xref: /src/sys/external/bsd/ipf/netinet/ip_fil_compat.c

/*	$NetBSD: ip_fil_compat.c,v 1.5 2018/02/08 08:04:45 mrg Exp $	*/

/*
 * Copyright (C) 2002-2012 by Darren Reed.
 *
 * See the IPFILTER.LICENCE file for details on licencing.
 */
#if defined(KERNEL) || defined(_KERNEL)
# undef KERNEL
# undef _KERNEL
# define        KERNEL	1
# define        _KERNEL	1
#endif
#if defined(__osf__)
# define _PROTO_NET_H_
#endif
#include <sys/param.h>
#include <sys/errno.h>
#include <sys/types.h>
#include <sys/time.h>
#include <sys/file.h>
#if __FreeBSD_version >= 220000 && defined(_KERNEL)
# include <sys/fcntl.h>
# include <sys/filio.h>
#else
# include <sys/ioctl.h>
#endif
#if !defined(_KERNEL)
# include <string.h>
# define _KERNEL
# ifdef __OpenBSD__
struct file;
# endif
# include <sys/uio.h>
# undef _KERNEL
#endif
#include <sys/socket.h>
#if (defined(__osf__) || defined(AIX) || defined(__hpux) || defined(__sgi)) && defined(_KERNEL)
# include "radix_ipf_local.h"
# define _RADIX_H_
#endif
#include <net/if.h>
#if defined(__FreeBSD__)
#  include <sys/cdefs.h>
#  include <sys/proc.h>
#endif
#if defined(_KERNEL)
# include <sys/systm.h>
# if !defined(__SVR4) && !defined(__svr4__)
#  include <sys/mbuf.h>
# endif
#endif
#include <netinet/in.h>

#include "netinet/ip_compat.h"
#include "netinet/ip_fil.h"
#include "netinet/ip_pool.h"
#include "netinet/ip_htable.h"
#include "netinet/ip_lookup.h"
#include "netinet/ip_nat.h"
#include "netinet/ip_state.h"
#include "netinet/ip_proxy.h"
#include "netinet/ip_auth.h"
/* END OF INCLUDES */

/*
 * NetBSD has moved to 64bit time_t for all architectures.
 * For some, such as sparc64, there is no change because long is already
 * 64bit, but for others (i386), there is...
 */
#ifdef IPFILTER_COMPAT

# ifdef __NetBSD__
typedef struct timeval_l {
	long	tv_sec;
	long	tv_usec;
} timeval_l_t;
# endif

/* ------------------------------------------------------------------------ */

typedef struct tcpinfo4 {
	u_short		ts_sport;
	u_short		ts_dport;
	tcpdata_t	ts_data[2];
} tcpinfo4_t;

static void ipf_v5tcpinfoto4(tcpinfo_t *, tcpinfo4_t *);

static void ipf_v5tcpinfoto4(tcpinfo_t *, tcpinfo4_t *);

static void
ipf_v5tcpinfoto4(tcpinfo_t *v5, tcpinfo4_t *v4)
{
	v4->ts_sport = v5->ts_sport;
	v4->ts_dport = v5->ts_dport;
	v4->ts_data[0] = v5->ts_data[0];
	v4->ts_data[1] = v5->ts_data[1];
}

typedef struct	fr_ip4	{
	u_32_t	fi_v:4;
	u_32_t	fi_xx:4;
	u_32_t	fi_tos:8;
	u_32_t	fi_ttl:8;
	u_32_t	fi_p:8;
	u_32_t	fi_optmsk;
	i6addr_t fi_src;
	i6addr_t fi_dst;
	u_short	ofi_secmsk;
	u_short	ofi_auth;
	u_32_t	fi_flx;
	u_32_t	fi_tcpmsk;
	u_32_t	fi_res1;
} frip4_t;

typedef struct	frpcmp4	{
	int	frp_cmp;
	u_short	frp_port;
	u_short	frp_top;
} frpcmp4_t;

typedef	struct	frtuc4	{
	u_char	ftu_tcpfm;
	u_char	ftu_tcpf;
	frpcmp4_t	ftu_src;
	frpcmp4_t	ftu_dst;
} frtuc4_t;

typedef	struct	fripf4	{
	frip4_t fri_ip;
	frip4_t fri_mip;

	u_short	fri_icmpm;
	u_short	fri_icmp;

	frtuc4_t	fri_tuc;
	int	fri_satype;
	int	fri_datype;
	int	fri_sifpidx;
	int	fri_difpidx;
} fripf4_t;

typedef struct frdest_4 {
	void		*fd_ifp;
	i6addr_t	ofd_ip6;
	char		fd_ifname[LIFNAMSIZ];
} frdest_4_t;

/* ------------------------------------------------------------------------ */

/* 5.1.0 new release (current)
 * 4.1.34 changed the size of the time structure used for pps
 * 4.1.16 moved the location of fr_flineno
 * 4.1.0 base version
 */
typedef	struct	frentry_4_1_34 {
	ipfmutex_t	fr_lock;
	struct	frentry	*fr_next;
	struct	frentry	**fr_grp;
	struct	ipscan	*fr_isc;
	void	*fr_ifas[4];
	void	*fr_ptr;	/* for use with fr_arg */
	char	*fr_comment;	/* text comment for rule */
	int	fr_ref;		/* reference count - for grouping */
	int	fr_statecnt;	/* state count - for limit rules */
	int	fr_flineno;	/* line number from conf file */
	U_QUAD_T	fr_hits;
	U_QUAD_T	fr_bytes;
	union {
		struct timeval	frp_lastpkt;
		char	frp_bytes[12];
	} fr_lpu;
	int		fr_curpps;
	union	{
		void		*fru_data;
		char		*fru_caddr;
		fripf4_t	*fru_ipf;
		frentfunc_t	fru_func;
	} fr_dun;
	ipfunc_t fr_func; 	/* call this function */
	int	fr_dsize;
	int	fr_pps;
	int	fr_statemax;	/* max reference count */
	u_32_t	fr_type;
	u_32_t	fr_flags;	/* per-rule flags && options (see below) */
	u_32_t	fr_logtag;	/* user defined log tag # */
	u_32_t	fr_collect;	/* collection number */
	u_int	fr_arg;		/* misc. numeric arg for rule */
	u_int	fr_loglevel;	/* syslog log facility + priority */
	u_int	fr_age[2];	/* non-TCP timeouts */
	u_char	fr_v;
	u_char	fr_icode;	/* return ICMP code */
	char	fr_group[FR_GROUPLEN];	/* group to which this rule belongs */
	char	fr_grhead[FR_GROUPLEN];	/* group # which this rule starts */
	ipftag_t fr_nattag;
	char	fr_ifnames[4][LIFNAMSIZ];
	char	fr_isctag[16];
	frdest_4_t fr_tifs[2];	/* "to"/"reply-to" interface */
	frdest_4_t fr_dif;	/* duplicate packet interface */
	u_int	fr_cksum;	/* checksum on filter rules for performance */
} frentry_4_1_34_t;

typedef	struct	frentry_4_1_16 {
	ipfmutex_t	fr_lock;
	struct	frentry	*fr_next;
	struct	frentry	**fr_grp;
	struct	ipscan	*fr_isc;
	void	*fr_ifas[4];
	void	*fr_ptr;
	char	*fr_comment;
	int	fr_ref;
	int	fr_statecnt;
	int	fr_flineno;
	U_QUAD_T	fr_hits;
	U_QUAD_T	fr_bytes;
	union {
#ifdef __NetBSD__
		timeval_l_t	frp_lastpkt;
#else
		struct timeval	frp_lastpkt;
#endif
	} fr_lpu;
	int		fr_curpps;
	union	{
		void		*fru_data;
		char		*fru_caddr;
		fripf4_t	*fru_ipf;
		frentfunc_t	fru_func;
	} fr_dun;
	ipfunc_t fr_func;
	int	fr_dsize;
	int	fr_pps;
	int	fr_statemax;
	u_32_t	fr_type;
	u_32_t	fr_flags;
	u_32_t	fr_logtag;
	u_32_t	fr_collect;
	u_int	fr_arg;
	u_int	fr_loglevel;
	u_int	fr_age[2];
	u_char	fr_v;
	u_char	fr_icode;
	char	fr_group[FR_GROUPLEN];
	char	fr_grhead[FR_GROUPLEN];
	ipftag_t fr_nattag;
	char	fr_ifnames[4][LIFNAMSIZ];
	char	fr_isctag[16];
	frdest_4_t fr_tifs[2];
	frdest_4_t fr_dif;
	u_int	fr_cksum;
} frentry_4_1_16_t;

typedef	struct	frentry_4_1_0 {
	ipfmutex_t	fr_lock;
	struct	frentry	*fr_next;
	struct	frentry	**fr_grp;
	struct	ipscan	*fr_isc;
	void	*fr_ifas[4];
	void	*fr_ptr;
	char	*fr_comment;
	int	fr_ref;
	int	fr_statecnt;
	U_QUAD_T	fr_hits;
	U_QUAD_T	fr_bytes;
	union {
#ifdef __NetBSD__
		timeval_l_t	frp_lastpkt;
#else
		struct timeval	frp_lastpkt;
#endif
	} fr_lpu;
	int		fr_curpps;

	union	{
		void		*fru_data;
		char		*fru_caddr;
		fripf4_t	*fru_ipf;
		frentfunc_t	fru_func;
	} fr_dun;
	/*
	 * Fields after this may not change whilst in the kernel.
	 */
	ipfunc_t fr_func;
	int	fr_dsize;
	int	fr_pps;
	int	fr_statemax;
	int	fr_flineno;
	u_32_t	fr_type;
	u_32_t	fr_flags;
	u_32_t	fr_logtag;
	u_32_t	fr_collect;
	u_int	fr_arg;
	u_int	fr_loglevel;
	u_int	fr_age[2];
	u_char	fr_v;
	u_char	fr_icode;
	char	fr_group[FR_GROUPLEN];
	char	fr_grhead[FR_GROUPLEN];
	ipftag_t fr_nattag;
	char	fr_ifnames[4][LIFNAMSIZ];
	char	fr_isctag[16];
	frdest_4_t fr_tifs[2];
	frdest_4_t fr_dif;
	u_int	fr_cksum;
} frentry_4_1_0_t;

/* ------------------------------------------------------------------------ */

/*
 * 5.1.0  new release (current)
 * 4.1.32 removed both fin_state and fin_nat, added fin_pktnum
 * 4.1.24 added fin_cksum
 * 4.1.23 added fin_exthdr
 * 4.1.11 added fin_ifname
 * 4.1.4  added fin_hbuf
 */
typedef	struct	fr_info_4_1_32 {
	void	*fin_ifp;		/* interface packet is `on' */
	frip4_t	fin_fi;		/* IP Packet summary */
	union	{
		u_short	fid_16[2];	/* TCP/UDP ports, ICMP code/type */
		u_32_t	fid_32;
	} fin_dat;
	int	fin_out;		/* in or out ? 1 == out, 0 == in */
	int	fin_rev;		/* state only: 1 = reverse */
	u_short	fin_hlen;		/* length of IP header in bytes */
	u_char	ofin_tcpf;		/* TCP header flags (SYN, ACK, etc) */
	u_char	fin_icode;		/* ICMP error to return */
	u_32_t	fin_rule;		/* rule # last matched */
	char	fin_group[FR_GROUPLEN];	/* group number, -1 for none */
	struct	frentry *fin_fr;	/* last matching rule */
	void	*fin_dp;		/* start of data past IP header */
	int	fin_dlen;		/* length of data portion of packet */
	int	fin_plen;
	int	fin_ipoff;		/* # bytes from buffer start to hdr */
	u_short	fin_id;			/* IP packet id field */
	u_short	fin_off;
	int	fin_depth;		/* Group nesting depth */
	int	fin_error;		/* Error code to return */
	int	fin_cksum;		/* -1 bad, 1 good, 0 not done */
	u_int	fin_pktnum;
	void	*fin_nattag;
	void	*fin_exthdr;
	ip_t	*ofin_ip;
	mb_t	**fin_mp;		/* pointer to pointer to mbuf */
	mb_t	*fin_m;			/* pointer to mbuf */
#ifdef	MENTAT
	mb_t	*fin_qfm;		/* pointer to mblk where pkt starts */
	void	*fin_qpi;
	char	fin_ifname[LIFNAMSIZ];
#endif
#ifdef	__sgi
	void	*fin_hbuf;
#endif
} fr_info_4_1_32_t;

typedef struct  fr_info_4_1_24 {
	void    *fin_ifp;
	frip4_t fin_fi;
	union   {
		u_short fid_16[2];
		u_32_t  fid_32;
	} fin_dat;
	int     fin_out;
	int     fin_rev;
	u_short fin_hlen;
	u_char  ofin_tcpf;
	u_char  fin_icode;
	u_32_t  fin_rule;
	char    fin_group[FR_GROUPLEN];
	struct  frentry *fin_fr;
	void    *fin_dp;
	int     fin_dlen;
	int     fin_plen;
	int     fin_ipoff;
	u_short fin_id;
	u_short fin_off;
	int     fin_depth;
	int     fin_error;
	int     fin_cksum;
	void	*fin_state;
	void	*fin_nat;
	void    *fin_nattag;
	void    *fin_exthdr;
	ip_t    *ofin_ip;
	mb_t    **fin_mp;
	mb_t    *fin_m;
#ifdef  MENTAT
	mb_t    *fin_qfm;
	void    *fin_qpi;
	char    fin_ifname[LIFNAMSIZ];
#endif
#ifdef  __sgi
	void    *fin_hbuf;
#endif
} fr_info_4_1_24_t;

typedef struct  fr_info_4_1_23 {
	void    *fin_ifp;
	frip4_t fin_fi;
	union   {
		u_short fid_16[2];
		u_32_t  fid_32;
	} fin_dat;
	int     fin_out;
	int     fin_rev;
	u_short fin_hlen;
	u_char  ofin_tcpf;
	u_char  fin_icode;
	u_32_t  fin_rule;
	char    fin_group[FR_GROUPLEN];
	struct  frentry *fin_fr;
	void    *fin_dp;
	int     fin_dlen;
	int     fin_plen;
	int     fin_ipoff;
	u_short fin_id;
	u_short fin_off;
	int     fin_depth;
	int     fin_error;
	void	*fin_state;
	void	*fin_nat;
	void    *fin_nattag;
	void    *fin_exthdr;
	ip_t    *ofin_ip;
	mb_t    **fin_mp;
	mb_t    *fin_m;
#ifdef  MENTAT
	mb_t    *fin_qfm;
	void    *fin_qpi;
	char    fin_ifname[LIFNAMSIZ];
#endif
#ifdef  __sgi
	void    *fin_hbuf;
#endif
} fr_info_4_1_23_t;

typedef struct  fr_info_4_1_11 {
	void    *fin_ifp;
	frip4_t fin_fi;
	union   {
		u_short fid_16[2];
		u_32_t  fid_32;
	} fin_dat;
	int     fin_out;
	int     fin_rev;
	u_short fin_hlen;
	u_char  ofin_tcpf;
	u_char  fin_icode;
	u_32_t  fin_rule;
	char    fin_group[FR_GROUPLEN];
	struct  frentry *fin_fr;
	void    *fin_dp;
	int     fin_dlen;
	int     fin_plen;
	int     fin_ipoff;
	u_short fin_id;
	u_short fin_off;
	int     fin_depth;
	int     fin_error;
	void	*fin_state;
	void	*fin_nat;
	void    *fin_nattag;
	ip_t    *ofin_ip;
	mb_t    **fin_mp;
	mb_t    *fin_m;
#ifdef  MENTAT
	mb_t    *fin_qfm;
	void    *fin_qpi;
	char    fin_ifname[LIFNAMSIZ];
#endif
#ifdef  __sgi
	void    *fin_hbuf;
#endif
} fr_info_4_1_11_t;

/* ------------------------------------------------------------------------ */

typedef	struct	filterstats_4_1 {
	u_long	fr_pass;	/* packets allowed */
	u_long	fr_block;	/* packets denied */
	u_long	fr_nom;		/* packets which don't match any rule */
	u_long	fr_short;	/* packets which are short */
	u_long	fr_ppkl;	/* packets allowed and logged */
	u_long	fr_bpkl;	/* packets denied and logged */
	u_long	fr_npkl;	/* packets unmatched and logged */
	u_long	fr_pkl;		/* packets logged */
	u_long	fr_skip;	/* packets to be logged but buffer full */
	u_long	fr_ret;		/* packets for which a return is sent */
	u_long	fr_acct;	/* packets for which counting was performed */
	u_long	fr_bnfr;	/* bad attempts to allocate fragment state */
	u_long	fr_nfr;		/* new fragment state kept */
	u_long	fr_cfr;		/* add new fragment state but complete pkt */
	u_long	fr_bads;	/* bad attempts to allocate packet state */
	u_long	fr_ads;		/* new packet state kept */
	u_long	fr_chit;	/* cached hit */
	u_long	fr_tcpbad;	/* TCP checksum check failures */
	u_long	fr_pull[2];	/* good and bad pullup attempts */
	u_long	fr_badsrc;	/* source received doesn't match route */
	u_long	fr_badttl;	/* TTL in packet doesn't reach minimum */
	u_long	fr_bad;		/* bad IP packets to the filter */
	u_long	fr_ipv6;	/* IPv6 packets in/out */
	u_long	fr_ppshit;	/* dropped because of pps ceiling */
	u_long	fr_ipud;	/* IP id update failures */
} filterstats_4_1_t;

/*
 * 5.1.0  new release (current)
 * 4.1.33 changed the size of f_locks from IPL_LOGMAX to IPL_LOGSIZE
 */
typedef	struct	friostat_4_1_33	{
	struct	filterstats_4_1	of_st[2];
	struct	frentry	*f_ipf[2][2];
	struct	frentry	*f_acct[2][2];
	struct	frentry	*f_ipf6[2][2];
	struct	frentry	*f_acct6[2][2];
	struct	frentry	*f_auth;
	struct	frgroup	*f_groups[IPL_LOGSIZE][2];
	u_long	f_froute[2];
	u_long	f_ticks;
	int	f_locks[IPL_LOGSIZE];
	size_t	f_kmutex_sz;
	size_t	f_krwlock_sz;
	int	f_defpass;	/* default pass - from fr_pass */
	int	f_active;	/* 1 or 0 - active rule set */
	int	f_running;	/* 1 if running, else 0 */
	int	f_logging;	/* 1 if enabled, else 0 */
	int	f_features;
	char	f_version[32];	/* version string */
} friostat_4_1_33_t;

typedef struct friostat_4_1_0	{
	struct filterstats_4_1 of_st[2];
	struct frentry	*f_ipf[2][2];
	struct frentry	*f_acct[2][2];
	struct frentry	*f_ipf6[2][2];
	struct frentry	*f_acct6[2][2];
	struct frentry	*f_auth;
	struct frgroup	*f_groups[IPL_LOGSIZE][2];
	u_long	f_froute[2];
	u_long	f_ticks;
	int	f_locks[IPL_LOGMAX];
	size_t	f_kmutex_sz;
	size_t	f_krwlock_sz;
	int	f_defpass;
	int	f_active;
	int	f_running;
	int	f_logging;
	int	f_features;
	char	f_version[32];
} friostat_4_1_0_t;

