Lines Matching refs:scrub
2760 VERIFY(src->scrub == NULL); in pf_normalize_tcp_init()
2762 src->scrub = pool_get(&pf_state_scrub_pl, PR_NOWAIT); in pf_normalize_tcp_init()
2763 if (src->scrub == NULL) { in pf_normalize_tcp_init()
2766 bzero(src->scrub, sizeof(*src->scrub)); in pf_normalize_tcp_init()
2772 src->scrub->pfss_ttl = h->ip_ttl; in pf_normalize_tcp_init()
2778 src->scrub->pfss_ttl = h->ip6_hlim; in pf_normalize_tcp_init()
2793 if (th->th_off > (sizeof(struct tcphdr) >> 2) && src->scrub && in pf_normalize_tcp_init()
2808 src->scrub->pfss_flags |= in pf_normalize_tcp_init()
2810 src->scrub->pfss_ts_mod = in pf_normalize_tcp_init()
2818 src->scrub->pfss_tsval0 = ntohl(tsval); in pf_normalize_tcp_init()
2819 src->scrub->pfss_tsval = ntohl(tsval); in pf_normalize_tcp_init()
2820 src->scrub->pfss_tsecr = ntohl(tsecr); in pf_normalize_tcp_init()
2821 getmicrouptime(&src->scrub->pfss_last); in pf_normalize_tcp_init()
2838 if (state->src.scrub) { in pf_normalize_tcp_cleanup()
2839 pool_put(&pf_state_scrub_pl, state->src.scrub); in pf_normalize_tcp_cleanup()
2841 if (state->dst.scrub) { in pf_normalize_tcp_cleanup()
2842 pool_put(&pf_state_scrub_pl, state->dst.scrub); in pf_normalize_tcp_cleanup()
2861 VERIFY(src->scrub || dst->scrub); in pf_normalize_tcp_stateful()
2871 if (src->scrub) { in pf_normalize_tcp_stateful()
2873 if (h->ip_ttl > src->scrub->pfss_ttl) { in pf_normalize_tcp_stateful()
2874 src->scrub->pfss_ttl = h->ip_ttl; in pf_normalize_tcp_stateful()
2876 h->ip_ttl = src->scrub->pfss_ttl; in pf_normalize_tcp_stateful()
2882 if (src->scrub) { in pf_normalize_tcp_stateful()
2884 if (h->ip6_hlim > src->scrub->pfss_ttl) { in pf_normalize_tcp_stateful()
2885 src->scrub->pfss_ttl = h->ip6_hlim; in pf_normalize_tcp_stateful()
2887 h->ip6_hlim = src->scrub->pfss_ttl; in pf_normalize_tcp_stateful()
2894 ((src->scrub && (src->scrub->pfss_flags & PFSS_TIMESTAMP)) || in pf_normalize_tcp_stateful()
2895 (dst->scrub && (dst->scrub->pfss_flags & PFSS_TIMESTAMP))) && in pf_normalize_tcp_stateful()
2928 if (tsval && src->scrub && in pf_normalize_tcp_stateful()
2929 (src->scrub->pfss_flags & in pf_normalize_tcp_stateful()
2935 src->scrub->pfss_ts_mod), in pf_normalize_tcp_stateful()
2943 if (tsecr && dst->scrub && in pf_normalize_tcp_stateful()
2944 (dst->scrub->pfss_flags & in pf_normalize_tcp_stateful()
2947 - dst->scrub->pfss_ts_mod; in pf_normalize_tcp_stateful()
2988 if (src->scrub && (src->scrub->pfss_flags & PFSS_PAWS) && in pf_normalize_tcp_stateful()
2989 (uptime.tv_sec - src->scrub->pfss_last.tv_sec > TS_MAX_IDLE || in pf_normalize_tcp_stateful()
2996 src->scrub->pfss_flags = (src->scrub->pfss_flags & ~PFSS_PAWS) in pf_normalize_tcp_stateful()
2999 if (dst->scrub && (dst->scrub->pfss_flags & PFSS_PAWS) && in pf_normalize_tcp_stateful()
3000 uptime.tv_sec - dst->scrub->pfss_last.tv_sec > TS_MAX_IDLE) { in pf_normalize_tcp_stateful()
3006 dst->scrub->pfss_flags = (dst->scrub->pfss_flags & ~PFSS_PAWS) in pf_normalize_tcp_stateful()
3010 if (got_ts && src->scrub && dst->scrub && in pf_normalize_tcp_stateful()
