-pf_rollback_altq(u_int32_t ticket)
-{
-       struct pf_altq  *altq;
-       int              error = 0;
-
-       if (!altqs_inactive_open || ticket != ticket_altqs_inactive)
-               return (0);
-       /* Purge the old altq list */
-       while ((altq = TAILQ_FIRST(pf_altqs_inactive)) != NULL) {
-               TAILQ_REMOVE(pf_altqs_inactive, altq, entries);
-               if (altq->qname[0] == 0) {
-                       /* detach and destroy the discipline */
-                       error = altq_remove(altq);
-               } else
-                       pf_oqid_unref(altq->qid);
-               pool_put(&pf_altq_pl, altq);
-       }
-       altqs_inactive_open = 0;
-       return (error);
-}
-
-int
-pf_commit_altq(u_int32_t ticket)
-{
-       struct pf_altqqueue     *old_altqs;
-       struct pf_altq          *altq;
-       int                      s, err, error = 0;
-
-       if (!altqs_inactive_open || ticket != ticket_altqs_inactive)
-               return (EBUSY);
-
-       /* swap altqs, keep the old. */
-       s = splsoftnet();
-       old_altqs = pf_altqs_active;
-       pf_altqs_active = pf_altqs_inactive;
-       pf_altqs_inactive = old_altqs;
-       ticket_altqs_active = ticket_altqs_inactive;
-
-       /* Attach new disciplines */
-       TAILQ_FOREACH(altq, pf_altqs_active, entries) {
-               if (altq->qname[0] == 0) {
-                       /* attach the discipline */
-                       error = altq_pfattach(altq);
-                       if (error == 0 && pf_altq_running)
-                               error = pf_enable_altq(altq);
-                       if (error != 0) {
-                               splx(s);
-                               return (error);
-                       }
-               }
-       }
-
-       /* Purge the old altq list */
-       while ((altq = TAILQ_FIRST(pf_altqs_inactive)) != NULL) {
-               TAILQ_REMOVE(pf_altqs_inactive, altq, entries);
-               if (altq->qname[0] == 0) {
-                       /* detach and destroy the discipline */
-                       if (pf_altq_running)
-                               error = pf_disable_altq(altq);
-                       err = altq_pfdetach(altq);
-                       if (err != 0 && error == 0)
-                               error = err;
-                       err = altq_remove(altq);
-                       if (err != 0 && error == 0)
-                               error = err;
-               } else
-                       pf_oqid_unref(altq->qid);
-               pool_put(&pf_altq_pl, altq);
-       }
-       splx(s);
-
-       altqs_inactive_open = 0;
-       return (error);
-}
-
-int
-pf_enable_altq(struct pf_altq *altq)
-{
-       struct ifnet            *ifp;
-       struct oldtb_profile     tb;
-       int                      s, error = 0;
-
-       if ((ifp = ifunit(altq->ifname)) == NULL)
-               return (EINVAL);
-
-       if (ifp->if_snd.altq_type != ALTQT_NONE)
-               error = altq_enable(&ifp->if_snd);
-
-       /* set tokenbucket regulator */
-       if (error == 0 && ifp != NULL && ALTQ_IS_ENABLED(&ifp->if_snd)) {
-               tb.rate = altq->ifbandwidth;
-               tb.depth = altq->tbrsize;
-               s = splnet();
-               error = oldtbr_set(&ifp->if_snd, &tb);
-               splx(s);
-       }
-
-       return (error);
-}
-
-int
-pf_disable_altq(struct pf_altq *altq)
-{
-       struct ifnet            *ifp;
-       struct oldtb_profile     tb;
-       int                      s, error;
-
-       if ((ifp = ifunit(altq->ifname)) == NULL)
-               return (EINVAL);
-
-       /*
-        * when the discipline is no longer referenced, it was overridden
-        * by a new one.  if so, just return.