/* ------------------------------------------------------------------------ */

/*
 * 5.1.0  new release (current)
 * 4.1.14 added in_lock
 */
typedef	struct	ipnat_4_1_14	{
	ipfmutex_t	in_lock;
	struct	ipnat	*in_next;		/* NAT rule list next */
	struct	ipnat	*in_rnext;		/* rdr rule hash next */
	struct	ipnat	**in_prnext;		/* prior rdr next ptr */
	struct	ipnat	*in_mnext;		/* map rule hash next */
	struct	ipnat	**in_pmnext;		/* prior map next ptr */
	struct	ipftq	*in_tqehead[2];
	void		*in_ifps[2];
	void		*in_apr;
	char		*in_comment;
	i6addr_t	in_next6;
	u_long		in_space;
	u_long		in_hits;
	u_int		in_use;
	u_int		in_hv;
	int		in_flineno;		/* conf. file line number */
	u_short		in_pnext;
	u_char		in_v;
	u_char		in_xxx;
	/* From here to the end is covered by IPN_CMPSIZ */
	u_32_t		in_flags;
	u_32_t		in_mssclamp;		/* if != 0 clamp MSS to this */
	u_int		in_age[2];
	int		in_redir;		/* see below for values */
	int		in_p;			/* protocol. */
	i6addr_t	in_in[2];
	i6addr_t	in_out[2];
	i6addr_t	in_src[2];
	frtuc4_t	in_tuc;
	u_short		in_port[2];
	u_short		in_ppip;		/* ports per IP. */
	u_short		in_ippip;		/* IP #'s per IP# */
	char		in_ifnames[2][LIFNAMSIZ];
	char		in_plabel[APR_LABELLEN];	/* proxy label. */
	ipftag_t	in_tag;
} ipnat_4_1_14_t;

typedef	struct	ipnat_4_1_0	{
	struct	ipnat	*in_next;
	struct	ipnat	*in_rnext;
	struct	ipnat	**in_prnext;
	struct	ipnat	*in_mnext;
	struct	ipnat	**in_pmnext;
	struct	ipftq	*in_tqehead[2];
	void		*in_ifps[2];
	void		*in_apr;
	char		*in_comment;
	i6addr_t	in_next6;
	u_long		in_space;
	u_long		in_hits;
	u_int		in_use;
	u_int		in_hv;
	int		in_flineno;
	u_short		in_pnext;
	u_char		in_v;
	u_char		in_xxx;
	u_32_t		in_flags;
	u_32_t		in_mssclamp;
	u_int		in_age[2];
	int		in_redir;
	int		in_p;
	i6addr_t	in_in[2];
	i6addr_t	in_out[2];
	i6addr_t	in_src[2];
	frtuc4_t	in_tuc;
	u_short		in_port[2];
	u_short		in_ppip;
	u_short		in_ippip;
	char		in_ifnames[2][LIFNAMSIZ];
	char		in_plabel[APR_LABELLEN];
	ipftag_t	in_tag;
} ipnat_4_1_0_t;

/* ------------------------------------------------------------------------ */

typedef	struct	natlookup_4_1_1 {
	struct	in_addr	onl_inip;
	struct	in_addr	onl_outip;
	struct	in_addr	onl_realip;
	int	nl_flags;
	u_short	nl_inport;
	u_short	nl_outport;
	u_short	nl_realport;
} natlookup_4_1_1_t;

/* ------------------------------------------------------------------------ */

/*
 * 4.1.25 added nat_seqnext (current)
 * 4.1.14 added nat_redir
 * 4.1.3  moved nat_rev
 * 4.1.2  added nat_rev
 */
typedef	struct	nat_4_1_25	{
	ipfmutex_t	nat_lock;
	struct	nat_4_1_25	*nat_next;
	struct	nat_4_1_25	**nat_pnext;
	struct	nat_4_1_25	*nat_hnext[2];
	struct	nat_4_1_25	**nat_phnext[2];
	struct	hostmap	*nat_hm;
	void		*nat_data;
	struct	nat_4_1_25	**nat_me;
	struct	ipstate	*nat_state;
	struct	ap_session	*nat_aps;
	frentry_t	*nat_fr;
	struct	ipnat_4_1_14	*nat_ptr;
	void		*nat_ifps[2];
	void		*nat_sync;
	ipftqent_t	nat_tqe;
	u_32_t		nat_flags;
	u_32_t		nat_sumd[2];
	u_32_t		nat_ipsumd;
	u_32_t		nat_mssclamp;
	i6addr_t	nat_inip6;
	i6addr_t	nat_outip6;
	i6addr_t	nat_oip6;
	U_QUAD_T	nat_pkts[2];
	U_QUAD_T	nat_bytes[2];
	union	{
		udpinfo_t	nat_unu;
		tcpinfo4_t	nat_unt;
		icmpinfo_t	nat_uni;
		greinfo_t	nat_ugre;
	} nat_un;
	u_short		nat_oport;
	u_short		nat_use;
	u_char		nat_p;
	int		nat_dir;
	int		nat_ref;
	int		nat_hv[2];
	char		nat_ifnames[2][LIFNAMSIZ];
	int		nat_rev;
	int		nat_redir;
	u_32_t		nat_seqnext[2];
} nat_4_1_25_t;

typedef	struct	nat_4_1_14	{
	ipfmutex_t	nat_lock;
	struct	nat	*nat_next;
	struct	nat	**nat_pnext;
	struct	nat	*nat_hnext[2];
	struct	nat	**nat_phnext[2];
	struct	hostmap	*nat_hm;
	void		*nat_data;
	struct	nat	**nat_me;
	struct	ipstate	*nat_state;
	struct	ap_session	*nat_aps;
	frentry_t	*nat_fr;
	struct	ipnat	*nat_ptr;
	void		*nat_ifps[2];
	void		*nat_sync;
	ipftqent_t	nat_tqe;
	u_32_t		nat_flags;
	u_32_t		nat_sumd[2];
	u_32_t		nat_ipsumd;
	u_32_t		nat_mssclamp;
	i6addr_t	nat_inip6;
	i6addr_t	nat_outip6;
	i6addr_t	nat_oip6;
	U_QUAD_T	nat_pkts[2];
	U_QUAD_T	nat_bytes[2];
	union	{
		udpinfo_t	nat_unu;
		tcpinfo4_t	nat_unt;
		icmpinfo_t	nat_uni;
		greinfo_t	nat_ugre;
	} nat_un;
	u_short		nat_oport;
	u_short		nat_use;
	u_char		nat_p;
	int		nat_dir;
	int		nat_ref;
	int		nat_hv[2];
	char		nat_ifnames[2][LIFNAMSIZ];
	int		nat_rev;
	int		nat_redir;
} nat_4_1_14_t;

typedef	struct	nat_4_1_3	{
	ipfmutex_t	nat_lock;
	struct	nat	*nat_next;
	struct	nat	**nat_pnext;
	struct	nat	*nat_hnext[2];
	struct	nat	**nat_phnext[2];
	struct	hostmap	*nat_hm;
	void		*nat_data;
	struct	nat	**nat_me;
	struct	ipstate	*nat_state;
	struct	ap_session	*nat_aps;
	frentry_t	*nat_fr;
	struct	ipnat	*nat_ptr;
	void		*nat_ifps[2];
	void		*nat_sync;
	ipftqent_t	nat_tqe;
	u_32_t		nat_flags;
	u_32_t		nat_sumd[2];
	u_32_t		nat_ipsumd;
	u_32_t		nat_mssclamp;
	i6addr_t	nat_inip6;
	i6addr_t	nat_outip6;
	i6addr_t	nat_oip6;
	U_QUAD_T	nat_pkts[2];
	U_QUAD_T	nat_bytes[2];
	union	{
		udpinfo_t	nat_unu;
		tcpinfo4_t	nat_unt;
		icmpinfo_t	nat_uni;
		greinfo_t	nat_ugre;
	} nat_un;
	u_short		nat_oport;
	u_short		nat_use;
	u_char		nat_p;
	int		nat_dir;
	int		nat_ref;
	int		nat_hv[2];
	char		nat_ifnames[2][LIFNAMSIZ];
	int		nat_rev;
} nat_4_1_3_t;



typedef struct  nat_save_4_1_34    {
	void			*ipn_next;
	struct	nat_4_1_25	ipn_nat;
	struct	ipnat_4_1_14	ipn_ipnat;
	struct	frentry_4_1_34 	ipn_fr;
	int			ipn_dsize;
	char			ipn_data[4];
} nat_save_4_1_34_t;

typedef	struct	nat_save_4_1_16	{
	void		*ipn_next;
	nat_4_1_14_t	ipn_nat;
	ipnat_t		ipn_ipnat;
	frentry_4_1_16_t	ipn_fr;
	int		ipn_dsize;
	char		ipn_data[4];
} nat_save_4_1_16_t;

typedef	struct	nat_save_4_1_14	{
	void		*ipn_next;
	nat_4_1_14_t	ipn_nat;
	ipnat_t		ipn_ipnat;
	frentry_4_1_0_t	ipn_fr;
	int		ipn_dsize;
	char		ipn_data[4];
} nat_save_4_1_14_t;

typedef	struct	nat_save_4_1_3	{
	void		*ipn_next;
	nat_4_1_3_t	ipn_nat;
	ipnat_4_1_0_t	ipn_ipnat;
	frentry_4_1_0_t	ipn_fr;
	int		ipn_dsize;
	char		ipn_data[4];
} nat_save_4_1_3_t;

/* ------------------------------------------------------------------------ */

/*
 * 5.1.0  new release (current)
 * 4.1.32 added ns_uncreate
 * 4.1.27 added ns_orphans
 * 4.1.16 added ns_ticks
 */
typedef	struct	natstat_4_1_32	{
	u_long	ns_mapped[2];
	u_long	ns_rules;
	u_long	ns_added;
	u_long	ns_expire;
	u_long	ns_inuse;
	u_long	ns_logged;
	u_long	ns_logfail;
	u_long	ns_memfail;
	u_long	ns_badnat;
	u_long	ns_addtrpnt;
	nat_t	**ns_table[2];
	hostmap_t **ns_maptable;
	ipnat_t	*ns_list;
	void	*ns_apslist;
	u_int	ns_wilds;
	u_int	ns_nattab_sz;
	u_int	ns_nattab_max;
	u_int	ns_rultab_sz;
	u_int	ns_rdrtab_sz;
	u_int	ns_trpntab_sz;
	u_int	ns_hostmap_sz;
	nat_t	*ns_instances;
	hostmap_t *ns_maplist;
	u_long	*ns_bucketlen[2];
	u_long	ns_ticks;
	u_int	ns_orphans;
	u_long	ns_uncreate[2][2];
} natstat_4_1_32_t;

typedef struct  natstat_4_1_27 {
	u_long	ns_mapped[2];
	u_long	ns_rules;
	u_long	ns_added;
	u_long	ns_expire;
	u_long	ns_inuse;
	u_long	ns_logged;
	u_long	ns_logfail;
	u_long	ns_memfail;
	u_long	ns_badnat;
	u_long	ns_addtrpnt;
	nat_t	**ns_table[2];
	hostmap_t **ns_maptable;
	ipnat_t *ns_list;
	void    *ns_apslist;
	u_int   ns_wilds;
	u_int   ns_nattab_sz;
	u_int   ns_nattab_max;
	u_int   ns_rultab_sz;
	u_int   ns_rdrtab_sz;
	u_int   ns_trpntab_sz;
	u_int   ns_hostmap_sz;
	nat_t   *ns_instances;
	hostmap_t *ns_maplist;
	u_long  *ns_bucketlen[2];
	u_long  ns_ticks;
	u_int   ns_orphans;
} natstat_4_1_27_t;

typedef struct  natstat_4_1_16 {
	u_long	ns_mapped[2];
	u_long	ns_rules;
	u_long	ns_added;
	u_long	ns_expire;
	u_long	ns_inuse;
	u_long	ns_logged;
	u_long	ns_logfail;
	u_long	ns_memfail;
	u_long	ns_badnat;
	u_long	ns_addtrpnt;
	nat_t	**ns_table[2];
	hostmap_t **ns_maptable;
	ipnat_t *ns_list;
	void    *ns_apslist;
	u_int   ns_wilds;
	u_int   ns_nattab_sz;
	u_int   ns_nattab_max;
	u_int   ns_rultab_sz;
	u_int   ns_rdrtab_sz;
	u_int   ns_trpntab_sz;
	u_int   ns_hostmap_sz;
	nat_t   *ns_instances;
	hostmap_t *ns_maplist;
	u_long  *ns_bucketlen[2];
	u_long  ns_ticks;
} natstat_4_1_16_t;

typedef struct  natstat_4_1_0 {
	u_long	ns_mapped[2];
	u_long	ns_rules;
	u_long	ns_added;
	u_long	ns_expire;
	u_long	ns_inuse;
	u_long	ns_logged;
	u_long	ns_logfail;
	u_long	ns_memfail;
	u_long	ns_badnat;
	u_long	ns_addtrpnt;
	nat_t	**ns_table[2];
	hostmap_t **ns_maptable;
	ipnat_t *ns_list;
	void    *ns_apslist;
	u_int   ns_wilds;
	u_int   ns_nattab_sz;
	u_int   ns_nattab_max;
	u_int   ns_rultab_sz;
	u_int   ns_rdrtab_sz;
	u_int   ns_trpntab_sz;
	u_int   ns_hostmap_sz;
	nat_t   *ns_instances;
	hostmap_t *ns_maplist;
	u_long  *ns_bucketlen[2];
} natstat_4_1_0_t;

/* ------------------------------------------------------------------------ */

/*
 * 5.1.0  new release (current)
 * 4.1.32 fra_info:removed both fin_state & fin_nat, added fin_pktnum
 * 4.1.29 added fra_flx
 * 4.1.24 fra_info:added fin_cksum
 * 4.1.23 fra_info:added fin_exthdr
 * 4.1.11 fra_info:added fin_ifname
 * 4.1.4  fra_info:added fin_hbuf
 */

typedef struct  frauth_4_1_32 {
	int	fra_age;
	int	fra_len;
	int	fra_index;
	u_32_t	fra_pass;
	fr_info_4_1_32_t	fra_info;
	char	*fra_buf;
	u_32_t	fra_flx;
#ifdef	MENTAT
	queue_t	*fra_q;
	mb_t	*fra_m;
#endif
} frauth_4_1_32_t;

typedef struct  frauth_4_1_29 {
	int	fra_age;
	int	fra_len;
	int	fra_index;
	u_32_t	fra_pass;
	fr_info_4_1_24_t	fra_info;
	char	*fra_buf;
	u_32_t	fra_flx;
#ifdef	MENTAT
	queue_t	*fra_q;
	mb_t	*fra_m;
#endif
} frauth_4_1_29_t;

typedef struct  frauth_4_1_24 {
	int	fra_age;
	int	fra_len;
	int	fra_index;
	u_32_t	fra_pass;
	fr_info_4_1_24_t	fra_info;
	char	*fra_buf;
#ifdef	MENTAT
	queue_t	*fra_q;
	mb_t	*fra_m;
#endif
} frauth_4_1_24_t;

typedef struct  frauth_4_1_23 {
	int	fra_age;
	int	fra_len;
	int	fra_index;
	u_32_t	fra_pass;
	fr_info_4_1_23_t	fra_info;
	char	*fra_buf;
#ifdef	MENTAT
	queue_t	*fra_q;
	mb_t	*fra_m;
#endif
} frauth_4_1_23_t;

typedef struct  frauth_4_1_11 {
	int	fra_age;
	int	fra_len;
	int	fra_index;
	u_32_t	fra_pass;
	fr_info_4_1_11_t	fra_info;
	char	*fra_buf;
#ifdef	MENTAT
	queue_t	*fra_q;
	mb_t	*fra_m;
#endif
} frauth_4_1_11_t;

/* ------------------------------------------------------------------------ */

/*
 * 5.1.0  new release (current)
 * 4.1.16 removed is_nat
 */
typedef struct ipstate_4_1_16 {
	ipfmutex_t	is_lock;
	struct	ipstate	*is_next;
	struct	ipstate	**is_pnext;
	struct	ipstate	*is_hnext;
	struct	ipstate	**is_phnext;
	struct	ipstate	**is_me;
	void		*is_ifp[4];
	void		*is_sync;
	frentry_t	*is_rule;
	struct	ipftq	*is_tqehead[2];
	struct	ipscan	*is_isc;
	U_QUAD_T	is_pkts[4];
	U_QUAD_T	is_bytes[4];
	U_QUAD_T	is_icmppkts[4];
	struct	ipftqent is_sti;
	u_int	is_frage[2];
	int	is_ref;			/* reference count */
	int	is_isninc[2];
	u_short	is_sumd[2];
	i6addr_t	is_src;
	i6addr_t	is_dst;
	u_int	is_pass;
	u_char	is_p;			/* Protocol */
	u_char	is_v;
	u_32_t	is_hv;
	u_32_t	is_tag;
	u_32_t	is_opt[2];		/* packet options set */
	u_32_t	is_optmsk[2];		/*    "      "    mask */
	u_short	is_sec;			/* security options set */
	u_short	is_secmsk;		/*    "        "    mask */
	u_short	is_auth;		/* authentication options set */
	u_short	is_authmsk;		/*    "              "    mask */
	union {
		icmpinfo_t	is_ics;
		tcpinfo4_t	is_ts;
		udpinfo_t	is_us;
		greinfo_t	is_ug;
	} is_ps;
	u_32_t	is_flags;
	int	is_flx[2][2];
	u_32_t	is_rulen;		/* rule number when created */
	u_32_t	is_s0[2];
	u_short	is_smsk[2];
	char	is_group[FR_GROUPLEN];
	char	is_sbuf[2][16];
	char	is_ifname[4][LIFNAMSIZ];
} ipstate_4_1_16_t;

typedef struct ipstate_4_1_0 {
	ipfmutex_t	is_lock;
	struct	ipstate	*is_next;
	struct	ipstate	**is_pnext;
	struct	ipstate	*is_hnext;
	struct	ipstate	**is_phnext;
	struct	ipstate	**is_me;
	void		*is_ifp[4];
	void		*is_sync;
	void		*is_nat[2];
	frentry_t	*is_rule;
	struct	ipftq	*is_tqehead[2];
	struct	ipscan	*is_isc;
	U_QUAD_T	is_pkts[4];
	U_QUAD_T	is_bytes[4];
	U_QUAD_T	is_icmppkts[4];
	struct	ipftqent is_sti;
	u_int	is_frage[2];
	int	is_ref;
	int	is_isninc[2];
	u_short	is_sumd[2];
	i6addr_t	is_src;
	i6addr_t	is_dst;
	u_int	is_pass;
	u_char	is_p;
	u_char	is_v;
	u_32_t	is_hv;
	u_32_t	is_tag;
	u_32_t	is_opt[2];
	u_32_t	is_optmsk[2];
	u_short	is_sec;
	u_short	is_secmsk;
	u_short	is_auth;
	u_short	is_authmsk;
	union {
		icmpinfo_t	is_ics;
		tcpinfo4_t	is_ts;
		udpinfo_t	is_us;
		greinfo_t	is_ug;
	} is_ps;
	u_32_t	is_flags;
	int	is_flx[2][2];
	u_32_t	is_rulen;
	u_32_t	is_s0[2];
	u_short	is_smsk[2];
	char	is_group[FR_GROUPLEN];
	char	is_sbuf[2][16];
	char	is_ifname[4][LIFNAMSIZ];
} ipstate_4_1_0_t;

typedef	struct	ipstate_save_4_1_34	{
	void	*ips_next;
	struct	ipstate_4_1_16	ips_is;
	struct	frentry_4_1_34	ips_fr;
} ipstate_save_4_1_34_t;

typedef	struct	ipstate_save_4_1_16	{
	void		*ips_next;
	ipstate_4_1_0_t	ips_is;
	frentry_4_1_16_t	ips_fr;
} ipstate_save_4_1_16_t;

typedef	struct	ipstate_save_4_1_0	{
	void		*ips_next;
	ipstate_4_1_0_t	ips_is;
	frentry_4_1_0_t	ips_fr;
} ipstate_save_4_1_0_t;