3011 (src->scrub->pfss_flags & PFSS_PAWS) && in pf_normalize_tcp_stateful()
3012 (dst->scrub->pfss_flags & PFSS_PAWS)) { in pf_normalize_tcp_stateful()
3093 timersub(&uptime, &src->scrub->pfss_last, &delta_ts); in pf_normalize_tcp_stateful()
3100 (SEQ_LT(tsval, dst->scrub->pfss_tsecr) || in pf_normalize_tcp_stateful()
3101 SEQ_GT(tsval, src->scrub->pfss_tsval + tsval_from_last) || in pf_normalize_tcp_stateful()
3102 (tsecr && (SEQ_GT(tsecr, dst->scrub->pfss_tsval) || in pf_normalize_tcp_stateful()
3103 SEQ_LT(tsecr, dst->scrub->pfss_tsval0))))) { in pf_normalize_tcp_stateful()
3113 SEQ_LT(tsval, dst->scrub->pfss_tsecr) ? '0' : ' ', in pf_normalize_tcp_stateful()
3114 SEQ_GT(tsval, src->scrub->pfss_tsval + in pf_normalize_tcp_stateful()
3116 SEQ_GT(tsecr, dst->scrub->pfss_tsval) ? '2' : ' ', in pf_normalize_tcp_stateful()
3117 SEQ_LT(tsecr, dst->scrub->pfss_tsval0)? '3' : ' ')); in pf_normalize_tcp_stateful()
3123 src->scrub->pfss_tsval, src->scrub->pfss_tsecr)); in pf_normalize_tcp_stateful()
3125 dst->scrub->pfss_tsval, dst->scrub->pfss_tsecr, in pf_normalize_tcp_stateful()
3126 dst->scrub->pfss_tsval0)); in pf_normalize_tcp_stateful()
3140 src->scrub && dst->scrub && in pf_normalize_tcp_stateful()
3141 (src->scrub->pfss_flags & PFSS_PAWS) && in pf_normalize_tcp_stateful()
3142 (dst->scrub->pfss_flags & PFSS_PAWS)) { in pf_normalize_tcp_stateful()
3170 if (pd->p_len > 0 && (src->scrub->pfss_flags & PFSS_DATA_TS)) { in pf_normalize_tcp_stateful()
3196 if (pd->p_len > 0 && src->scrub && (src->scrub->pfss_flags & in pf_normalize_tcp_stateful()
3199 src->scrub->pfss_flags |= PFSS_DATA_TS; in pf_normalize_tcp_stateful()
3201 src->scrub->pfss_flags |= PFSS_DATA_NOTS; in pf_normalize_tcp_stateful()
3202 if (pf_status.debug >= PF_DEBUG_MISC && dst->scrub && in pf_normalize_tcp_stateful()
3203 (dst->scrub->pfss_flags & PFSS_TIMESTAMP)) { in pf_normalize_tcp_stateful()
3219 if (got_ts && src->scrub && PFSS_TIMESTAMP == (src->scrub->pfss_flags & in pf_normalize_tcp_stateful()
3221 getmicrouptime(&src->scrub->pfss_last); in pf_normalize_tcp_stateful()
3222 if (SEQ_GEQ(tsval, src->scrub->pfss_tsval) || in pf_normalize_tcp_stateful()
3223 (src->scrub->pfss_flags & PFSS_PAWS) == 0) { in pf_normalize_tcp_stateful()
3224 src->scrub->pfss_tsval = tsval; in pf_normalize_tcp_stateful()
3228 if (SEQ_GEQ(tsecr, src->scrub->pfss_tsecr) || in pf_normalize_tcp_stateful()
3229 (src->scrub->pfss_flags & PFSS_PAWS) == 0) { in pf_normalize_tcp_stateful()
3230 src->scrub->pfss_tsecr = tsecr; in pf_normalize_tcp_stateful()
3233 if ((src->scrub->pfss_flags & PFSS_PAWS) == 0 && in pf_normalize_tcp_stateful()
3234 (SEQ_LT(tsval, src->scrub->pfss_tsval0) || in pf_normalize_tcp_stateful()
3235 src->scrub->pfss_tsval0 == 0)) { in pf_normalize_tcp_stateful()
3237 src->scrub->pfss_tsval0 = tsval; in pf_normalize_tcp_stateful()
3241 if ((src->scrub->pfss_flags & PFSS_PAWS) == 0) { in pf_normalize_tcp_stateful()
3242 src->scrub->pfss_flags |= PFSS_PAWS; in pf_normalize_tcp_stateful()