-        */
-       if (altq->altq_disc != ifp->if_snd.altq_disc)
-               return (0);
-
-       error = altq_disable(&ifp->if_snd);
-
-       if (error == 0) {
-               /* clear tokenbucket regulator */
-               tb.rate = 0;
-               s = splnet();
-               error = oldtbr_set(&ifp->if_snd, &tb);
-               splx(s);
-       }
-
-       return (error);
-}
-#endif /* ALTQ */
-
  int
  pf_begin_rules(u_int32_t *ticket, const char *anchor)
  {
@@ -1031,9 +834,6 @@ pfioctl(dev_t dev, u_long cmd, caddr_t addr, int flags, struct proc *p)
                 case DIOCGETTIMEOUT:
                 case DIOCCLRRULECTRS:
                 case DIOCGETLIMIT:
-               case DIOCGETALTQS:
-               case DIOCGETALTQ:
-               case DIOCGETALTQSTATS:
                 case DIOCGETRULESETS:
                 case DIOCGETRULESET:
                 case DIOCGETQUEUES:
@@ -1076,9 +876,6 @@ pfioctl(dev_t dev, u_long cmd, caddr_t addr, int flags, struct proc *p)
                 case DIOCGETSTATES:
                 case DIOCGETTIMEOUT:
                 case DIOCGETLIMIT:
-               case DIOCGETALTQS:
-               case DIOCGETALTQ:
-               case DIOCGETALTQSTATS:
                 case DIOCGETRULESETS:
                 case DIOCGETRULESET:
                 case DIOCGETQUEUES:
@@ -1871,156 +1668,6 @@ pfioctl(dev_t dev, u_long cmd, caddr_t addr, int flags, struct proc *p)
                 break;
         }
  
-#ifdef ALTQ
-       case DIOCSTARTALTQ: {
-               struct pf_altq          *altq;
-
-               /* enable all altq interfaces on active list */
-               TAILQ_FOREACH(altq, pf_altqs_active, entries) {
-                       if (altq->qname[0] == 0) {
-                               error = pf_enable_altq(altq);
-                               if (error != 0)
-                                       break;
-                       }
-               }
-               if (error == 0)
-                       pf_altq_running = 1;
-               DPFPRINTF(LOG_NOTICE, "altq: started");
-               break;
-       }
-
-       case DIOCSTOPALTQ: {
-               struct pf_altq          *altq;
-
-               /* disable all altq interfaces on active list */
-               TAILQ_FOREACH(altq, pf_altqs_active, entries) {
-                       if (altq->qname[0] == 0) {
-                               error = pf_disable_altq(altq);
-                               if (error != 0)
-                                       break;
-                       }
-               }
-               if (error == 0)
-                       pf_altq_running = 0;
-               DPFPRINTF(LOG_NOTICE, "altq: stopped");
-               break;
-       }
-
-       case DIOCADDALTQ: {
-               struct pfioc_altq       *pa = (struct pfioc_altq *)addr;
-               struct pf_altq          *altq, *a;
-
-               if (pa->ticket != ticket_altqs_inactive) {
-                       error = EBUSY;
-                       break;
-               }
-               altq = pool_get(&pf_altq_pl, PR_WAITOK|PR_LIMITFAIL);
-               if (altq == NULL) {
-                       error = ENOMEM;
-                       break;
-               }
-               bcopy(&pa->altq, altq, sizeof(struct pf_altq));
-               altq->altq_disc = NULL;
-
-               /*
-                * if this is for a queue, find the discipline and
-                * copy the necessary fields
-                */
-               if (altq->qname[0] != 0) {
-                       if ((altq->qid = pf_oqname2qid(altq->qname)) == 0) {
-                               error = EBUSY;
-                               pool_put(&pf_altq_pl, altq);
-                               break;
-                       }
-                       TAILQ_FOREACH(a, pf_altqs_inactive, entries) {
-                               if (strncmp(a->ifname, altq->ifname,
-                                   IFNAMSIZ) == 0 && a->qname[0] == 0) {
-                                       altq->altq_disc = a->altq_disc;
-                                       break;
-                               }
-                       }
-               }
-
-               error = altq_add(altq);
-               if (error) {
-                       pool_put(&pf_altq_pl, altq);
-                       break;
-               }
-
-               TAILQ_INSERT_TAIL(pf_altqs_inactive, altq, entries);
-               bcopy(altq, &pa->altq, sizeof(struct pf_altq));
-               break;
-       }
-
-       case DIOCGETALTQS: {
-               struct pfioc_altq       *pa = (struct pfioc_altq *)addr;
-               struct pf_altq          *altq;
-
-               pa->nr = 0;