/* ------------------------------------------------------------------------ */

/*
 * 5.1.0  new release (current)
 * 4.1.21 added iss_tcptab
 */
typedef	struct	ips_stat_4_1_21 {
	u_long	iss_hits;
	u_long	iss_miss;
	u_long	iss_max;
	u_long	iss_maxref;
	u_long	iss_tcp;
	u_long	iss_udp;
	u_long	iss_icmp;
	u_long	iss_nomem;
	u_long	iss_expire;
	u_long	iss_fin;
	u_long	iss_active;
	u_long	iss_logged;
	u_long	iss_logfail;
	u_long	iss_inuse;
	u_long	iss_wild;
	u_long	iss_killed;
	u_long	iss_ticks;
	u_long	iss_bucketfull;
	int	iss_statesize;
	int	iss_statemax;
	ipstate_t **iss_table;
	ipstate_t *iss_list;
	u_long	*iss_bucketlen;
	ipftq_t	*iss_tcptab;
} ips_stat_4_1_21_t;

typedef	struct	ips_stat_4_1_0 {
	u_long	iss_hits;
	u_long	iss_miss;
	u_long	iss_max;
	u_long	iss_maxref;
	u_long	iss_tcp;
	u_long	iss_udp;
	u_long	iss_icmp;
	u_long	iss_nomem;
	u_long	iss_expire;
	u_long	iss_fin;
	u_long	iss_active;
	u_long	iss_logged;
	u_long	iss_logfail;
	u_long	iss_inuse;
	u_long	iss_wild;
	u_long	iss_killed;
	u_long	iss_ticks;
	u_long	iss_bucketfull;
	int	iss_statesize;
	int	iss_statemax;
	ipstate_t **iss_table;
	ipstate_t *iss_list;
	u_long	*iss_bucketlen;
} ips_stat_4_1_0_t;

/* ------------------------------------------------------------------------ */
static int ipf_addfrstr(char *, int, char *, int);
static void ipf_v4iptov5(frip4_t *, fr_ip_t *);
static void ipf_v5iptov4(fr_ip_t *, frip4_t *);
static void ipfv4tuctov5(frtuc4_t *, frtuc_t *);
static void ipfv5tuctov4(frtuc_t *, frtuc4_t *);
static int ipf_v4fripftov5(fripf4_t *, char *);
static void ipf_v5fripftov4(fripf_t *, fripf4_t *);
static int fr_frflags4to5(u_32_t);
static int fr_frflags5to4(u_32_t);

typedef	struct	ipfrstat_4_1_1 {
	u_long	ifs_exists;	/* add & already exists */
	u_long	ifs_nomem;
	u_long	ifs_new;
	u_long	ifs_hits;
	u_long	ifs_expire;
	u_long	ifs_inuse;
	u_long	ifs_retrans0;
	u_long	ifs_short;
	struct	ipfr	**ifs_table;
	struct	ipfr	**ifs_nattab;
} ipfrstat_4_1_1_t;

/* ------------------------------------------------------------------------ */
static int ipf_addfrstr(char *, int, char *, int);
static void ipf_v4iptov5(frip4_t *, fr_ip_t *);
static void ipf_v5iptov4(fr_ip_t *, frip4_t *);
static void ipfv4tuctov5(frtuc4_t *, frtuc_t *);
static void ipfv5tuctov4(frtuc_t *, frtuc4_t *);
static int ipf_v4fripftov5(fripf4_t *, char *);
static void ipf_v5fripftov4(fripf_t *, fripf4_t *);
static int fr_frflags4to5(u_32_t);
static int fr_frflags5to4(u_32_t);

static void friostat_current_to_4_1_0(void *, friostat_4_1_0_t *, int);
static void friostat_current_to_4_1_33(void *, friostat_4_1_33_t *, int);
static void ipstate_current_to_4_1_0(void *, ipstate_4_1_0_t *);
static void ipstate_current_to_4_1_16(void *, ipstate_4_1_16_t *);
static void ipnat_current_to_4_1_0(void *, ipnat_4_1_0_t *);
static void ipnat_current_to_4_1_14(void *, ipnat_4_1_14_t *);
static void frauth_current_to_4_1_11(void *, frauth_4_1_11_t *);
static void frauth_current_to_4_1_23(void *, frauth_4_1_23_t *);
static void frauth_current_to_4_1_24(void *, frauth_4_1_24_t *);
static void frauth_current_to_4_1_29(void *, frauth_4_1_29_t *);
static void frentry_current_to_4_1_0(void *, frentry_4_1_0_t *);
static void frentry_current_to_4_1_16(void *, frentry_4_1_16_t *);
static void frentry_current_to_4_1_34(void *, frentry_4_1_34_t *);
static void fr_info_current_to_4_1_11(void *, fr_info_4_1_11_t *);
static void fr_info_current_to_4_1_23(void *, fr_info_4_1_23_t *);
static void fr_info_current_to_4_1_24(void *, fr_info_4_1_24_t *);
static void nat_save_current_to_4_1_3(void *, nat_save_4_1_3_t *);
static void nat_save_current_to_4_1_14(void *, nat_save_4_1_14_t *);
static void nat_save_current_to_4_1_16(void *, nat_save_4_1_16_t *);
static void ipstate_save_current_to_4_1_0(void *, ipstate_save_4_1_0_t *);
static void ipstate_save_current_to_4_1_16(void *, ipstate_save_4_1_16_t *);
static void ips_stat_current_to_4_1_0(void *, ips_stat_4_1_0_t *);
static void ips_stat_current_to_4_1_21(void *, ips_stat_4_1_21_t *);
static void natstat_current_to_4_1_0(void *, natstat_4_1_0_t *);
static void natstat_current_to_4_1_16(void *, natstat_4_1_16_t *);
static void natstat_current_to_4_1_27(void *, natstat_4_1_27_t *);
static void natstat_current_to_4_1_32(void *, natstat_4_1_32_t *);
static void nat_current_to_4_1_3(void *, nat_4_1_3_t *);
static void nat_current_to_4_1_14(void *, nat_4_1_14_t *);
static void nat_current_to_4_1_25(void *, nat_4_1_25_t *);

static void friostat_4_1_0_to_current(friostat_4_1_0_t *, void *);
static void friostat_4_1_33_to_current(friostat_4_1_33_t *, void *);
static void ipnat_4_1_0_to_current(ipnat_4_1_0_t *, void *, int);
static void ipnat_4_1_14_to_current(ipnat_4_1_14_t *, void *, int);
static void frauth_4_1_11_to_current(frauth_4_1_11_t *, void *);
static void frauth_4_1_23_to_current(frauth_4_1_23_t *, void *);
static void frauth_4_1_24_to_current(frauth_4_1_24_t *, void *);
static void frauth_4_1_29_to_current(frauth_4_1_29_t *, void *);
static void frauth_4_1_32_to_current(frauth_4_1_32_t *, void *);
static void frentry_4_1_0_to_current(ipf_main_softc_t *, frentry_4_1_0_t *, void *, int);
static void frentry_4_1_16_to_current(ipf_main_softc_t *, frentry_4_1_16_t *, void *, int);
static void frentry_4_1_34_to_current(ipf_main_softc_t *, frentry_4_1_34_t *, void *, int);
static void fr_info_4_1_11_to_current(fr_info_4_1_11_t *, void *);
static void fr_info_4_1_23_to_current(fr_info_4_1_23_t *, void *);
static void fr_info_4_1_24_to_current(fr_info_4_1_24_t *, void *);
static void fr_info_4_1_32_to_current(fr_info_4_1_32_t *, void *);
static void nat_save_4_1_3_to_current(ipf_main_softc_t *, nat_save_4_1_3_t *, void *);
static void nat_save_4_1_14_to_current(ipf_main_softc_t *, nat_save_4_1_14_t *, void *);
static void nat_save_4_1_16_to_current(ipf_main_softc_t *, nat_save_4_1_16_t *, void *);

/* ------------------------------------------------------------------------ */
/* In this section is a series of short routines that deal with translating */
/* the smaller data structures used above as their internal changes make    */
/* them inappropriate for simple assignment.                                */
/* ------------------------------------------------------------------------ */


static int
ipf_addfrstr(char *names, int namelen, char *str, int maxlen)
{
	char *t;
	int i;

	for (i = maxlen, t = str; (*t != '\0') && (i > 0); i--) {
		names[namelen++] = *t++;
	}
	names[namelen++] = '\0';
	return namelen;
}


static void
ipf_v4iptov5(frip4_t *v4, fr_ip_t *v5)
{
	v5->fi_v = v4->fi_v;
	v5->fi_p = v4->fi_p;
	v5->fi_xx = v4->fi_xx;
	v5->fi_tos = v4->fi_tos;
	v5->fi_ttl = v4->fi_ttl;
	v5->fi_p = v4->fi_p;
	v5->fi_optmsk = v4->fi_optmsk;
	v5->fi_src = v4->fi_src;
	v5->fi_dst = v4->fi_dst;
	v5->fi_secmsk = v4->ofi_secmsk;
	v5->fi_auth = v4->ofi_auth;
	v5->fi_flx = v4->fi_flx;
	v5->fi_tcpmsk = v4->fi_tcpmsk;
}

static void
ipf_v5iptov4(fr_ip_t *v5, frip4_t *v4)
{
	v4->fi_v = v5->fi_v;
	v4->fi_p = v5->fi_p;
	v4->fi_xx = v5->fi_xx;
	v4->fi_tos = v5->fi_tos;
	v4->fi_ttl = v5->fi_ttl;
	v4->fi_p = v5->fi_p;
	v4->fi_optmsk = v5->fi_optmsk;
	v4->fi_src = v5->fi_src;
	v4->fi_dst = v5->fi_dst;
	v4->ofi_secmsk = v5->fi_secmsk;
	v4->ofi_auth = v5->fi_auth;
	v4->fi_flx = v5->fi_flx;
	v4->fi_tcpmsk = v5->fi_tcpmsk;
}


static void
ipfv4tuctov5(frtuc4_t *v4, frtuc_t *v5)
{
	v5->ftu_src.frp_cmp = v4->ftu_src.frp_cmp;
	v5->ftu_src.frp_port = v4->ftu_src.frp_port;
	v5->ftu_src.frp_top = v4->ftu_src.frp_top;
	v5->ftu_dst.frp_cmp = v4->ftu_dst.frp_cmp;
	v5->ftu_dst.frp_port = v4->ftu_dst.frp_port;
	v5->ftu_dst.frp_top = v4->ftu_dst.frp_top;
}


static void
ipfv5tuctov4(frtuc_t *v5, frtuc4_t *v4)
{
	v4->ftu_src.frp_cmp = v5->ftu_src.frp_cmp;
	v4->ftu_src.frp_port = v5->ftu_src.frp_port;
	v4->ftu_src.frp_top = v5->ftu_src.frp_top;
	v4->ftu_dst.frp_cmp = v5->ftu_dst.frp_cmp;
	v4->ftu_dst.frp_port = v5->ftu_dst.frp_port;
	v4->ftu_dst.frp_top = v5->ftu_dst.frp_top;
}


static int
ipf_v4fripftov5(fripf4_t *frp4, char *dst)
{
	fripf_t *frp;

	frp = (fripf_t *)dst;

	ipf_v4iptov5(&frp4->fri_ip, &frp->fri_ip);
	ipf_v4iptov5(&frp4->fri_mip, &frp->fri_mip);
	frp->fri_icmpm = frp4->fri_icmpm;
	frp->fri_icmp = frp4->fri_icmp;
	frp->fri_tuc.ftu_tcpfm = frp4->fri_tuc.ftu_tcpfm;
	frp->fri_tuc.ftu_tcpf = frp4->fri_tuc.ftu_tcpf;
	ipfv4tuctov5(&frp4->fri_tuc, &frp->fri_tuc);
	frp->fri_satype = frp4->fri_satype;
	frp->fri_datype = frp4->fri_datype;
	frp->fri_sifpidx = frp4->fri_sifpidx;
	frp->fri_difpidx = frp4->fri_difpidx;
	return 0;
}


static void
ipf_v5fripftov4(fripf_t *frp, fripf4_t *frp4)
{

	ipf_v5iptov4(&frp->fri_ip, &frp4->fri_ip);
	ipf_v5iptov4(&frp->fri_mip, &frp4->fri_mip);
	frp4->fri_icmpm = frp->fri_icmpm;
	frp4->fri_icmp = frp->fri_icmp;
	frp4->fri_tuc.ftu_tcpfm = frp->fri_tuc.ftu_tcpfm;
	frp4->fri_tuc.ftu_tcpf = frp->fri_tuc.ftu_tcpf;
	ipfv5tuctov4(&frp->fri_tuc, &frp4->fri_tuc);
	frp4->fri_satype = frp->fri_satype;
	frp4->fri_datype = frp->fri_datype;
	frp4->fri_sifpidx = frp->fri_sifpidx;
	frp4->fri_difpidx = frp->fri_difpidx;
}


/* ------------------------------------------------------------------------ */
/* ipf_in_compat is the first of two service routines. It is responsible for*/
/* converting data structures from user space into what's required by the   */
/* kernel module.                                                           */
/* ------------------------------------------------------------------------ */
int
ipf_in_compat(ipf_main_softc_t *softc, ipfobj_t *obj, void *ptr, int size)
{
	int error;
	int sz;

	IPFERROR(140000);
	error = EINVAL;

	switch (obj->ipfo_type)
	{
	default :
		break;

	case IPFOBJ_FRENTRY :
		if (obj->ipfo_rev >= 4013400) {
			frentry_4_1_34_t *old;

			KMALLOC(old, frentry_4_1_34_t *);
			if (old == NULL) {
				IPFERROR(140001);
				error = ENOMEM;
				break;
			}
			error = COPYIN(obj->ipfo_ptr, old, sizeof(*old));
			if (error == 0) {
				if (old->fr_type != FR_T_NONE &&
				    old->fr_type != FR_T_IPF) {
					IPFERROR(140002);
					error = EINVAL;
					KFREE(old);
					break;
				}
				frentry_4_1_34_to_current(softc, old,
							  ptr, size);
			} else {
				IPFERROR(140003);
			}
			KFREE(old);
		} else if (obj->ipfo_rev >= 4011600) {
			frentry_4_1_16_t *old;

			KMALLOC(old, frentry_4_1_16_t *);
			if (old == NULL) {
				IPFERROR(140004);
				error = ENOMEM;
				break;
			}
			error = COPYIN(obj->ipfo_ptr, old, sizeof(*old));
			if (error == 0) {
				if (old->fr_type != FR_T_NONE &&
				    old->fr_type != FR_T_IPF) {
					IPFERROR(140005);
					error = EINVAL;
					KFREE(old);
					break;
				}
				frentry_4_1_16_to_current(softc, old,
							  ptr, size);
			} else {
				IPFERROR(140006);
			}
			KFREE(old);
		} else {
			frentry_4_1_0_t *old;

			KMALLOC(old, frentry_4_1_0_t *);
			if (old == NULL) {
				IPFERROR(140007);
				error = ENOMEM;
				break;
			}
			error = COPYIN(obj->ipfo_ptr, old, sizeof(*old));
			if (error == 0) {
				if (old->fr_type != FR_T_NONE &&
				    old->fr_type != FR_T_IPF) {
					IPFERROR(140008);
					error = EINVAL;
					KFREE(old);
					break;
				}
				frentry_4_1_0_to_current(softc, old, ptr, size);
			} else {
				IPFERROR(140009);
			}
			KFREE(old);
		}
		break;

	case IPFOBJ_IPFSTAT :
		if (obj->ipfo_rev >= 4013300) {
			friostat_4_1_33_t *old;

			KMALLOC(old, friostat_4_1_33_t *);
			if (old == NULL) {
				IPFERROR(140010);
				error = ENOMEM;
				break;
			}
			error = COPYIN(obj->ipfo_ptr, old, sizeof(*old));
			if (error == 0) {
				friostat_4_1_33_to_current(old, ptr);
			} else {
				IPFERROR(140011);
			}
		} else {
			friostat_4_1_0_t *old;

			KMALLOC(old, friostat_4_1_0_t *);
			if (old == NULL) {
				IPFERROR(140012);
				error = ENOMEM;
				break;
			}
			error = COPYIN(obj->ipfo_ptr, old, sizeof(*old));
			if (error == 0) {
				friostat_4_1_0_to_current(old, ptr);
			} else {
				IPFERROR(140013);
			}
		}
		break;

	case IPFOBJ_IPFINFO :	/* unused */
		break;

	case IPFOBJ_IPNAT :
		if (obj->ipfo_rev >= 4011400) {
			ipnat_4_1_14_t *old;

			KMALLOC(old, ipnat_4_1_14_t *);
			if (old == NULL) {
				IPFERROR(140014);
				error = ENOMEM;
				break;
			}
			error = COPYIN(obj->ipfo_ptr, old, sizeof(*old));
			if (error == 0) {
				ipnat_4_1_14_to_current(old, ptr, size);
			} else {
				IPFERROR(140015);
			}
			KFREE(old);
		} else {
			ipnat_4_1_0_t *old;

			KMALLOC(old, ipnat_4_1_0_t *);
			if (old == NULL) {
				IPFERROR(140016);
				error = ENOMEM;
				break;
			}
			error = COPYIN(obj->ipfo_ptr, old, sizeof(*old));
			if (error == 0) {
				ipnat_4_1_0_to_current(old, ptr, size);
			} else {
				IPFERROR(140017);
			}
			KFREE(old);
		}
		break;

	case IPFOBJ_NATSTAT :
		/*
		 * Statistics are not copied in.
		 */
		break;

	case IPFOBJ_NATSAVE :
		if (obj->ipfo_rev >= 4011600) {
			nat_save_4_1_16_t *old16;

