405 	    (((*state)->rule.ptr->rt == PF_ROUTETO &&  in pf_state_lookup_aux()
406 	    (*state)->rule.ptr->direction == PF_OUT) ||  in pf_state_lookup_aux()
407 	    ((*state)->rule.ptr->rt == PF_REPLYTO &&  in pf_state_lookup_aux()
408 	    (*state)->rule.ptr->direction == PF_IN)) &&  in pf_state_lookup_aux()
455 	        s->rule.ptr->states++;                          \
456 	        VERIFY(s->rule.ptr->states != 0);               \
477 	        VERIFY(s->rule.ptr->states > 0);                \
478 	        s->rule.ptr->states--;                          \
796 	if (a->rule.ptr > b->rule.ptr) {  in pf_src_compare()
799 	if (a->rule.ptr < b->rule.ptr) {  in pf_src_compare()
1224 	if ((*state)->rule.ptr->max_src_conn &&  in pf_src_connlimit()
1225 	    (*state)->rule.ptr->max_src_conn <  in pf_src_connlimit()
1231 	if ((*state)->rule.ptr->max_src_conn_rate.limit &&  in pf_src_connlimit()
1241 	if ((*state)->rule.ptr->overload_tbl) {  in pf_src_connlimit()
1267 		pfr_insert_kentry((*state)->rule.ptr->overload_tbl,  in pf_src_connlimit()
1271 		if ((*state)->rule.ptr->flush) {  in pf_src_connlimit()
1292 				    ((*state)->rule.ptr->flush &  in pf_src_connlimit()
1294 				    (*state)->rule.ptr == st->rule.ptr)) {  in pf_src_connlimit()
1317 pf_insert_src_node(struct pf_src_node **sn, struct pf_rule *rule,  in pf_insert_src_node()  argument
1325 		if (rule->rule_flag & PFRULE_RULESRCTRACK ||  in pf_insert_src_node()
1326 		    rule->rpool.opts & PF_POOL_STICKYADDR) {  in pf_insert_src_node()
1327 			k.rule.ptr = rule;  in pf_insert_src_node()
1329 			k.rule.ptr = NULL;  in pf_insert_src_node()
1335 		if (!rule->max_src_nodes ||  in pf_insert_src_node()
1336 		    rule->src_nodes < rule->max_src_nodes) {  in pf_insert_src_node()
1347 		    rule->max_src_conn_rate.limit,  in pf_insert_src_node()
1348 		    rule->max_src_conn_rate.seconds);  in pf_insert_src_node()
1351 		if (rule->rule_flag & PFRULE_RULESRCTRACK ||  in pf_insert_src_node()
1352 		    rule->rpool.opts & PF_POOL_STICKYADDR) {  in pf_insert_src_node()
1353 			(*sn)->rule.ptr = rule;  in pf_insert_src_node()
1355 			(*sn)->rule.ptr = NULL;  in pf_insert_src_node()
1369 		(*sn)->ruletype = rule->action;  in pf_insert_src_node()
1370 		if ((*sn)->rule.ptr != NULL) {  in pf_insert_src_node()
1371 			(*sn)->rule.ptr->src_nodes++;  in pf_insert_src_node()
1376 		if (rule->max_src_states &&  in pf_insert_src_node()
1377 		    (*sn)->states >= rule->max_src_states) {  in pf_insert_src_node()
1584 	t = state->rule.ptr->timeout[state->timeout];  in pf_state_expires()
1588 	start = state->rule.ptr->timeout[PFTM_ADAPTIVE_START];  in pf_state_expires()
1590 		end = state->rule.ptr->timeout[PFTM_ADAPTIVE_END];  in pf_state_expires()
1591 		states = state->rule.ptr->states;  in pf_state_expires()
1619 			if (cur->rule.ptr != NULL) {  in pf_purge_expired_src_nodes()
1620 				cur->rule.ptr->src_nodes--;  in pf_purge_expired_src_nodes()
1621 				if (cur->rule.ptr->states <= 0 &&  in pf_purge_expired_src_nodes()
1622 				    cur->rule.ptr->max_src_nodes <= 0) {  in pf_purge_expired_src_nodes()
1623 					pf_rm_rule(NULL, cur->rule.ptr);  in pf_purge_expired_src_nodes()
1648 			t = s->rule.ptr->timeout[PFTM_SRC_NODE];  in pf_src_tree_remove_state()
1658 			t = s->rule.ptr->timeout[PFTM_SRC_NODE];  in pf_src_tree_remove_state()
1674 		pf_send_tcp(cur->rule.ptr, cur->state_key->af_lan,  in pf_unlink_state()
1708 	VERIFY(cur->rule.ptr->states > 0);  in pf_free_state()
1709 	if (--cur->rule.ptr->states <= 0 &&  in pf_free_state()
1710 	    cur->rule.ptr->src_nodes <= 0) {  in pf_free_state()
1711 		pf_rm_rule(NULL, cur->rule.ptr);  in pf_free_state()
3230 			k.rule.ptr = r;  in pf_map_addr()
3232 			k.rule.ptr = NULL;  in pf_map_addr()
4289 	struct pf_rule *r = s->rule.ptr;  in pf_set_rt_ifp()
5747 		s->rule.ptr = r;  in pf_test_rule()
6782 		if (pf_insert_state(BOUND_IFACE(s->rule.ptr, kif), gs)) {  in pf_pptp_handler()
6942 			pf_send_tcp((*state)->rule.ptr, pd->af, pd->dst,  in pf_test_state_tcp()
6983 			pf_send_tcp((*state)->rule.ptr, pd->af, &psrc->addr,  in pf_test_state_tcp()
6997 			pf_send_tcp((*state)->rule.ptr, pd->af, pd->dst,  in pf_test_state_tcp()
7002 			pf_send_tcp((*state)->rule.ptr, pd->af, &psrc->addr,  in pf_test_state_tcp()
7367 				pf_send_tcp((*state)->rule.ptr, pd->af,  in pf_test_state_tcp()
7371 				    (*state)->rule.ptr->return_ttl, 1, 0,  in pf_test_state_tcp()
9711 			r = s->rule.ptr;  in pf_test()
9762 			r = s->rule.ptr;  in pf_test()
9802 			r = s->rule.ptr;  in pf_test()
9838 			r = s->rule.ptr;  in pf_test()
9882 				r = s->rule.ptr;  in pf_test()
9917 			r = s->rule.ptr;  in pf_test()
10367 			r = s->rule.ptr;  in pf_test6()
10418 			r = s->rule.ptr;  in pf_test6()
10458 			r = s->rule.ptr;  in pf_test6()
10494 			r = s->rule.ptr;  in pf_test6()
10538 				r = s->rule.ptr;  in pf_test6()
10573 			r = s->rule.ptr;  in pf_test6()
10977 	struct pf_rule *rule = NULL;  in pf_check_compatible_rules()  local
10991 		TAILQ_FOREACH(rule, pf_main_ruleset.rules[i].active.ptr, entries) {  in pf_check_compatible_rules()
10992 			if (rule->anchor == NULL) {  in pf_check_compatible_rules()