-               TAILQ_FOREACH(altq, pf_altqs_active, entries)
-                       pa->nr++;
-               pa->ticket = ticket_altqs_active;
-               break;
-       }
-
-       case DIOCGETALTQ: {
-               struct pfioc_altq       *pa = (struct pfioc_altq *)addr;
-               struct pf_altq          *altq;
-               u_int32_t                nr;
-
-               if (pa->ticket != ticket_altqs_active) {
-                       error = EBUSY;
-                       break;
-               }
-               nr = 0;
-               altq = TAILQ_FIRST(pf_altqs_active);
-               while ((altq != NULL) && (nr < pa->nr)) {
-                       altq = TAILQ_NEXT(altq, entries);
-                       nr++;
-               }
-               if (altq == NULL) {
-                       error = EBUSY;
-                       break;
-               }
-               bcopy(altq, &pa->altq, sizeof(struct pf_altq));
-               break;
-       }
-
-       case DIOCCHANGEALTQ:
-               /* CHANGEALTQ not supported yet! */
-               error = ENODEV;
-               break;
-
-       case DIOCGETALTQSTATS: {
-               struct pfioc_altqstats  *pq = (struct pfioc_altqstats *)addr;
-               struct pf_altq          *altq;
-               u_int32_t                nr;
-               int                      nbytes;
-
-               if (pq->ticket != ticket_altqs_active) {
-                       error = EBUSY;
-                       break;
-               }
-               nbytes = pq->nbytes;
-               nr = 0;
-               altq = TAILQ_FIRST(pf_altqs_active);
-               while ((altq != NULL) && (nr < pq->nr)) {
-                       altq = TAILQ_NEXT(altq, entries);
-                       nr++;
-               }
-               if (altq == NULL) {
-                       error = EBUSY;
-                       break;
-               }
-               error = altq_getqstats(altq, pq->buf, &nbytes);
-               if (error == 0) {
-                       pq->scheduler = altq->scheduler;
-                       pq->nbytes = nbytes;
-               }
-               break;
-       }
-#endif /* ALTQ */
-
         case DIOCGETRULESETS: {
                 struct pfioc_ruleset    *pr = (struct pfioc_ruleset *)addr;
                 struct pf_ruleset       *ruleset;
@@ -2313,21 +1960,6 @@ pfioctl(dev_t dev, u_long cmd, caddr_t addr, int flags, struct proc *p)
                                 goto fail;
                         }
                         switch (ioe->type) {
-#ifdef ALTQ
-                       case PF_TRANS_ALTQ:
-                               if (ioe->anchor[0]) {
-                                       free(table, M_TEMP);
-                                       free(ioe, M_TEMP);
-                                       error = EINVAL;
-                                       goto fail;
-                               }
-                               if ((error = pf_begin_altq(&ioe->ticket))) {
-                                       free(table, M_TEMP);
-                                       free(ioe, M_TEMP);
-                                       goto fail;
-                               }
-                               break;
-#endif /* ALTQ */
                         case PF_TRANS_TABLE:
                                 bzero(table, sizeof(*table));
                                 strlcpy(table->pfrt_anchor, ioe->anchor,
@@ -2380,21 +2012,6 @@ pfioctl(dev_t dev, u_long cmd, caddr_t addr, int flags, struct proc *p)
                                 goto fail;
                         }
                         switch (ioe->type) {
-#ifdef ALTQ
-                       case PF_TRANS_ALTQ:
-                               if (ioe->anchor[0]) {
-                                       free(table, M_TEMP);
-                                       free(ioe, M_TEMP);
-                                       error = EINVAL;
-                                       goto fail;
-                               }
-                               if ((error = pf_rollback_altq(ioe->ticket))) {
-                                       free(table, M_TEMP);
-                                       free(ioe, M_TEMP);
-                                       goto fail; /* really bad */
-                               }
-                               break;
-#endif /* ALTQ */
                         case PF_TRANS_TABLE:
                                 bzero(table, sizeof(*table));
                                 strlcpy(table->pfrt_anchor, ioe->anchor,
@@ -2443,23 +2060,6 @@ pfioctl(dev_t dev, u_long cmd, caddr_t addr, int flags, struct proc *p)