			KMALLOC(old16, nat_save_4_1_16_t *);
			if (old16 == NULL) {
				IPFERROR(140018);
				error = ENOMEM;
				break;
			}
			error = COPYIN(obj->ipfo_ptr, old16, sizeof(*old16));
			if (error == 0) {
				nat_save_4_1_16_to_current(softc, old16, ptr);
			} else {
				IPFERROR(140019);
			}
			KFREE(old16);
		} else if (obj->ipfo_rev >= 4011400) {
			nat_save_4_1_14_t *old14;

			KMALLOC(old14, nat_save_4_1_14_t *);
			if (old14 == NULL) {
				IPFERROR(140020);
				error = ENOMEM;
				break;
			}
			error = COPYIN(obj->ipfo_ptr, old14, sizeof(*old14));
			if (error == 0) {
				nat_save_4_1_14_to_current(softc, old14, ptr);
			} else {
				IPFERROR(140021);
			}
			KFREE(old14);
		} else if (obj->ipfo_rev >= 4010300) {
			nat_save_4_1_3_t *old3;

			KMALLOC(old3, nat_save_4_1_3_t *);
			if (old3 == NULL) {
				IPFERROR(140022);
				error = ENOMEM;
				break;
			}
			error = COPYIN(obj->ipfo_ptr, old3, sizeof(*old3));
			if (error == 0) {
				nat_save_4_1_3_to_current(softc, old3, ptr);
			} else {
				IPFERROR(140023);
			}
			KFREE(old3);
		}
		break;

	case IPFOBJ_STATESAVE :
		if (obj->ipfo_rev >= 4013400) {
			ipstate_save_4_1_34_t *old;

			KMALLOC(old, ipstate_save_4_1_34_t *);
			if (old == NULL) {
				IPFERROR(140024);
				error = ENOMEM;
				break;
			}
			error = COPYIN(obj->ipfo_ptr, old, sizeof(*old));
			if (error != 0) {
				IPFERROR(140025);
			}
			KFREE(old);
		} else if (obj->ipfo_rev >= 4011600) {
			ipstate_save_4_1_16_t *old;

			KMALLOC(old, ipstate_save_4_1_16_t *);
			if (old == NULL) {
				IPFERROR(140026);
				error = ENOMEM;
				break;
			}
			error = COPYIN(obj->ipfo_ptr, old, sizeof(*old));
			if (error != 0) {
				IPFERROR(140027);
			}
			KFREE(old);
		} else {
			ipstate_save_4_1_0_t *old;

			KMALLOC(old, ipstate_save_4_1_0_t *);
			if (old == NULL) {
				IPFERROR(140028);
				error = ENOMEM;
				break;
			}
			error = COPYIN(obj->ipfo_ptr, old, sizeof(*old));
			if (error != 0) {
				IPFERROR(140029);
			}
			KFREE(old);
		}
		break;

	case IPFOBJ_IPSTATE :
		/*
		 * This structure is not copied in by itself.
		 */
		break;

	case IPFOBJ_STATESTAT :
		/*
		 * Statistics are not copied in.
		 */
		break;

	case IPFOBJ_FRAUTH :
		if (obj->ipfo_rev >= 4013200) {
			frauth_4_1_32_t *old32;

			KMALLOC(old32, frauth_4_1_32_t *);
			if (old32 == NULL) {
				IPFERROR(140030);
				error = ENOMEM;
				break;
			}
			error = COPYIN(obj->ipfo_ptr, old32, sizeof(*old32));
			if (error == 0) {
				frauth_4_1_32_to_current(old32, ptr);
			} else {
				IPFERROR(140031);
			}
			KFREE(old32);
		} else if (obj->ipfo_rev >= 4012900) {
			frauth_4_1_29_t *old29;

			KMALLOC(old29, frauth_4_1_29_t *);
			if (old29 == NULL) {
				IPFERROR(140032);
				error = ENOMEM;
				break;
			}
			error = COPYIN(obj->ipfo_ptr, old29, sizeof(*old29));
			if (error == 0) {
				frauth_4_1_29_to_current(old29, ptr);
			} else {
				IPFERROR(140033);
			}
			KFREE(old29);
		} else if (obj->ipfo_rev >= 4012400) {
			frauth_4_1_24_t *old24;

			KMALLOC(old24, frauth_4_1_24_t *);
			if (old24 == NULL) {
				IPFERROR(140034);
				error = ENOMEM;
				break;
			}
			error = COPYIN(obj->ipfo_ptr, old24, sizeof(*old24));
			if (error == 0) {
				frauth_4_1_24_to_current(old24, ptr);
			} else {
				IPFERROR(140035);
			}
			KFREE(old24);
		} else if (obj->ipfo_rev >= 4012300) {
			frauth_4_1_23_t *old23;

			KMALLOC(old23, frauth_4_1_23_t *);
			if (old23 == NULL) {
				IPFERROR(140036);
				error = ENOMEM;
				break;
			}
			error = COPYIN(obj->ipfo_ptr, old23, sizeof(*old23));
			if (error == 0)
				frauth_4_1_23_to_current(old23, ptr);
			KFREE(old23);
		} else if (obj->ipfo_rev >= 4011100) {
			frauth_4_1_11_t *old11;

			KMALLOC(old11, frauth_4_1_11_t *);
			if (old11 == NULL) {
				IPFERROR(140037);
				error = ENOMEM;
				break;
			}
			error = COPYIN(obj->ipfo_ptr, old11, sizeof(*old11));
			if (error == 0) {
				frauth_4_1_11_to_current(old11, ptr);
			} else {
				IPFERROR(140038);
			}
			KFREE(old11);
		}
		break;

	case IPFOBJ_NAT :
		if (obj->ipfo_rev >= 4011400) {
			sz = sizeof(nat_4_1_14_t);
		} else if (obj->ipfo_rev >= 4010300) {
			sz = sizeof(nat_4_1_3_t);
		} else {
			break;
		}
		bzero(ptr, sizeof(nat_t));
		error = COPYIN(obj->ipfo_ptr, ptr, sz);
		if (error != 0) {
			IPFERROR(140039);
		}
		break;

	case IPFOBJ_FRIPF :
		if (obj->ipfo_rev < 5000000) {
			fripf4_t *old;

			KMALLOC(old, fripf4_t *);
			if (old == NULL) {
				IPFERROR(140040);
				error = ENOMEM;
				break;
			}
			error = COPYIN(obj->ipfo_ptr, old, sizeof(*old));
			if (error == 0) {
				ipf_v4fripftov5(old, ptr);
			} else {
				IPFERROR(140041);
			}
			KFREE(old);
		}
		break;
	}

	return error;
}
/* ------------------------------------------------------------------------ */


/*
 * flags is v4 flags, returns v5 flags.
 */
static int
fr_frflags4to5(u_32_t flags)
{
	u_32_t nflags = 0;

	switch (flags & 0xf) {
	case 0x0 :
		nflags |= FR_CALL;
		break;
	case 0x1 :
		nflags |= FR_BLOCK;
		break;
	case 0x2 :
		nflags |= FR_PASS;
		break;
	case 0x3 :
		nflags |= FR_AUTH;
		break;
	case 0x4 :
		nflags |= FR_PREAUTH;
		break;
	case 0x5 :
		nflags |= FR_ACCOUNT;
		break;
	case 0x6 :
		nflags |= FR_SKIP;
		break;
	default :
		break;
	}

	if (flags & 0x00010)
		nflags |= FR_LOG;
	if (flags & 0x00020)
		nflags |= FR_CALLNOW;
	if (flags & 0x00080)
		nflags |= FR_NOTSRCIP;
	if (flags & 0x00040)
		nflags |= FR_NOTDSTIP;
	if (flags & 0x00100)
		nflags |= FR_QUICK;
	if (flags & 0x00200)
		nflags |= FR_KEEPFRAG;
	if (flags & 0x00400)
		nflags |= FR_KEEPSTATE;
	if (flags & 0x00800)
		nflags |= FR_FASTROUTE;
	if (flags & 0x01000)
		nflags |= FR_RETRST;
	if (flags & 0x02000)
		nflags |= FR_RETICMP;
	if (flags & 0x03000)
		nflags |= FR_FAKEICMP;
	if (flags & 0x04000)
		nflags |= FR_OUTQUE;
	if (flags & 0x08000)
		nflags |= FR_INQUE;
	if (flags & 0x10000)
		nflags |= FR_LOGBODY;
	if (flags & 0x20000)
		nflags |= FR_LOGFIRST;
	if (flags & 0x40000)
		nflags |= FR_LOGORBLOCK;
	if (flags & 0x100000)
		nflags |= FR_FRSTRICT;
	if (flags & 0x200000)
		nflags |= FR_STSTRICT;
	if (flags & 0x400000)
		nflags |= FR_NEWISN;
	if (flags & 0x800000)
		nflags |= FR_NOICMPERR;
	if (flags & 0x1000000)
		nflags |= FR_STATESYNC;
	if (flags & 0x8000000)
		nflags |= FR_NOMATCH;
	if (flags & 0x40000000)
		nflags |= FR_COPIED;
	if (flags & 0x80000000)
		nflags |= FR_INACTIVE;

	return nflags;
}

static void
frentry_4_1_34_to_current(ipf_main_softc_t *softc, frentry_4_1_34_t *old,
    void *current, int size)
{
	frentry_t *fr = (frentry_t *)current;

	fr->fr_comment = -1;
	fr->fr_ref = old->fr_ref;
	fr->fr_statecnt = old->fr_statecnt;
	fr->fr_hits = old->fr_hits;
	fr->fr_bytes = old->fr_bytes;
	fr->fr_lastpkt.tv_sec = old->fr_lastpkt.tv_sec;
	fr->fr_lastpkt.tv_usec = old->fr_lastpkt.tv_usec;
	bcopy(&old->fr_dun, &fr->fr_dun, sizeof(old->fr_dun));
	fr->fr_func = old->fr_func;
	fr->fr_dsize = old->fr_dsize;
	fr->fr_pps = old->fr_pps;
	fr->fr_statemax = old->fr_statemax;
	fr->fr_flineno = old->fr_flineno;
	fr->fr_type = old->fr_type;
	fr->fr_flags = fr_frflags4to5(old->fr_flags);
	fr->fr_logtag = old->fr_logtag;
	fr->fr_collect = old->fr_collect;
	fr->fr_arg = old->fr_arg;
	fr->fr_loglevel = old->fr_loglevel;
	fr->fr_age[0] = old->fr_age[0];
	fr->fr_age[1] = old->fr_age[1];
	fr->fr_tifs[0].fd_ip6 = old->fr_tifs[0].ofd_ip6;
	fr->fr_tifs[0].fd_type = FRD_NORMAL;
	fr->fr_tifs[1].fd_ip6 = old->fr_tifs[1].ofd_ip6;
	fr->fr_tifs[1].fd_type = FRD_NORMAL;
	fr->fr_dif.fd_ip6 = old->fr_dif.ofd_ip6;
	fr->fr_dif.fd_type = FRD_NORMAL;
	if (old->fr_v == 4)
		fr->fr_family = AF_INET;
	if (old->fr_v == 6)
		fr->fr_family = AF_INET6;
	fr->fr_icode = old->fr_icode;
	fr->fr_cksum = old->fr_cksum;
	fr->fr_namelen = 0;
	fr->fr_ifnames[0] = -1;
	fr->fr_ifnames[1] = -1;
	fr->fr_ifnames[2] = -1;
	fr->fr_ifnames[3] = -1;
	fr->fr_dif.fd_name = -1;
	fr->fr_tifs[0].fd_name = -1;
	fr->fr_tifs[1].fd_name = -1;
	fr->fr_group = -1;
	fr->fr_grhead = -1;
	fr->fr_icmphead = -1;
	if (size == 0) {
		fr->fr_size = sizeof(*fr) + LIFNAMSIZ * 7 + FR_GROUPLEN * 2;
		fr->fr_size += sizeof(fripf_t) + 16;
		fr->fr_size += 9;	/* room for \0's */
	} else {
		char *names = fr->fr_names;
		int nlen = fr->fr_namelen;

		fr->fr_size = size;
		if (old->fr_ifnames[0][0] != '\0') {
			fr->fr_ifnames[0] = nlen;
			nlen = ipf_addfrstr(names, nlen, old->fr_ifnames[0],
					    LIFNAMSIZ);
		}
		if (old->fr_ifnames[1][0] != '\0') {
			fr->fr_ifnames[1] = nlen;
			nlen = ipf_addfrstr(names, nlen, old->fr_ifnames[1],
					    LIFNAMSIZ);
		}
		if (old->fr_ifnames[2][0] != '\0') {
			fr->fr_ifnames[2] = nlen;
			nlen = ipf_addfrstr(names, nlen, old->fr_ifnames[2],
					    LIFNAMSIZ);
		}
		if (old->fr_ifnames[3][0] != '\0') {
			fr->fr_ifnames[3] = nlen;
			nlen = ipf_addfrstr(names, nlen, old->fr_ifnames[3],
					    LIFNAMSIZ);
		}
		if (old->fr_tifs[0].fd_ifname[0] != '\0') {
			fr->fr_tifs[0].fd_name = nlen;
			nlen = ipf_addfrstr(names, nlen,
					    old->fr_tifs[0].fd_ifname,
					    LIFNAMSIZ);
		}
		if (old->fr_tifs[1].fd_ifname[0] != '\0') {
			fr->fr_tifs[1].fd_name = nlen;
			nlen = ipf_addfrstr(names, nlen,
					    old->fr_tifs[1].fd_ifname,
					    LIFNAMSIZ);
		}
		if (old->fr_dif.fd_ifname[0] != '\0') {
			fr->fr_dif.fd_name = nlen;
			nlen = ipf_addfrstr(names, nlen,
					    old->fr_dif.fd_ifname, LIFNAMSIZ);
		}
		if (old->fr_group[0] != '\0') {
			fr->fr_group = nlen;
			nlen = ipf_addfrstr(names, nlen,
					    old->fr_group, LIFNAMSIZ);
		}
		if (old->fr_grhead[0] != '\0') {
			fr->fr_grhead = nlen;
			nlen = ipf_addfrstr(names, nlen,
					    old->fr_grhead, LIFNAMSIZ);
		}
		fr->fr_namelen = nlen;

		if (old->fr_type == FR_T_IPF) {
			int offset = fr->fr_namelen;
			ipfobj_t obj;
			int error;

			obj.ipfo_type = IPFOBJ_FRIPF;
			obj.ipfo_rev = 4010100;
			obj.ipfo_ptr = old->fr_data;

			if ((offset & 7) != 0)
				offset += 8 - (offset & 7);
			error = ipf_in_compat(softc, &obj,
					      fr->fr_names + offset, 0);
			if (error == 0) {
				fr->fr_data = fr->fr_names + offset;
				fr->fr_dsize = sizeof(fripf_t);
			}
		}
	}
}

static void
frentry_4_1_16_to_current(ipf_main_softc_t *softc, frentry_4_1_16_t *old,
    void *current, int size)
{
	frentry_t *fr = (frentry_t *)current;

	fr->fr_comment = -1;
	fr->fr_ref = old->fr_ref;
	fr->fr_statecnt = old->fr_statecnt;
	fr->fr_hits = old->fr_hits;
	fr->fr_bytes = old->fr_bytes;
	fr->fr_lastpkt.tv_sec = old->fr_lastpkt.tv_sec;
	fr->fr_lastpkt.tv_usec = old->fr_lastpkt.tv_usec;
	bcopy(&old->fr_dun, &fr->fr_dun, sizeof(old->fr_dun));
	fr->fr_func = old->fr_func;
	fr->fr_dsize = old->fr_dsize;
	fr->fr_pps = old->fr_pps;
	fr->fr_statemax = old->fr_statemax;
	fr->fr_flineno = old->fr_flineno;
	fr->fr_type = old->fr_type;
	fr->fr_flags = fr_frflags4to5(old->fr_flags);
	fr->fr_logtag = old->fr_logtag;
	fr->fr_collect = old->fr_collect;
	fr->fr_arg = old->fr_arg;
	fr->fr_loglevel = old->fr_loglevel;
	fr->fr_age[0] = old->fr_age[0];
	fr->fr_age[1] = old->fr_age[1];
	fr->fr_tifs[0].fd_ip6 = old->fr_tifs[0].ofd_ip6;
	fr->fr_tifs[0].fd_type = FRD_NORMAL;
	fr->fr_tifs[1].fd_ip6 = old->fr_tifs[1].ofd_ip6;
	fr->fr_tifs[1].fd_type = FRD_NORMAL;
	fr->fr_dif.fd_ip6 = old->fr_dif.ofd_ip6;
	fr->fr_dif.fd_type = FRD_NORMAL;
	if (old->fr_v == 4)
		fr->fr_family = AF_INET;
	if (old->fr_v == 6)
		fr->fr_family = AF_INET6;
	fr->fr_icode = old->fr_icode;
	fr->fr_cksum = old->fr_cksum;
	fr->fr_namelen = 0;
	fr->fr_ifnames[0] = -1;
	fr->fr_ifnames[1] = -1;
	fr->fr_ifnames[2] = -1;
	fr->fr_ifnames[3] = -1;
	fr->fr_dif.fd_name = -1;
	fr->fr_tifs[0].fd_name = -1;
	fr->fr_tifs[1].fd_name = -1;
	fr->fr_group = -1;
	fr->fr_grhead = -1;
	fr->fr_icmphead = -1;
	if (size == 0) {
		fr->fr_size = sizeof(*fr) + LIFNAMSIZ * 7 + FR_GROUPLEN * 2;
		fr->fr_size += 9;	/* room for \0's */
	} else {
		char *names = fr->fr_names;
		int nlen = fr->fr_namelen;

		fr->fr_size = size;
		if (old->fr_ifnames[0][0] != '\0') {
			fr->fr_ifnames[0] = nlen;
			nlen = ipf_addfrstr(names, nlen, old->fr_ifnames[0],
					    LIFNAMSIZ);
		}
		if (old->fr_ifnames[1][0] != '\0') {
			fr->fr_ifnames[1] = nlen;
			nlen = ipf_addfrstr(names, nlen, old->fr_ifnames[1],
					    LIFNAMSIZ);
		}
		if (old->fr_ifnames[2][0] != '\0') {
			fr->fr_ifnames[2] = nlen;
			nlen = ipf_addfrstr(names, nlen, old->fr_ifnames[2],
					    LIFNAMSIZ);
		}
		if (old->fr_ifnames[3][0] != '\0') {
			fr->fr_ifnames[3] = nlen;
			nlen = ipf_addfrstr(names, nlen, old->fr_ifnames[3],
					    LIFNAMSIZ);
		}
		if (old->fr_tifs[0].fd_ifname[0] != '\0') {
			fr->fr_tifs[0].fd_name = nlen;
			nlen = ipf_addfrstr(names, nlen,
					    old->fr_tifs[0].fd_ifname,
					    LIFNAMSIZ);
		}
		if (old->fr_tifs[1].fd_ifname[0] != '\0') {
			fr->fr_tifs[1].fd_name = nlen;
			nlen = ipf_addfrstr(names, nlen,
					    old->fr_tifs[1].fd_ifname,
					    LIFNAMSIZ);
		}
		if (old->fr_dif.fd_ifname[0] != '\0') {
			fr->fr_dif.fd_name = nlen;
			nlen = ipf_addfrstr(names, nlen,
					    old->fr_dif.fd_ifname, LIFNAMSIZ);
		}
		if (old->fr_group[0] != '\0') {
			fr->fr_group = nlen;
			nlen = ipf_addfrstr(names, nlen,
					    old->fr_group, LIFNAMSIZ);
		}
		if (old->fr_grhead[0] != '\0') {
			fr->fr_grhead = nlen;
			nlen = ipf_addfrstr(names, nlen,
					    old->fr_grhead, LIFNAMSIZ);
		}
		fr->fr_namelen = nlen;

		if (old->fr_type == FR_T_IPF) {
			int offset = fr->fr_namelen;
			ipfobj_t obj;
			int error;

			obj.ipfo_type = IPFOBJ_FRIPF;
			obj.ipfo_rev = 4010100;
			obj.ipfo_ptr = old->fr_data;

			if ((offset & 7) != 0)
				offset += 8 - (offset & 7);
			error = ipf_in_compat(softc, &obj,
					      fr->fr_names + offset, 0);
			if (error == 0) {
				fr->fr_data = fr->fr_names + offset;
				fr->fr_dsize = sizeof(fripf_t);
			}
		}
	}
}


static void
frentry_4_1_0_to_current(ipf_main_softc_t *softc, frentry_4_1_0_t *old,
    void *current, int size)
{
	frentry_t *fr = (frentry_t *)current;

	fr->fr_size = sizeof(*fr);
	fr->fr_comment = -1;
	fr->fr_ref = old->fr_ref;
	fr->fr_statecnt = old->fr_statecnt;
	fr->fr_hits = old->fr_hits;
	fr->fr_bytes = old->fr_bytes;
	fr->fr_lastpkt.tv_sec = old->fr_lastpkt.tv_sec;
	fr->fr_lastpkt.tv_usec = old->fr_lastpkt.tv_usec;
	bcopy(&old->fr_dun, &fr->fr_dun, sizeof(old->fr_dun));
	fr->fr_func = old->fr_func;
	fr->fr_dsize = old->fr_dsize;
	fr->fr_pps = old->fr_pps;
	fr->fr_statemax = old->fr_statemax;
	fr->fr_flineno = old->fr_flineno;
	fr->fr_type = old->fr_type;
	fr->fr_flags = fr_frflags4to5(old->fr_flags);
	fr->fr_logtag = old->fr_logtag;
	fr->fr_collect = old->fr_collect;
	fr->fr_arg = old->fr_arg;
	fr->fr_loglevel = old->fr_loglevel;
	fr->fr_age[0] = old->fr_age[0];
	fr->fr_age[1] = old->fr_age[1];
	fr->fr_tifs[0].fd_ip6 = old->fr_tifs[0].ofd_ip6;
	fr->fr_tifs[0].fd_type = FRD_NORMAL;
	fr->fr_tifs[1].fd_ip6 = old->fr_tifs[1].ofd_ip6;
	fr->fr_tifs[1].fd_type = FRD_NORMAL;
	fr->fr_dif.fd_ip6 = old->fr_dif.ofd_ip6;
	fr->fr_dif.fd_type = FRD_NORMAL;
	if (old->fr_v == 4)
		fr->fr_family = AF_INET;
	if (old->fr_v == 6)
		fr->fr_family = AF_INET6;
	fr->fr_icode = old->fr_icode;
	fr->fr_cksum = old->fr_cksum;
	fr->fr_namelen = 0;
	fr->fr_ifnames[0] = -1;
	fr->fr_ifnames[1] = -1;
	fr->fr_ifnames[2] = -1;
	fr->fr_ifnames[3] = -1;
	fr->fr_dif.fd_name = -1;
	fr->fr_tifs[0].fd_name = -1;
	fr->fr_tifs[1].fd_name = -1;
	fr->fr_group = -1;
	fr->fr_grhead = -1;
	fr->fr_icmphead = -1;
	if (size == 0) {
		fr->fr_size = sizeof(*fr) + LIFNAMSIZ * 7 + FR_GROUPLEN * 2;
		fr->fr_size += 9;	/* room for \0's */
	} else {
		char *names = fr->fr_names;
		int nlen = fr->fr_namelen;

		fr->fr_size = size;
		if (old->fr_ifnames[0][0] != '\0') {
			fr->fr_ifnames[0] = nlen;
			nlen = ipf_addfrstr(names, nlen, old->fr_ifnames[0],
					    LIFNAMSIZ);
		}
		if (old->fr_ifnames[1][0] != '\0') {
			fr->fr_ifnames[1] = nlen;
			nlen = ipf_addfrstr(names, nlen, old->fr_ifnames[1],
					    LIFNAMSIZ);
		}
		if (old->fr_ifnames[2][0] != '\0') {
			fr->fr_ifnames[2] = nlen;
			nlen = ipf_addfrstr(names, nlen, old->fr_ifnames[2],
					    LIFNAMSIZ);
		}
		if (old->fr_ifnames[3][0] != '\0') {
			fr->fr_ifnames[3] = nlen;
			nlen = ipf_addfrstr(names, nlen, old->fr_ifnames[3],
					    LIFNAMSIZ);
		}
		if (old->fr_tifs[0].fd_ifname[0] != '\0') {
			fr->fr_tifs[0].fd_name = nlen;
			nlen = ipf_addfrstr(names, nlen,
					    old->fr_tifs[0].fd_ifname,
					    LIFNAMSIZ);
		}
		if (old->fr_tifs[1].fd_ifname[0] != '\0') {
			fr->fr_tifs[1].fd_name = nlen;
			nlen = ipf_addfrstr(names, nlen,
					    old->fr_tifs[1].fd_ifname,
					    LIFNAMSIZ);
		}
		if (old->fr_dif.fd_ifname[0] != '\0') {
			fr->fr_dif.fd_name = nlen;
			nlen = ipf_addfrstr(names, nlen,
					    old->fr_dif.fd_ifname, LIFNAMSIZ);
		}
		if (old->fr_group[0] != '\0') {
			fr->fr_group = nlen;
			nlen = ipf_addfrstr(names, nlen,
					    old->fr_group, LIFNAMSIZ);
		}
		if (old->fr_grhead[0] != '\0') {
			fr->fr_grhead = nlen;
			nlen = ipf_addfrstr(names, nlen,
					    old->fr_grhead, LIFNAMSIZ);
		}
		fr->fr_namelen = nlen;

		if (old->fr_type == FR_T_IPF) {
			int offset = fr->fr_namelen;
			ipfobj_t obj;
			int error;

			obj.ipfo_type = IPFOBJ_FRIPF;
			obj.ipfo_rev = 4010100;
			obj.ipfo_ptr = old->fr_data;

			if ((offset & 7) != 0)
				offset += 8 - (offset & 7);
			error = ipf_in_compat(softc, &obj,
					      fr->fr_names + offset, 0);
			if (error == 0) {
				fr->fr_data = fr->fr_names + offset;
				fr->fr_dsize = sizeof(fripf_t);
			}
		}
	}
}


static void
friostat_4_1_33_to_current(friostat_4_1_33_t *old, void *current)
{
	friostat_t *fiop = (friostat_t *)current;

	bcopy(&old->of_st[0], &fiop->f_st[0].fr_pass, sizeof(old->of_st[0]));
	bcopy(&old->of_st[1], &fiop->f_st[1].fr_pass, sizeof(old->of_st[1]));

	fiop->f_ipf[0][0] = old->f_ipf[0][0];
	fiop->f_ipf[0][1] = old->f_ipf[0][1];
	fiop->f_ipf[1][0] = old->f_ipf[1][0];
	fiop->f_ipf[1][1] = old->f_ipf[1][1];
	fiop->f_acct[0][0] = old->f_acct[0][0];
	fiop->f_acct[0][1] = old->f_acct[0][1];
	fiop->f_acct[1][0] = old->f_acct[1][0];
	fiop->f_acct[1][1] = old->f_acct[1][1];
	fiop->f_auth = fiop->f_auth;
	bcopy(&old->f_groups, &fiop->f_groups, sizeof(old->f_groups));
	bcopy(&old->f_froute, &fiop->f_froute, sizeof(old->f_froute));
	fiop->f_ticks = old->f_ticks;
	bcopy(&old->f_locks, &fiop->f_locks, sizeof(old->f_locks));
	fiop->f_defpass = old->f_defpass;
	fiop->f_active = old->f_active;
	fiop->f_running = old->f_running;
	fiop->f_logging = old->f_logging;
	fiop->f_features = old->f_features;
	bcopy(old->f_version, fiop->f_version, sizeof(old->f_version));
}


static void
friostat_4_1_0_to_current(friostat_4_1_0_t *old, void *current)
{
	friostat_t *fiop = (friostat_t *)current;

	bcopy(&old->of_st[0], &fiop->f_st[0].fr_pass, sizeof(old->of_st[0]));
	bcopy(&old->of_st[1], &fiop->f_st[1].fr_pass, sizeof(old->of_st[1]));

	fiop->f_ipf[0][0] = old->f_ipf[0][0];
	fiop->f_ipf[0][1] = old->f_ipf[0][1];
	fiop->f_ipf[1][0] = old->f_ipf[1][0];
	fiop->f_ipf[1][1] = old->f_ipf[1][1];
	fiop->f_acct[0][0] = old->f_acct[0][0];
	fiop->f_acct[0][1] = old->f_acct[0][1];
	fiop->f_acct[1][0] = old->f_acct[1][0];
	fiop->f_acct[1][1] = old->f_acct[1][1];
	fiop->f_auth = fiop->f_auth;
	bcopy(&old->f_groups, &fiop->f_groups, sizeof(old->f_groups));
	bcopy(&old->f_froute, &fiop->f_froute, sizeof(old->f_froute));
	fiop->f_ticks = old->f_ticks;
	bcopy(&old->f_locks, &fiop->f_locks, sizeof(old->f_locks));
	fiop->f_defpass = old->f_defpass;
	fiop->f_active = old->f_active;
	fiop->f_running = old->f_running;
	fiop->f_logging = old->f_logging;
	fiop->f_features = old->f_features;
	bcopy(old->f_version, fiop->f_version, sizeof(old->f_version));
}


static void
ipnat_4_1_14_to_current(ipnat_4_1_14_t *old, void *current, int size)
{
	ipnat_t *np = (ipnat_t *)current;

	np->in_space = old->in_space;
	np->in_hv[0] = old->in_hv;
	np->in_hv[1] = old->in_hv;
	np->in_flineno = old->in_flineno;
	if (old->in_redir == NAT_REDIRECT)
		np->in_dpnext = old->in_pnext;
	else
		np->in_spnext = old->in_pnext;
	np->in_v[0] = old->in_v;
	np->in_v[1] = old->in_v;
	np->in_flags = old->in_flags;
	np->in_mssclamp = old->in_mssclamp;
	np->in_age[0] = old->in_age[0];
	np->in_age[1] = old->in_age[1];
	np->in_redir = old->in_redir;
	np->in_pr[0] = old->in_p;
	np->in_pr[1] = old->in_p;
	if (np->in_redir == NAT_REDIRECT) {
		np->in_ndst.na_nextaddr = old->in_next6;
		np->in_ndst.na_addr[0] = old->in_in[0];
		np->in_ndst.na_addr[1] = old->in_in[1];
		np->in_ndst.na_atype = FRI_NORMAL;
		np->in_odst.na_addr[0] = old->in_out[0];
		np->in_odst.na_addr[1] = old->in_out[1];
		np->in_odst.na_atype = FRI_NORMAL;
		np->in_osrc.na_addr[0] = old->in_src[0];
		np->in_osrc.na_addr[1] = old->in_src[1];
		np->in_osrc.na_atype = FRI_NORMAL;
	} else {
		np->in_nsrc.na_nextaddr = old->in_next6;
		np->in_nsrc.na_addr[0] = old->in_out[0];
		np->in_nsrc.na_addr[1] = old->in_out[1];
		np->in_nsrc.na_atype = FRI_NORMAL;
		np->in_osrc.na_addr[0] = old->in_in[0];
		np->in_osrc.na_addr[1] = old->in_in[1];
		np->in_osrc.na_atype = FRI_NORMAL;
		np->in_odst.na_addr[0] = old->in_src[0];
		np->in_odst.na_addr[1] = old->in_src[1];
		np->in_odst.na_atype = FRI_NORMAL;
	}
	ipfv4tuctov5(&old->in_tuc, &np->in_tuc);
	if (np->in_redir == NAT_REDIRECT) {
		np->in_dpmin = old->in_port[0];
		np->in_dpmax = old->in_port[1];
	} else {
		np->in_spmin = old->in_port[0];
		np->in_spmax = old->in_port[1];
	}
	np->in_ppip = old->in_ppip;
	np->in_ippip = old->in_ippip;
	np->in_tag = old->in_tag;

	np->in_namelen = 0;
	np->in_plabel = -1;
	np->in_ifnames[0] = -1;
	np->in_ifnames[1] = -1;

	if (size == 0) {
		np->in_size = sizeof(*np);
		np->in_size += LIFNAMSIZ * 2 + APR_LABELLEN;
		np->in_size += 3;
	} else {
		int nlen = np->in_namelen;
		char *names = np->in_names;

		if (old->in_ifnames[0][0] != '\0') {
			np->in_ifnames[0] = nlen;
			nlen = ipf_addfrstr(names, nlen, old->in_ifnames[0],
					    LIFNAMSIZ);
		}
		if (old->in_ifnames[1][0] != '\0') {
			np->in_ifnames[0] = nlen;
			nlen = ipf_addfrstr(names, nlen, old->in_ifnames[1],
					    LIFNAMSIZ);
		}
		if (old->in_plabel[0] != '\0') {
			np->in_plabel = nlen;
			nlen = ipf_addfrstr(names, nlen, old->in_plabel,
					    LIFNAMSIZ);
		}
		np->in_namelen = nlen;
		np->in_size = size;
	}
}


static void
ipnat_4_1_0_to_current(ipnat_4_1_0_t *old, void *current, int size)
{
	ipnat_t *np = (ipnat_t *)current;

	np->in_space = old->in_space;
	np->in_hv[0] = old->in_hv;
	np->in_hv[1] = old->in_hv;
	np->in_flineno = old->in_flineno;
	if (old->in_redir == NAT_REDIRECT)
		np->in_dpnext = old->in_pnext;
	else
		np->in_spnext = old->in_pnext;
	np->in_v[0] = old->in_v;
	np->in_v[1] = old->in_v;
	np->in_flags = old->in_flags;
	np->in_mssclamp = old->in_mssclamp;
	np->in_age[0] = old->in_age[0];
	np->in_age[1] = old->in_age[1];
	np->in_redir = old->in_redir;
	np->in_pr[0] = old->in_p;
	np->in_pr[1] = old->in_p;
	if (np->in_redir == NAT_REDIRECT) {
		np->in_ndst.na_nextaddr = old->in_next6;
		bcopy(&old->in_in, &np->in_ndst.na_addr, sizeof(old->in_in));
		bcopy(&old->in_out, &np->in_odst.na_addr, sizeof(old->in_out));
		bcopy(&old->in_src, &np->in_osrc.na_addr, sizeof(old->in_src));
	} else {
		np->in_nsrc.na_nextaddr = old->in_next6;
		bcopy(&old->in_in, &np->in_osrc.na_addr, sizeof(old->in_in));
		bcopy(&old->in_out, &np->in_nsrc.na_addr, sizeof(old->in_out));
		bcopy(&old->in_src, &np->in_odst.na_addr, sizeof(old->in_src));
	}
	ipfv4tuctov5(&old->in_tuc, &np->in_tuc);
	if (np->in_redir == NAT_REDIRECT) {
		np->in_dpmin = old->in_port[0];
		np->in_dpmax = old->in_port[1];
	} else {
		np->in_spmin = old->in_port[0];
		np->in_spmax = old->in_port[1];
	}
	np->in_ppip = old->in_ppip;
	np->in_ippip = old->in_ippip;
	bcopy(&old->in_tag, &np->in_tag, sizeof(np->in_tag));

	np->in_namelen = 0;
	np->in_plabel = -1;
	np->in_ifnames[0] = -1;
	np->in_ifnames[1] = -1;

	if (size == 0) {
		np->in_size = sizeof(*np);
		np->in_size += LIFNAMSIZ * 2 + APR_LABELLEN;
		np->in_size += 3;
	} else {
		int nlen = np->in_namelen;
		char *names = np->in_names;

		if (old->in_ifnames[0][0] != '\0') {
			np->in_ifnames[0] = nlen;
			nlen = ipf_addfrstr(names, nlen, old->in_ifnames[0],
					    LIFNAMSIZ);
		}
		if (old->in_ifnames[1][0] != '\0') {
			np->in_ifnames[0] = nlen;
			nlen = ipf_addfrstr(names, nlen, old->in_ifnames[1],
					    LIFNAMSIZ);
		}
		if (old->in_plabel[0] != '\0') {
			np->in_plabel = nlen;
			nlen = ipf_addfrstr(names, nlen, old->in_plabel,
					    LIFNAMSIZ);
		}
		np->in_namelen = nlen;
		np->in_size = size;
	}
}


static void
frauth_4_1_32_to_current(frauth_4_1_32_t *old, void *current)
{
	frauth_t *fra = (frauth_t *)current;

	fra->fra_age = old->fra_age;
	fra->fra_len = old->fra_len;
	fra->fra_index = old->fra_index;
	fra->fra_pass = old->fra_pass;
	fr_info_4_1_32_to_current(&old->fra_info, &fra->fra_info);
	fra->fra_buf = old->fra_buf;
	fra->fra_flx = old->fra_flx;
#ifdef	MENTAT
	fra->fra_q = old->fra_q;
	fra->fra_m = old->fra_m;
#endif
}


static void
frauth_4_1_29_to_current(frauth_4_1_29_t *old, void *current)
{
	frauth_t *fra = (frauth_t *)current;

	fra->fra_age = old->fra_age;
	fra->fra_len = old->fra_len;
	fra->fra_index = old->fra_index;
	fra->fra_pass = old->fra_pass;
	fr_info_4_1_24_to_current(&old->fra_info, &fra->fra_info);
	fra->fra_buf = old->fra_buf;
	fra->fra_flx = old->fra_flx;
#ifdef	MENTAT
	fra->fra_q = old->fra_q;
	fra->fra_m = old->fra_m;
#endif
}