                                 goto fail;
                         }
                         switch (ioe->type) {
-#ifdef ALTQ
-                       case PF_TRANS_ALTQ:
-                               if (ioe->anchor[0]) {
-                                       free(table, M_TEMP);
-                                       free(ioe, M_TEMP);
-                                       error = EINVAL;
-                                       goto fail;
-                               }
-                               if (!altqs_inactive_open || ioe->ticket !=
-                                   ticket_altqs_inactive) {
-                                       free(table, M_TEMP);
-                                       free(ioe, M_TEMP);
-                                       error = EBUSY;
-                                       goto fail;
-                               }
-                               break;
-#endif /* ALTQ */
                         case PF_TRANS_TABLE:
                                 rs = pf_find_ruleset(ioe->anchor);
                                 if (rs == NULL || !rs->topen || ioe->ticket !=
@@ -2507,15 +2107,6 @@ pfioctl(dev_t dev, u_long cmd, caddr_t addr, int flags, struct proc *p)
                                 goto fail;
                         }
                         switch (ioe->type) {
-#ifdef ALTQ
-                       case PF_TRANS_ALTQ:
-                               if ((error = pf_commit_altq(ioe->ticket))) {
-                                       free(table, M_TEMP);
-                                       free(ioe, M_TEMP);
-                                       goto fail; /* really bad */
-                               }
-                               break;
-#endif /* ALTQ */
                         case PF_TRANS_TABLE:
                                 bzero(table, sizeof(*table));
                                 strlcpy(table->pfrt_anchor, ioe->anchor,
@@ -2818,16 +2409,10 @@ pf_rule_copyin(struct pf_rule *from, struct pf_rule *to,
         /* set queue IDs. little ugly due to both altq and new system... */
         if (to->qname[0] != 0) {
                 if ((to->qid = pf_qname2qid(to->qname, 0)) == 0)
-#ifdef ALTQ
-                       if ((to->qid = pf_oqname2qid(to->qname)) == 0)
-#endif
-                               return (EBUSY);
+                       return (EBUSY);
                 if (to->pqname[0] != 0) {
                         if ((to->pqid = pf_qname2qid(to->pqname, 0)) == 0)
-#ifdef ALTQ
-                               if ((to->pqid = pf_oqname2qid(to->pqname)) == 0)
-#endif
-                                       return (EBUSY);
+                               return (EBUSY);
                 } else
                         to->pqid = to->qid;
         }
diff --git a/sys/net/pfvar.h b/sys/net/pfvar.h

index 5d1503d..07bd071 100644 (file)
--- a/sys/net/pfvar.h
+++ b/sys/net/pfvar.h
@@ -1,4 +1,4 @@
-/*     $OpenBSD: pfvar.h,v 1.397 2014/01/21 01:50:07 henning Exp $ */
+/*     $OpenBSD: pfvar.h,v 1.398 2014/04/19 12:59:53 henning Exp $ */
  
  /*
   * Copyright (c) 2001 Daniel Hartmeier
@@ -1718,7 +1718,7 @@ struct pfioc_iface {
  #define DIOCSETDEBUG   _IOWR('D', 24, u_int32_t)
  #define DIOCGETSTATES  _IOWR('D', 25, struct pfioc_states)
  #define DIOCCHANGERULE _IOWR('D', 26, struct pfioc_rule)
-/* XXX cut 26 - 28 */
+/* XXX cut 27 - 28 */
  #define DIOCSETTIMEOUT _IOWR('D', 29, struct pfioc_tm)
  #define DIOCGETTIMEOUT _IOWR('D', 30, struct pfioc_tm)
  #define DIOCADDSTATE   _IOWR('D', 37, struct pfioc_state)
@@ -1726,14 +1726,7 @@ struct pfioc_iface {
  #define DIOCGETLIMIT   _IOWR('D', 39, struct pfioc_limit)
  #define DIOCSETLIMIT   _IOWR('D', 40, struct pfioc_limit)
  #define DIOCKILLSTATES _IOWR('D', 41, struct pfioc_state_kill)
-#define DIOCSTARTALTQ  _IO  ('D', 42)
-#define DIOCSTOPALTQ   _IO  ('D', 43)
-#define DIOCADDALTQ    _IOWR('D', 45, struct pfioc_altq)
-#define DIOCGETALTQS   _IOWR('D', 47, struct pfioc_altq)
-#define DIOCGETALTQ    _IOWR('D', 48, struct pfioc_altq)
-#define DIOCCHANGEALTQ _IOWR('D', 49, struct pfioc_altq)
-#define DIOCGETALTQSTATS       _IOWR('D', 50, struct pfioc_altqstats)
-/* XXX cut 51 - 57 */
+/* XXX cut 42 - 57 */
  #define        DIOCGETRULESETS _IOWR('D', 58, struct pfioc_ruleset)
  #define        DIOCGETRULESET  _IOWR('D', 59, struct pfioc_ruleset)
  #define        DIOCRCLRTABLES  _IOWR('D', 60, struct pfioc_table)
author	henning <henning@openbsd.org>
	Sat, 19 Apr 2014 12:59:53 +0000 (12:59 +0000)
committer	henning <henning@openbsd.org>
	Sat, 19 Apr 2014 12:59:53 +0000 (12:59 +0000)
sys/net/pf.c		patch \| blob \| history
sys/net/pf_ioctl.c		patch \| blob \| history
sys/net/pfvar.h		patch \| blob \| history