static void
frauth_4_1_24_to_current(frauth_4_1_24_t *old, void *current)
{
	frauth_t *fra = (frauth_t *)current;

	fra->fra_age = old->fra_age;
	fra->fra_len = old->fra_len;
	fra->fra_index = old->fra_index;
	fra->fra_pass = old->fra_pass;
	fr_info_4_1_24_to_current(&old->fra_info, &fra->fra_info);
	fra->fra_buf = old->fra_buf;
#ifdef	MENTAT
	fra->fra_q = old->fra_q;
	fra->fra_m = old->fra_m;
#endif
}


static void
frauth_4_1_23_to_current(frauth_4_1_23_t *old, void *current)
{
	frauth_t *fra = (frauth_t *)current;

	fra->fra_age = old->fra_age;
	fra->fra_len = old->fra_len;
	fra->fra_index = old->fra_index;
	fra->fra_pass = old->fra_pass;
	fr_info_4_1_23_to_current(&old->fra_info, &fra->fra_info);
	fra->fra_buf = old->fra_buf;
#ifdef	MENTAT
	fra->fra_q = old->fra_q;
	fra->fra_m = old->fra_m;
#endif
}


static void
frauth_4_1_11_to_current(frauth_4_1_11_t *old, void *current)
{
	frauth_t *fra = (frauth_t *)current;

	fra->fra_age = old->fra_age;
	fra->fra_len = old->fra_len;
	fra->fra_index = old->fra_index;
	fra->fra_pass = old->fra_pass;
	fr_info_4_1_11_to_current(&old->fra_info, &fra->fra_info);
	fra->fra_buf = old->fra_buf;
#ifdef	MENTAT
	fra->fra_q = old->fra_q;
	fra->fra_m = old->fra_m;
#endif
}


static void
fr_info_4_1_32_to_current(fr_info_4_1_32_t *old, void *current)
{
	fr_info_t *fin = (fr_info_t *)current;

	fin->fin_ifp = old->fin_ifp;
	ipf_v4iptov5(&old->fin_fi, &fin->fin_fi);
	bcopy(&old->fin_dat, &fin->fin_dat, sizeof(old->fin_dat));
	fin->fin_out = old->fin_out;
	fin->fin_rev = old->fin_rev;
	fin->fin_hlen = old->fin_hlen;
	fin->fin_tcpf = old->ofin_tcpf;
	fin->fin_icode = old->fin_icode;
	fin->fin_rule = old->fin_rule;
	bcopy(old->fin_group, fin->fin_group, sizeof(old->fin_group));
	fin->fin_fr = old->fin_fr;
	fin->fin_dp = old->fin_dp;
	fin->fin_dlen = old->fin_dlen;
	fin->fin_plen = old->fin_plen;
	fin->fin_ipoff = old->fin_ipoff;
	fin->fin_id = old->fin_id;
	fin->fin_off = old->fin_off;
	fin->fin_depth = old->fin_depth;
	fin->fin_error = old->fin_error;
	fin->fin_cksum = old->fin_cksum;
	fin->fin_nattag = old->fin_nattag;
	fin->fin_ip = old->ofin_ip;
	fin->fin_mp = old->fin_mp;
	fin->fin_m = old->fin_m;
#ifdef  MENTAT
	fin->fin_qfm = old->fin_qfm;
	fin->fin_qpi = old->fin_qpi;
#endif
#ifdef  __sgi
	fin->fin_hbuf = old->fin_hbuf;
#endif
}


static void
fr_info_4_1_24_to_current(fr_info_4_1_24_t *old, void *current)
{
	fr_info_t *fin = (fr_info_t *)current;

	fin->fin_ifp = old->fin_ifp;
	ipf_v4iptov5(&old->fin_fi, &fin->fin_fi);
	bcopy(&old->fin_dat, &fin->fin_dat, sizeof(old->fin_dat));
	fin->fin_out = old->fin_out;
	fin->fin_rev = old->fin_rev;
	fin->fin_hlen = old->fin_hlen;
	fin->fin_tcpf = old->ofin_tcpf;
	fin->fin_icode = old->fin_icode;
	fin->fin_rule = old->fin_rule;
	bcopy(old->fin_group, fin->fin_group, sizeof(old->fin_group));
	fin->fin_fr = old->fin_fr;
	fin->fin_dp = old->fin_dp;
	fin->fin_dlen = old->fin_dlen;
	fin->fin_plen = old->fin_plen;
	fin->fin_ipoff = old->fin_ipoff;
	fin->fin_id = old->fin_id;
	fin->fin_off = old->fin_off;
	fin->fin_depth = old->fin_depth;
	fin->fin_error = old->fin_error;
	fin->fin_cksum = old->fin_cksum;
	fin->fin_nattag = old->fin_nattag;
	fin->fin_ip = old->ofin_ip;
	fin->fin_mp = old->fin_mp;
	fin->fin_m = old->fin_m;
#ifdef  MENTAT
	fin->fin_qfm = old->fin_qfm;
	fin->fin_qpi = old->fin_qpi;
#endif
#ifdef  __sgi
	fin->fin_hbuf = old->fin_hbuf;
#endif
}


static void
fr_info_4_1_23_to_current(fr_info_4_1_23_t *old, void *current)
{
	fr_info_t *fin = (fr_info_t *)current;

	fin->fin_ifp = old->fin_ifp;
	ipf_v4iptov5(&old->fin_fi, &fin->fin_fi);
	bcopy(&old->fin_dat, &fin->fin_dat, sizeof(old->fin_dat));
	fin->fin_out = old->fin_out;
	fin->fin_rev = old->fin_rev;
	fin->fin_hlen = old->fin_hlen;
	fin->fin_tcpf = old->ofin_tcpf;
	fin->fin_icode = old->fin_icode;
	fin->fin_rule = old->fin_rule;
	bcopy(old->fin_group, fin->fin_group, sizeof(old->fin_group));
	fin->fin_fr = old->fin_fr;
	fin->fin_dp = old->fin_dp;
	fin->fin_dlen = old->fin_dlen;
	fin->fin_plen = old->fin_plen;
	fin->fin_ipoff = old->fin_ipoff;
	fin->fin_id = old->fin_id;
	fin->fin_off = old->fin_off;
	fin->fin_depth = old->fin_depth;
	fin->fin_error = old->fin_error;
	fin->fin_nattag = old->fin_nattag;
	fin->fin_ip = old->ofin_ip;
	fin->fin_mp = old->fin_mp;
	fin->fin_m = old->fin_m;
#ifdef  MENTAT
	fin->fin_qfm = old->fin_qfm;
	fin->fin_qpi = old->fin_qpi;
#endif
#ifdef  __sgi
	fin->fin_hbuf = fin->fin_hbuf;
#endif
}


static void
fr_info_4_1_11_to_current(fr_info_4_1_11_t *old, void *current)
{
	fr_info_t *fin = (fr_info_t *)current;

	fin->fin_ifp = old->fin_ifp;
	ipf_v4iptov5(&old->fin_fi, &fin->fin_fi);
	bcopy(&old->fin_dat, &fin->fin_dat, sizeof(old->fin_dat));
	fin->fin_out = old->fin_out;
	fin->fin_rev = old->fin_rev;
	fin->fin_hlen = old->fin_hlen;
	fin->fin_tcpf = old->ofin_tcpf;
	fin->fin_icode = old->fin_icode;
	fin->fin_rule = old->fin_rule;
	bcopy(old->fin_group, fin->fin_group, sizeof(old->fin_group));
	fin->fin_fr = old->fin_fr;
	fin->fin_dp = old->fin_dp;
	fin->fin_dlen = old->fin_dlen;
	fin->fin_plen = old->fin_plen;
	fin->fin_ipoff = old->fin_ipoff;
	fin->fin_id = old->fin_id;
	fin->fin_off = old->fin_off;
	fin->fin_depth = old->fin_depth;
	fin->fin_error = old->fin_error;
	fin->fin_nattag = old->fin_nattag;
	fin->fin_ip = old->ofin_ip;
	fin->fin_mp = old->fin_mp;
	fin->fin_m = old->fin_m;
#ifdef  MENTAT
	fin->fin_qfm = old->fin_qfm;
	fin->fin_qpi = old->fin_qpi;
#endif
#ifdef  __sgi
	fin->fin_hbuf = fin->fin_hbuf;
#endif
}


static void
nat_4_1_3_to_current(nat_4_1_3_t *old, nat_t *current)
{
	bzero((void *)current, sizeof(*current));
	bcopy((void *)old, (void *)current, sizeof(*old));
}


static void
nat_4_1_14_to_current(nat_4_1_14_t *old, nat_t *current)
{
	bzero((void *)current, sizeof(*current));
	bcopy((void *)old, (void *)current, sizeof(*old));
}


static void
nat_save_4_1_16_to_current(ipf_main_softc_t *softc, nat_save_4_1_16_t *old,
    void *current)
{
	nat_save_t *nats = (nat_save_t *)current;

	nats->ipn_next = old->ipn_next;
	nat_4_1_14_to_current(&old->ipn_nat, &nats->ipn_nat);
	bcopy(&old->ipn_ipnat, &nats->ipn_ipnat, sizeof(old->ipn_ipnat));
	frentry_4_1_16_to_current(softc, &old->ipn_fr, &nats->ipn_fr, 0);
	nats->ipn_dsize = old->ipn_dsize;
	bcopy(old->ipn_data, nats->ipn_data, sizeof(nats->ipn_data));
}


static void
nat_save_4_1_14_to_current(ipf_main_softc_t *softc, nat_save_4_1_14_t *old,
    void *current)
{
	nat_save_t *nats = (nat_save_t *)current;

	nats->ipn_next = old->ipn_next;
	nat_4_1_14_to_current(&old->ipn_nat, &nats->ipn_nat);
	bcopy(&old->ipn_ipnat, &nats->ipn_ipnat, sizeof(old->ipn_ipnat));
	frentry_4_1_0_to_current(softc, &old->ipn_fr, &nats->ipn_fr, 0);
	nats->ipn_dsize = old->ipn_dsize;
	bcopy(old->ipn_data, nats->ipn_data, sizeof(nats->ipn_data));
}


static void
nat_save_4_1_3_to_current(ipf_main_softc_t *softc, nat_save_4_1_3_t *old,
    void *current)
{
	nat_save_t *nats = (nat_save_t *)current;

	nats->ipn_next = old->ipn_next;
	nat_4_1_3_to_current(&old->ipn_nat, &nats->ipn_nat);
	ipnat_4_1_0_to_current(&old->ipn_ipnat, &nats->ipn_ipnat, 0);
	frentry_4_1_0_to_current(softc, &old->ipn_fr, &nats->ipn_fr, 0);
	nats->ipn_dsize = old->ipn_dsize;
	bcopy(old->ipn_data, nats->ipn_data, sizeof(nats->ipn_data));
}


static void
natstat_current_to_4_1_32(void *current, natstat_4_1_32_t *old)
{
	natstat_t *ns = (natstat_t *)current;

	old->ns_mapped[0] = ns->ns_side[0].ns_translated;
	old->ns_mapped[1] = ns->ns_side[1].ns_translated;
	old->ns_rules = ns->ns_side[0].ns_inuse + ns->ns_side[1].ns_inuse;
	old->ns_added = ns->ns_side[0].ns_added + ns->ns_side[1].ns_added;
	old->ns_expire = ns->ns_expire;
	old->ns_inuse = ns->ns_side[0].ns_inuse + ns->ns_side[1].ns_inuse;
	old->ns_logged = ns->ns_log_ok;
	old->ns_logfail = ns->ns_log_fail;
	old->ns_memfail = ns->ns_side[0].ns_memfail + ns->ns_side[1].ns_memfail;
	old->ns_badnat = ns->ns_side[0].ns_badnat + ns->ns_side[1].ns_badnat;
	old->ns_addtrpnt = ns->ns_addtrpnt;
	old->ns_table[0] = ns->ns_side[0].ns_table;
	old->ns_table[1] = ns->ns_side[1].ns_table;
	old->ns_maptable = NULL;
	old->ns_list = ns->ns_list;
	old->ns_apslist = NULL;
	old->ns_wilds = ns->ns_wilds;
	old->ns_nattab_sz = ns->ns_nattab_sz;
	old->ns_nattab_max = ns->ns_nattab_max;
	old->ns_rultab_sz = ns->ns_rultab_sz;
	old->ns_rdrtab_sz = ns->ns_rdrtab_sz;
	old->ns_trpntab_sz = ns->ns_trpntab_sz;
	old->ns_hostmap_sz = 0;
	old->ns_instances = ns->ns_instances;
	old->ns_maplist = ns->ns_maplist;
	old->ns_bucketlen[0] = (u_long *)ns->ns_side[0].ns_bucketlen;
	old->ns_bucketlen[1] = (u_long *)ns->ns_side[1].ns_bucketlen;
	old->ns_ticks = ns->ns_ticks;
	old->ns_orphans = ns->ns_orphans;
	old->ns_uncreate[0][0] = ns->ns_side[0].ns_uncreate[0];
	old->ns_uncreate[0][1] = ns->ns_side[0].ns_uncreate[1];
	old->ns_uncreate[1][0] = ns->ns_side[1].ns_uncreate[0];
	old->ns_uncreate[1][1] = ns->ns_side[1].ns_uncreate[1];
}


static void
natstat_current_to_4_1_27(void *current, natstat_4_1_27_t *old)
{
	natstat_t *ns = (natstat_t *)current;

	old->ns_mapped[0] = ns->ns_side[0].ns_translated;
	old->ns_mapped[1] = ns->ns_side[1].ns_translated;
	old->ns_rules = ns->ns_side[0].ns_inuse + ns->ns_side[1].ns_inuse;
	old->ns_added = ns->ns_side[0].ns_added + ns->ns_side[1].ns_added;
	old->ns_expire = ns->ns_expire;
	old->ns_inuse = ns->ns_side[0].ns_inuse + ns->ns_side[1].ns_inuse;
	old->ns_logged = ns->ns_log_ok;
	old->ns_logfail = ns->ns_log_fail;
	old->ns_memfail = ns->ns_side[0].ns_memfail + ns->ns_side[1].ns_memfail;
	old->ns_badnat = ns->ns_side[0].ns_badnat + ns->ns_side[1].ns_badnat;
	old->ns_addtrpnt = ns->ns_addtrpnt;
	old->ns_table[0] = ns->ns_side[0].ns_table;
	old->ns_table[1] = ns->ns_side[1].ns_table;
	old->ns_maptable = NULL;
	old->ns_list = ns->ns_list;
	old->ns_apslist = NULL;
	old->ns_wilds = ns->ns_wilds;
	old->ns_nattab_sz = ns->ns_nattab_sz;
	old->ns_nattab_max = ns->ns_nattab_max;
	old->ns_rultab_sz = ns->ns_rultab_sz;
	old->ns_rdrtab_sz = ns->ns_rdrtab_sz;
	old->ns_trpntab_sz = ns->ns_trpntab_sz;
	old->ns_hostmap_sz = 0;
	old->ns_instances = ns->ns_instances;
	old->ns_maplist = ns->ns_maplist;
	old->ns_bucketlen[0] = (u_long *)ns->ns_side[0].ns_bucketlen;
	old->ns_bucketlen[1] = (u_long *)ns->ns_side[1].ns_bucketlen;
	old->ns_ticks = ns->ns_ticks;
	old->ns_orphans = ns->ns_orphans;
}


static void
natstat_current_to_4_1_16(void *current, natstat_4_1_16_t *old)
{
	natstat_t *ns = (natstat_t *)current;

	old->ns_mapped[0] = ns->ns_side[0].ns_translated;
	old->ns_mapped[1] = ns->ns_side[1].ns_translated;
	old->ns_rules = ns->ns_side[0].ns_inuse + ns->ns_side[1].ns_inuse;
	old->ns_added = ns->ns_side[0].ns_added + ns->ns_side[1].ns_added;
	old->ns_expire = ns->ns_expire;
	old->ns_inuse = ns->ns_side[0].ns_inuse + ns->ns_side[1].ns_inuse;
	old->ns_logged = ns->ns_log_ok;
	old->ns_logfail = ns->ns_log_fail;
	old->ns_memfail = ns->ns_side[0].ns_memfail + ns->ns_side[1].ns_memfail;
	old->ns_badnat = ns->ns_side[0].ns_badnat + ns->ns_side[1].ns_badnat;
	old->ns_addtrpnt = ns->ns_addtrpnt;
	old->ns_table[0] = ns->ns_side[0].ns_table;
	old->ns_table[1] = ns->ns_side[1].ns_table;
	old->ns_maptable = NULL;
	old->ns_list = ns->ns_list;
	old->ns_apslist = NULL;
	old->ns_wilds = ns->ns_wilds;
	old->ns_nattab_sz = ns->ns_nattab_sz;
	old->ns_nattab_max = ns->ns_nattab_max;
	old->ns_rultab_sz = ns->ns_rultab_sz;
	old->ns_rdrtab_sz = ns->ns_rdrtab_sz;
	old->ns_trpntab_sz = ns->ns_trpntab_sz;
	old->ns_hostmap_sz = 0;
	old->ns_instances = ns->ns_instances;
	old->ns_maplist = ns->ns_maplist;
	old->ns_bucketlen[0] = (u_long *)ns->ns_side[0].ns_bucketlen;
	old->ns_bucketlen[1] = (u_long *)ns->ns_side[1].ns_bucketlen;
	old->ns_ticks = ns->ns_ticks;
}


static void
natstat_current_to_4_1_0(void *current, natstat_4_1_0_t *old)
{
	natstat_t *ns = (natstat_t *)current;

	old->ns_mapped[0] = ns->ns_side[0].ns_translated;
	old->ns_mapped[1] = ns->ns_side[1].ns_translated;
	old->ns_rules = ns->ns_side[0].ns_inuse + ns->ns_side[1].ns_inuse;
	old->ns_added = ns->ns_side[0].ns_added + ns->ns_side[1].ns_added;
	old->ns_expire = ns->ns_expire;
	old->ns_inuse = ns->ns_side[0].ns_inuse + ns->ns_side[1].ns_inuse;
	old->ns_logged = ns->ns_log_ok;
	old->ns_logfail = ns->ns_log_fail;
	old->ns_memfail = ns->ns_side[0].ns_memfail + ns->ns_side[1].ns_memfail;
	old->ns_badnat = ns->ns_side[0].ns_badnat + ns->ns_side[1].ns_badnat;
	old->ns_addtrpnt = ns->ns_addtrpnt;
	old->ns_table[0] = ns->ns_side[0].ns_table;
	old->ns_table[1] = ns->ns_side[1].ns_table;
	old->ns_maptable = NULL;
	old->ns_list = ns->ns_list;
	old->ns_apslist = NULL;
	old->ns_wilds = ns->ns_wilds;
	old->ns_nattab_sz = ns->ns_nattab_sz;
	old->ns_nattab_max = ns->ns_nattab_max;
	old->ns_rultab_sz = ns->ns_rultab_sz;
	old->ns_rdrtab_sz = ns->ns_rdrtab_sz;
	old->ns_trpntab_sz = ns->ns_trpntab_sz;
	old->ns_hostmap_sz = 0;
	old->ns_instances = ns->ns_instances;
	old->ns_maplist = ns->ns_maplist;
	old->ns_bucketlen[0] = (u_long *)ns->ns_side[0].ns_bucketlen;
	old->ns_bucketlen[1] = (u_long *)ns->ns_side[1].ns_bucketlen;
}


static void
ipstate_save_current_to_4_1_16(void *current, ipstate_save_4_1_16_t *old)
{
	ipstate_save_t *ips = (ipstate_save_t *)current;

	old->ips_next = ips->ips_next;
	ipstate_current_to_4_1_0(&ips->ips_is, &old->ips_is);
	frentry_current_to_4_1_16(&ips->ips_fr, &old->ips_fr);
}


static void
ipstate_save_current_to_4_1_0(void *current, ipstate_save_4_1_0_t *old)
{
	ipstate_save_t *ips = (ipstate_save_t *)current;

	old->ips_next = ips->ips_next;
	ipstate_current_to_4_1_0(&ips->ips_is, &old->ips_is);
	frentry_current_to_4_1_0(&ips->ips_fr, &old->ips_fr);
}


int
ipf_out_compat(ipf_main_softc_t *softc, ipfobj_t *obj, void *ptr)
{
	frentry_t *fr;
	int error;

	IPFERROR(140042);
	error = EINVAL;

	switch (obj->ipfo_type)
	{
	default :
		break;

	case IPFOBJ_FRENTRY :
		if (obj->ipfo_rev >= 4013400) {
			frentry_4_1_34_t *old;

			KMALLOC(old, frentry_4_1_34_t *);
			if (old == NULL) {
				IPFERROR(140043);
				error = ENOMEM;
				break;
			}
			frentry_current_to_4_1_34(ptr, old);
			error = COPYOUT(old, obj->ipfo_ptr, sizeof(*old));
			if (error == 0 && old->fr_dsize > 0) {
				char *dst = obj->ipfo_ptr;

				fr = ptr;
				dst += sizeof(*old);
				error = COPYOUT(fr->fr_data, dst,
						old->fr_dsize);
				if (error != 0) {
					IPFERROR(140044);
				}
			}
			KFREE(old);
			obj->ipfo_size = sizeof(*old);
		} else if (obj->ipfo_rev >= 4011600) {
			frentry_4_1_16_t *old;

			KMALLOC(old, frentry_4_1_16_t *);
			if (old == NULL) {
				IPFERROR(140045);
				error = ENOMEM;
				break;
			}
			frentry_current_to_4_1_16(ptr, old);
			error = COPYOUT(old, obj->ipfo_ptr, sizeof(*old));
			if (error != 0) {
				IPFERROR(140046);
			}
			KFREE(old);
			obj->ipfo_size = sizeof(*old);
		} else {
			frentry_4_1_0_t *old;

			KMALLOC(old, frentry_4_1_0_t *);
			if (old == NULL) {
				IPFERROR(140047);
				error = ENOMEM;
				break;
			}
			frentry_current_to_4_1_0(ptr, old);
			error = COPYOUT(old, obj->ipfo_ptr, sizeof(*old));
			if (error != 0) {
				IPFERROR(140048);
			}
			KFREE(old);
			obj->ipfo_size = sizeof(*old);
		}
		break;

	case IPFOBJ_IPFSTAT :
		if (obj->ipfo_rev >= 4013300) {
			friostat_4_1_33_t *old;

			KMALLOC(old, friostat_4_1_33_t *);
			if (old == NULL) {
				IPFERROR(140049);
				error = ENOMEM;
				break;
			}
			friostat_current_to_4_1_33(ptr, old, obj->ipfo_rev);
			error = COPYOUT(old, obj->ipfo_ptr, sizeof(*old));
			if (error != 0) {
				IPFERROR(140050);
			}
			KFREE(old);
		} else {
			friostat_4_1_0_t *old;

			KMALLOC(old, friostat_4_1_0_t *);
			if (old == NULL) {
				IPFERROR(140051);
				error = ENOMEM;
				break;
			}
			friostat_current_to_4_1_0(ptr, old, obj->ipfo_rev);
			error = COPYOUT(old, obj->ipfo_ptr, sizeof(*old));
			if (error != 0) {
				IPFERROR(140052);
			}
			KFREE(old);
		}
		break;

	case IPFOBJ_IPFINFO :	/* unused */
		break;

	case IPFOBJ_IPNAT :
		if (obj->ipfo_rev >= 4011400) {
			ipnat_4_1_14_t *old;

			KMALLOC(old, ipnat_4_1_14_t *);
			if (old == NULL) {
				IPFERROR(140053);
				error = ENOMEM;
				break;
			}
			ipnat_current_to_4_1_14(ptr, old);
			error = COPYOUT(old, obj->ipfo_ptr, sizeof(*old));
			if (error != 0) {
				IPFERROR(140054);
			}
			KFREE(old);
		} else {
			ipnat_4_1_0_t *old;

			KMALLOC(old, ipnat_4_1_0_t *);
			if (old == NULL) {
				IPFERROR(140055);
				error = ENOMEM;
				break;
			}
			ipnat_current_to_4_1_0(ptr, old);
			error = COPYOUT(old, obj->ipfo_ptr, sizeof(*old));
			if (error != 0) {
				IPFERROR(140056);
			}
			KFREE(old);
		}
		break;

	case IPFOBJ_NATSTAT :
		if (obj->ipfo_rev >= 4013200) {
			natstat_4_1_32_t *old;

			KMALLOC(old, natstat_4_1_32_t *);
			if (old == NULL) {
				IPFERROR(140057);
				error = ENOMEM;
				break;
			}
			natstat_current_to_4_1_32(ptr, old);
			error = COPYOUT(old, obj->ipfo_ptr, sizeof(*old));
			if (error != 0) {
				IPFERROR(140058);
			}
			KFREE(old);
		} else if (obj->ipfo_rev >= 4012700) {
			natstat_4_1_27_t *old;

			KMALLOC(old, natstat_4_1_27_t *);
			if (old == NULL) {
				IPFERROR(140059);
				error = ENOMEM;
				break;
			}
			natstat_current_to_4_1_27(ptr, old);
			error = COPYOUT(old, obj->ipfo_ptr, sizeof(*old));
			if (error != 0) {
				IPFERROR(140060);
			}
			KFREE(old);
		} else if (obj->ipfo_rev >= 4011600) {
			natstat_4_1_16_t *old;

			KMALLOC(old, natstat_4_1_16_t *);
			if (old == NULL) {
				IPFERROR(140061);
				error = ENOMEM;
				break;
			}
			natstat_current_to_4_1_16(ptr, old);
			error = COPYOUT(old, obj->ipfo_ptr, sizeof(*old));
			if (error != 0) {
				IPFERROR(140062);
			}
			KFREE(old);
		} else {
			natstat_4_1_0_t *old;

			KMALLOC(old, natstat_4_1_0_t *);
			if (old == NULL) {
				IPFERROR(140063);
				error = ENOMEM;
				break;
			}
			natstat_current_to_4_1_0(ptr, old);
			error = COPYOUT(old, obj->ipfo_ptr, sizeof(*old));
			if (error != 0) {
				IPFERROR(140064);
			}
			KFREE(old);
		}
		break;

	case IPFOBJ_STATESAVE :
		if (obj->ipfo_rev >= 4011600) {
			ipstate_save_4_1_16_t *old;

			KMALLOC(old, ipstate_save_4_1_16_t *);
			if (old == NULL) {
				IPFERROR(140065);
				error = ENOMEM;
				break;
			}
			ipstate_save_current_to_4_1_16(ptr, old);
			error = COPYOUT(old, obj->ipfo_ptr, sizeof(*old));
			if (error != 0) {
				IPFERROR(140066);
			}
			KFREE(old);
		} else {
			ipstate_save_4_1_0_t *old;

			KMALLOC(old, ipstate_save_4_1_0_t *);
			if (old == NULL) {
				IPFERROR(140067);
				error = ENOMEM;
				break;
			}
			ipstate_save_current_to_4_1_0(ptr, old);
			error = COPYOUT(old, obj->ipfo_ptr, sizeof(*old));
			if (error != 0) {
				IPFERROR(140068);
			}
			KFREE(old);
		}
		break;

	case IPFOBJ_NATSAVE :
		if (obj->ipfo_rev >= 4011600) {
			nat_save_4_1_16_t *old16;

			KMALLOC(old16, nat_save_4_1_16_t *);
			if (old16 == NULL) {
				IPFERROR(140069);
				error = ENOMEM;
				break;
			}
			nat_save_current_to_4_1_16(ptr, old16);
			error = COPYOUT(&old16, obj->ipfo_ptr, sizeof(*old16));
			if (error != 0) {
				IPFERROR(140070);
			}
			KFREE(old16);
		} else if (obj->ipfo_rev >= 4011400) {
			nat_save_4_1_14_t *old14;

			KMALLOC(old14, nat_save_4_1_14_t *);
			if (old14 == NULL) {
				IPFERROR(140071);
				error = ENOMEM;
				break;
			}
			nat_save_current_to_4_1_14(ptr, old14);
			error = COPYOUT(&old14, obj->ipfo_ptr, sizeof(*old14));
			if (error != 0) {
				IPFERROR(140072);
			}
			KFREE(old14);
		} else if (obj->ipfo_rev >= 4010300) {
			nat_save_4_1_3_t *old3;

			KMALLOC(old3, nat_save_4_1_3_t *);
			if (old3 == NULL) {
				IPFERROR(140073);
				error = ENOMEM;
				break;
			}
			nat_save_current_to_4_1_3(ptr, old3);
			error = COPYOUT(&old3, obj->ipfo_ptr, sizeof(*old3));
			if (error != 0) {
				IPFERROR(140074);
			}
			KFREE(old3);
		}
		break;

	case IPFOBJ_IPSTATE :
		if (obj->ipfo_rev >= 4011600) {
			ipstate_4_1_16_t *old;

			KMALLOC(old, ipstate_4_1_16_t *);
			if (old == NULL) {
				IPFERROR(140075);
				error = ENOMEM;
				break;
			}
			ipstate_current_to_4_1_16(ptr, old);
			error = COPYOUT(old, obj->ipfo_ptr, sizeof(*old));
			if (error != 0) {
				IPFERROR(140076);
			}
			KFREE(old);
		} else {
			ipstate_4_1_0_t *old;

			KMALLOC(old, ipstate_4_1_0_t *);
			if (old == NULL) {
				IPFERROR(140077);
				error = ENOMEM;
				break;
			}
			ipstate_current_to_4_1_0(ptr, old);
			error = COPYOUT(old, obj->ipfo_ptr, sizeof(*old));
			if (error != 0) {
				IPFERROR(140078);
			}
			KFREE(old);
		}
		break;

	case IPFOBJ_STATESTAT :
		if (obj->ipfo_rev >= 4012100) {
			ips_stat_4_1_21_t *old;

			KMALLOC(old, ips_stat_4_1_21_t *);
			if (old == NULL) {
				IPFERROR(140079);
				error = ENOMEM;
				break;
			}
			ips_stat_current_to_4_1_21(ptr, old);
			error = COPYOUT(old, obj->ipfo_ptr, sizeof(*old));
			if (error != 0) {
				IPFERROR(140080);
			}
			KFREE(old);
		} else {
			ips_stat_4_1_0_t *old;

			KMALLOC(old, ips_stat_4_1_0_t *);
			if (old == NULL) {
				IPFERROR(140081);
				error = ENOMEM;
				break;
			}
			ips_stat_current_to_4_1_0(ptr, old);
			error = COPYOUT(old, obj->ipfo_ptr, sizeof(*old));
			if (error != 0) {
				IPFERROR(140082);
			}
			KFREE(old);
		}
		break;

	case IPFOBJ_FRAUTH :
		if (obj->ipfo_rev >= 4012900) {
			frauth_4_1_29_t *old29;

			KMALLOC(old29, frauth_4_1_29_t *);
			if (old29 == NULL) {
				IPFERROR(140083);
				error = ENOMEM;
				break;
			}
			frauth_current_to_4_1_29(ptr, old29);
			error = COPYOUT(old29, obj->ipfo_ptr, sizeof(*old29));
			if (error != 0) {
				IPFERROR(140084);
			}
			KFREE(old29);
		} else if (obj->ipfo_rev >= 4012400) {
			frauth_4_1_24_t *old24;

			KMALLOC(old24, frauth_4_1_24_t *);
			if (old24 == NULL) {
				IPFERROR(140085);
				error = ENOMEM;
				break;
			}
			frauth_current_to_4_1_24(ptr, old24);
			error = COPYOUT(old24, obj->ipfo_ptr, sizeof(*old24));
			if (error != 0) {
				IPFERROR(140086);
			}
			KFREE(old24);
		} else if (obj->ipfo_rev >= 4012300) {
			frauth_4_1_23_t *old23;

			KMALLOC(old23, frauth_4_1_23_t *);
			if (old23 == NULL) {
				IPFERROR(140087);
				error = ENOMEM;
				break;
			}
			frauth_current_to_4_1_23(ptr, old23);
			error = COPYOUT(old23, obj->ipfo_ptr, sizeof(*old23));
			if (error != 0) {
				IPFERROR(140088);
			}
			KFREE(old23);
		} else if (obj->ipfo_rev >= 4011100) {
			frauth_4_1_11_t *old11;

			KMALLOC(old11, frauth_4_1_11_t *);
			if (old11 == NULL) {
				IPFERROR(140089);
				error = ENOMEM;
				break;
			}
			frauth_current_to_4_1_11(ptr, old11);
			error = COPYOUT(old11, obj->ipfo_ptr, sizeof(*old11));
			if (error != 0) {
				IPFERROR(140090);
			}
			KFREE(old11);
		}
		break;

	case IPFOBJ_NAT :
		if (obj->ipfo_rev >= 4012500) {
			nat_4_1_25_t *old;

			KMALLOC(old, nat_4_1_25_t *);
			if (old == NULL) {
				IPFERROR(140091);
				error = ENOMEM;
				break;
			}
			nat_current_to_4_1_25(ptr, old);
			error = COPYOUT(old, obj->ipfo_ptr, sizeof(*old));
			if (error != 0) {
				IPFERROR(140092);
			}
			KFREE(old);
		} else if (obj->ipfo_rev >= 4011400) {
			nat_4_1_14_t *old;

			KMALLOC(old, nat_4_1_14_t *);
			if (old == NULL) {
				IPFERROR(140093);
				error = ENOMEM;
				break;
			}
			nat_current_to_4_1_14(ptr, old);
			error = COPYOUT(old, obj->ipfo_ptr, sizeof(*old));
			if (error != 0) {
				IPFERROR(140094);
			}
			KFREE(old);
		} else if (obj->ipfo_rev >= 4010300) {
			nat_4_1_3_t *old;

			KMALLOC(old, nat_4_1_3_t *);
			if (old == NULL) {
				IPFERROR(140095);
				error = ENOMEM;
				break;
			}
			nat_current_to_4_1_3(ptr, old);
			error = COPYOUT(old, obj->ipfo_ptr, sizeof(*old));
			if (error != 0) {
				IPFERROR(140096);
			}
			KFREE(old);
		}
		break;

	case IPFOBJ_FRIPF :
		if (obj->ipfo_rev < 5000000) {
			fripf4_t *old;

			KMALLOC(old, fripf4_t *);
			if (old == NULL) {
				IPFERROR(140097);
				error = ENOMEM;
				break;
			}
			ipf_v5fripftov4(ptr, old);
			error = COPYOUT(old, obj->ipfo_ptr, sizeof(*old));
			if (error != 0) {
				IPFERROR(140098);
			}
			KFREE(old);
		}
		break;
	}
	return error;
}


static void
friostat_current_to_4_1_33(void *current, friostat_4_1_33_t *old, int rev)
{
	friostat_t *fiop = (friostat_t *)current;

	bcopy(&fiop->f_st[0].fr_pass, &old->of_st[0], sizeof(old->of_st[0]));
	bcopy(&fiop->f_st[1].fr_pass, &old->of_st[1], sizeof(old->of_st[1]));

	old->f_ipf[0][0] = fiop->f_ipf[0][0];
	old->f_ipf[0][1] = fiop->f_ipf[0][1];
	old->f_ipf[1][0] = fiop->f_ipf[1][0];
	old->f_ipf[1][1] = fiop->f_ipf[1][1];
	old->f_acct[0][0] = fiop->f_acct[0][0];
	old->f_acct[0][1] = fiop->f_acct[0][1];
	old->f_acct[1][0] = fiop->f_acct[1][0];
	old->f_acct[1][1] = fiop->f_acct[1][1];
	old->f_ipf6[0][0] = NULL;
	old->f_ipf6[0][1] = NULL;
	old->f_ipf6[1][0] = NULL;
	old->f_ipf6[1][1] = NULL;
	old->f_acct6[0][0] = NULL;
	old->f_acct6[0][1] = NULL;
	old->f_acct6[1][0] = NULL;
	old->f_acct6[1][1] = NULL;
	old->f_auth = fiop->f_auth;
	bcopy(&fiop->f_groups, &old->f_groups, sizeof(old->f_groups));
	bcopy(&fiop->f_froute, &old->f_froute, sizeof(old->f_froute));
	old->f_ticks = fiop->f_ticks;
	bcopy(&fiop->f_locks, &old->f_locks, sizeof(old->f_locks));
	old->f_kmutex_sz = 0;
	old->f_krwlock_sz = 0;
	old->f_defpass = fiop->f_defpass;
	old->f_active = fiop->f_active;
	old->f_running = fiop->f_running;
	old->f_logging = fiop->f_logging;
	old->f_features = fiop->f_features;
	snprintf(old->f_version, sizeof(old->f_version), "IP Filter: v%d.%d.%d",
		(rev / 1000000) % 100, (rev / 10000) % 100, (rev / 100) % 100);
}


static void
friostat_current_to_4_1_0(void *current, friostat_4_1_0_t *old, int rev)
{
	friostat_t *fiop = (friostat_t *)current;

	bcopy(&fiop->f_st[0].fr_pass, &old->of_st[0], sizeof(old->of_st[0]));
	bcopy(&fiop->f_st[1].fr_pass, &old->of_st[1], sizeof(old->of_st[1]));

	old->f_ipf[0][0] = fiop->f_ipf[0][0];
	old->f_ipf[0][1] = fiop->f_ipf[0][1];
	old->f_ipf[1][0] = fiop->f_ipf[1][0];
	old->f_ipf[1][1] = fiop->f_ipf[1][1];
	old->f_acct[0][0] = fiop->f_acct[0][0];
	old->f_acct[0][1] = fiop->f_acct[0][1];
	old->f_acct[1][0] = fiop->f_acct[1][0];
	old->f_acct[1][1] = fiop->f_acct[1][1];
	old->f_ipf6[0][0] = NULL;
	old->f_ipf6[0][1] = NULL;
	old->f_ipf6[1][0] = NULL;
	old->f_ipf6[1][1] = NULL;
	old->f_acct6[0][0] = NULL;
	old->f_acct6[0][1] = NULL;
	old->f_acct6[1][0] = NULL;
	old->f_acct6[1][1] = NULL;
	old->f_auth = fiop->f_auth;
	bcopy(&fiop->f_groups, &old->f_groups, sizeof(old->f_groups));
	bcopy(&fiop->f_froute, &old->f_froute, sizeof(old->f_froute));
	old->f_ticks = fiop->f_ticks;
	old->f_ipf[0][0] = fiop->f_ipf[0][0];
	old->f_ipf[0][1] = fiop->f_ipf[0][1];
	old->f_ipf[1][0] = fiop->f_ipf[1][0];
	old->f_ipf[1][1] = fiop->f_ipf[1][1];
	old->f_acct[0][0] = fiop->f_acct[0][0];
	old->f_acct[0][1] = fiop->f_acct[0][1];
	old->f_acct[1][0] = fiop->f_acct[1][0];
	old->f_acct[1][1] = fiop->f_acct[1][1];
	old->f_ipf6[0][0] = NULL;
	old->f_ipf6[0][1] = NULL;
	old->f_ipf6[1][0] = NULL;
	old->f_ipf6[1][1] = NULL;
	old->f_acct6[0][0] = NULL;
	old->f_acct6[0][1] = NULL;
	old->f_acct6[1][0] = NULL;
	old->f_acct6[1][1] = NULL;
	old->f_auth = fiop->f_auth;
	bcopy(&fiop->f_groups, &old->f_groups, sizeof(old->f_groups));
	bcopy(&fiop->f_froute, &old->f_froute, sizeof(old->f_froute));
	old->f_ticks = fiop->f_ticks;
	bcopy(&fiop->f_locks, &old->f_locks, sizeof(old->f_locks));
	old->f_kmutex_sz = 0;
	old->f_krwlock_sz = 0;
	old->f_defpass = fiop->f_defpass;
	old->f_active = fiop->f_active;
	old->f_running = fiop->f_running;
	old->f_logging = fiop->f_logging;
	old->f_features = fiop->f_features;
	snprintf(old->f_version, sizeof(old->f_version), "IP Filter: v%d.%d.%d",
		(rev / 1000000) % 100, (rev / 10000) % 100, (rev / 100) % 100);
}


/*
 * nflags is v5 flags, returns v4 flags.
 */
static int
fr_frflags5to4(u_32_t nflags)
{
	u_32_t oflags = 0;

	switch (nflags & FR_CMDMASK) {
	case FR_CALL :
		oflags = 0x0;
		break;
	case FR_BLOCK :
		oflags = 0x1;
		break;
	case FR_PASS :
		oflags = 0x2;
		break;
	case FR_AUTH :
		oflags = 0x3;
		break;
	case FR_PREAUTH :
		oflags = 0x4;
		break;
	case FR_ACCOUNT :
		oflags = 0x5;
		break;
	case FR_SKIP :
		oflags = 0x6;
		break;
	default :
		break;
	}

	if (nflags & FR_LOG)
		oflags |= 0x00010;
	if (nflags & FR_CALLNOW)
		oflags |= 0x00020;
	if (nflags & FR_NOTSRCIP)
		oflags |= 0x00080;
	if (nflags & FR_NOTDSTIP)
		oflags |= 0x00040;
	if (nflags & FR_QUICK)
		oflags |= 0x00100;
	if (nflags & FR_KEEPFRAG)
		oflags |= 0x00200;
	if (nflags & FR_KEEPSTATE)
		oflags |= 0x00400;
	if (nflags & FR_FASTROUTE)
		oflags |= 0x00800;
	if (nflags & FR_RETRST)
		oflags |= 0x01000;
	if (nflags & FR_RETICMP)
		oflags |= 0x02000;
	if (nflags & FR_FAKEICMP)
		oflags |= 0x03000;
	if (nflags & FR_OUTQUE)
		oflags |= 0x04000;
	if (nflags & FR_INQUE)
		oflags |= 0x08000;
	if (nflags & FR_LOGBODY)
		oflags |= 0x10000;
	if (nflags & FR_LOGFIRST)
		oflags |= 0x20000;
	if (nflags & FR_LOGORBLOCK)
		oflags |= 0x40000;
	if (nflags & FR_FRSTRICT)
		oflags |= 0x100000;
	if (nflags & FR_STSTRICT)
		oflags |= 0x200000;
	if (nflags & FR_NEWISN)
		oflags |= 0x400000;
	if (nflags & FR_NOICMPERR)
		oflags |= 0x800000;
	if (nflags & FR_STATESYNC)
		oflags |= 0x1000000;
	if (nflags & FR_NOMATCH)
		oflags |= 0x8000000;
	if (nflags & FR_COPIED)
		oflags |= 0x40000000;
	if (nflags & FR_INACTIVE)
		oflags |= 0x80000000;

	return oflags;
}


static void
frentry_current_to_4_1_34(void *current, frentry_4_1_34_t *old)
{
	frentry_t *fr = (frentry_t *)current;

	old->fr_lock = fr->fr_lock;
	old->fr_next = fr->fr_next;
	old->fr_grp = (void *)fr->fr_grp;
	old->fr_isc = fr->fr_isc;
	old->fr_ifas[0] = fr->fr_ifas[0];
	old->fr_ifas[1] = fr->fr_ifas[1];
	old->fr_ifas[2] = fr->fr_ifas[2];
	old->fr_ifas[3] = fr->fr_ifas[3];
	old->fr_ptr = fr->fr_ptr;
	old->fr_comment = NULL;
	old->fr_ref = fr->fr_ref;
	old->fr_statecnt = fr->fr_statecnt;
	old->fr_hits = fr->fr_hits;
	old->fr_bytes = fr->fr_bytes;
	old->fr_lastpkt.tv_sec = fr->fr_lastpkt.tv_sec;
	old->fr_lastpkt.tv_usec = fr->fr_lastpkt.tv_usec;
	old->fr_curpps = fr->fr_curpps;
	old->fr_dun.fru_data = fr->fr_dun.fru_data;
	old->fr_func = fr->fr_func;
	old->fr_dsize = fr->fr_dsize;
	old->fr_pps = fr->fr_pps;
	old->fr_statemax = fr->fr_statemax;
	old->fr_flineno = fr->fr_flineno;
	old->fr_type = fr->fr_type;
	old->fr_flags = fr_frflags5to4(fr->fr_flags);
	old->fr_logtag = fr->fr_logtag;
	old->fr_collect = fr->fr_collect;
	old->fr_arg = fr->fr_arg;
	old->fr_loglevel = fr->fr_loglevel;
	old->fr_age[0] = fr->fr_age[0];
	old->fr_age[1] = fr->fr_age[1];
	if (fr->fr_family == AF_INET)
		old->fr_v = 4;
	if (fr->fr_family == AF_INET6)
		old->fr_v = 6;
	old->fr_icode = fr->fr_icode;
	old->fr_cksum = fr->fr_cksum;
	old->fr_tifs[0].ofd_ip6 = fr->fr_tifs[0].fd_ip6;
	old->fr_tifs[1].ofd_ip6 = fr->fr_tifs[0].fd_ip6;
	old->fr_dif.ofd_ip6 = fr->fr_dif.fd_ip6;
	if (fr->fr_ifnames[0] >= 0) {
		strncpy(old->fr_ifnames[0], fr->fr_names + fr->fr_ifnames[0],
			LIFNAMSIZ);
		old->fr_ifnames[0][LIFNAMSIZ - 1] = '\0';
	}
	if (fr->fr_ifnames[1] >= 0) {
		strncpy(old->fr_ifnames[1], fr->fr_names + fr->fr_ifnames[1],
			LIFNAMSIZ);
		old->fr_ifnames[1][LIFNAMSIZ - 1] = '\0';
	}
	if (fr->fr_ifnames[2] >= 0) {
		strncpy(old->fr_ifnames[2], fr->fr_names + fr->fr_ifnames[2],
			LIFNAMSIZ);
		old->fr_ifnames[2][LIFNAMSIZ - 1] = '\0';
	}
	if (fr->fr_ifnames[3] >= 0) {
		strncpy(old->fr_ifnames[3], fr->fr_names + fr->fr_ifnames[3],
			LIFNAMSIZ);
		old->fr_ifnames[3][LIFNAMSIZ - 1] = '\0';
	}
	if (fr->fr_tifs[0].fd_name >= 0) {
		strncpy(old->fr_tifs[0].fd_ifname,
			fr->fr_names + fr->fr_tifs[0].fd_name, LIFNAMSIZ);
		old->fr_tifs[0].fd_ifname[LIFNAMSIZ - 1] = '\0';
	}
	if (fr->fr_tifs[1].fd_name >= 0) {
		strncpy(old->fr_tifs[1].fd_ifname,
			fr->fr_names + fr->fr_tifs[1].fd_name, LIFNAMSIZ);
		old->fr_tifs[1].fd_ifname[LIFNAMSIZ - 1] = '\0';
	}
	if (fr->fr_dif.fd_name >= 0) {
		strncpy(old->fr_dif.fd_ifname,
			fr->fr_names + fr->fr_dif.fd_name, LIFNAMSIZ);
		old->fr_dif.fd_ifname[LIFNAMSIZ - 1] = '\0';
	}
	if (fr->fr_group >= 0) {
		strncpy(old->fr_group, fr->fr_names + fr->fr_group,
			FR_GROUPLEN);
		old->fr_group[FR_GROUPLEN - 1] = '\0';
	}
	if (fr->fr_grhead >= 0) {
		strncpy(old->fr_grhead, fr->fr_names + fr->fr_grhead,
			FR_GROUPLEN);
		old->fr_grhead[FR_GROUPLEN - 1] = '\0';
	}
}


static void
frentry_current_to_4_1_16(void *current, frentry_4_1_16_t *old)
{
	frentry_t *fr = (frentry_t *)current;

	old->fr_lock = fr->fr_lock;
	old->fr_next = fr->fr_next;
	old->fr_grp = (void *)fr->fr_grp;
	old->fr_isc = fr->fr_isc;
	old->fr_ifas[0] = fr->fr_ifas[0];
	old->fr_ifas[1] = fr->fr_ifas[1];
	old->fr_ifas[2] = fr->fr_ifas[2];
	old->fr_ifas[3] = fr->fr_ifas[3];
	old->fr_ptr = fr->fr_ptr;
	old->fr_comment = NULL;
	old->fr_ref = fr->fr_ref;
	old->fr_statecnt = fr->fr_statecnt;
	old->fr_hits = fr->fr_hits;
	old->fr_bytes = fr->fr_bytes;
	old->fr_lastpkt.tv_sec = fr->fr_lastpkt.tv_sec;
	old->fr_lastpkt.tv_usec = fr->fr_lastpkt.tv_usec;
	old->fr_curpps = fr->fr_curpps;
	old->fr_dun.fru_data = fr->fr_dun.fru_data;
	old->fr_func = fr->fr_func;
	old->fr_dsize = fr->fr_dsize;
	old->fr_pps = fr->fr_pps;
	old->fr_statemax = fr->fr_statemax;
	old->fr_flineno = fr->fr_flineno;
	old->fr_type = fr->fr_type;
	old->fr_flags = fr_frflags5to4(fr->fr_flags);
	old->fr_logtag = fr->fr_logtag;
	old->fr_collect = fr->fr_collect;
	old->fr_arg = fr->fr_arg;
	old->fr_loglevel = fr->fr_loglevel;
	old->fr_age[0] = fr->fr_age[0];
	old->fr_age[1] = fr->fr_age[1];
	if (old->fr_v == 4)
		fr->fr_family = AF_INET;
	if (old->fr_v == 6)
		fr->fr_family = AF_INET6;
	old->fr_icode = fr->fr_icode;
	old->fr_cksum = fr->fr_cksum;
	old->fr_tifs[0].ofd_ip6 = fr->fr_tifs[0].fd_ip6;
	old->fr_tifs[1].ofd_ip6 = fr->fr_tifs[0].fd_ip6;
	old->fr_dif.ofd_ip6 = fr->fr_dif.fd_ip6;
	if (fr->fr_ifnames[0] >= 0) {
		strncpy(old->fr_ifnames[0], fr->fr_names + fr->fr_ifnames[0],
			LIFNAMSIZ);
		old->fr_ifnames[0][LIFNAMSIZ - 1] = '\0';
	}
	if (fr->fr_ifnames[1] >= 0) {
		strncpy(old->fr_ifnames[1], fr->fr_names + fr->fr_ifnames[1],
			LIFNAMSIZ);
		old->fr_ifnames[1][LIFNAMSIZ - 1] = '\0';
	}
	if (fr->fr_ifnames[2] >= 0) {
		strncpy(old->fr_ifnames[2], fr->fr_names + fr->fr_ifnames[2],
			LIFNAMSIZ);
		old->fr_ifnames[2][LIFNAMSIZ - 1] = '\0';
	}
	if (fr->fr_ifnames[3] >= 0) {
		strncpy(old->fr_ifnames[3], fr->fr_names + fr->fr_ifnames[3],
			LIFNAMSIZ);
		old->fr_ifnames[3][LIFNAMSIZ - 1] = '\0';
	}
	if (fr->fr_tifs[0].fd_name >= 0) {
		strncpy(old->fr_tifs[0].fd_ifname,
			fr->fr_names + fr->fr_tifs[0].fd_name, LIFNAMSIZ);
		old->fr_tifs[0].fd_ifname[LIFNAMSIZ - 1] = '\0';
	}
	if (fr->fr_tifs[1].fd_name >= 0) {
		strncpy(old->fr_tifs[1].fd_ifname,
			fr->fr_names + fr->fr_tifs[1].fd_name, LIFNAMSIZ);
		old->fr_tifs[1].fd_ifname[LIFNAMSIZ - 1] = '\0';
	}
	if (fr->fr_dif.fd_name >= 0) {
		strncpy(old->fr_dif.fd_ifname,
			fr->fr_names + fr->fr_dif.fd_name, LIFNAMSIZ);
		old->fr_dif.fd_ifname[LIFNAMSIZ - 1] = '\0';
	}
	if (fr->fr_group >= 0) {
		strncpy(old->fr_group, fr->fr_names + fr->fr_group,
			FR_GROUPLEN);
		old->fr_group[FR_GROUPLEN - 1] = '\0';
	}
	if (fr->fr_grhead >= 0) {
		strncpy(old->fr_grhead, fr->fr_names + fr->fr_grhead,
			FR_GROUPLEN);
		old->fr_grhead[FR_GROUPLEN - 1] = '\0';
	}
}


static void
frentry_current_to_4_1_0(void *current, frentry_4_1_0_t *old)
{
	frentry_t *fr = (frentry_t *)current;

	old->fr_lock = fr->fr_lock;
	old->fr_next = fr->fr_next;
	old->fr_grp = (void *)fr->fr_grp;
	old->fr_isc = fr->fr_isc;
	old->fr_ifas[0] = fr->fr_ifas[0];
	old->fr_ifas[1] = fr->fr_ifas[1];
	old->fr_ifas[2] = fr->fr_ifas[2];
	old->fr_ifas[3] = fr->fr_ifas[3];
	old->fr_ptr = fr->fr_ptr;
	old->fr_comment = NULL;
	old->fr_ref = fr->fr_ref;
	old->fr_statecnt = fr->fr_statecnt;
	old->fr_hits = fr->fr_hits;
	old->fr_bytes = fr->fr_bytes;
	old->fr_lastpkt.tv_sec = fr->fr_lastpkt.tv_sec;
	old->fr_lastpkt.tv_usec = fr->fr_lastpkt.tv_usec;
	old->fr_curpps = fr->fr_curpps;
	old->fr_dun.fru_data = fr->fr_dun.fru_data;
	old->fr_func = fr->fr_func;
	old->fr_dsize = fr->fr_dsize;
	old->fr_pps = fr->fr_pps;
	old->fr_statemax = fr->fr_statemax;
	old->fr_flineno = fr->fr_flineno;
	old->fr_type = fr->fr_type;
	old->fr_flags = fr_frflags5to4(fr->fr_flags);
	old->fr_logtag = fr->fr_logtag;
	old->fr_collect = fr->fr_collect;
	old->fr_arg = fr->fr_arg;
	old->fr_loglevel = fr->fr_loglevel;
	old->fr_age[0] = fr->fr_age[0];
	old->fr_age[1] = fr->fr_age[1];
	if (old->fr_v == 4)
		fr->fr_family = AF_INET;
	if (old->fr_v == 6)
		fr->fr_family = AF_INET6;
	old->fr_icode = fr->fr_icode;
	old->fr_cksum = fr->fr_cksum;
	old->fr_tifs[0].ofd_ip6 = fr->fr_tifs[0].fd_ip6;
	old->fr_tifs[1].ofd_ip6 = fr->fr_tifs[0].fd_ip6;
	old->fr_dif.ofd_ip6 = fr->fr_dif.fd_ip6;
	if (fr->fr_ifnames[0] >= 0) {
		strncpy(old->fr_ifnames[0], fr->fr_names + fr->fr_ifnames[0],
			LIFNAMSIZ);
		old->fr_ifnames[0][LIFNAMSIZ - 1] = '\0';
	}
	if (fr->fr_ifnames[1] >= 0) {
		strncpy(old->fr_ifnames[1], fr->fr_names + fr->fr_ifnames[1],
			LIFNAMSIZ);
		old->fr_ifnames[1][LIFNAMSIZ - 1] = '\0';
	}
	if (fr->fr_ifnames[2] >= 0) {
		strncpy(old->fr_ifnames[2], fr->fr_names + fr->fr_ifnames[2],
			LIFNAMSIZ);
		old->fr_ifnames[2][LIFNAMSIZ - 1] = '\0';
	}
	if (fr->fr_ifnames[3] >= 0) {
		strncpy(old->fr_ifnames[3], fr->fr_names + fr->fr_ifnames[3],
			LIFNAMSIZ);
		old->fr_ifnames[3][LIFNAMSIZ - 1] = '\0';
	}
	if (fr->fr_tifs[0].fd_name >= 0) {
		strncpy(old->fr_tifs[0].fd_ifname,
			fr->fr_names + fr->fr_tifs[0].fd_name, LIFNAMSIZ);
		old->fr_tifs[0].fd_ifname[LIFNAMSIZ - 1] = '\0';
	}
	if (fr->fr_tifs[1].fd_name >= 0) {
		strncpy(old->fr_tifs[1].fd_ifname,
			fr->fr_names + fr->fr_tifs[1].fd_name, LIFNAMSIZ);
		old->fr_tifs[1].fd_ifname[LIFNAMSIZ - 1] = '\0';
	}
	if (fr->fr_dif.fd_name >= 0) {
		strncpy(old->fr_dif.fd_ifname,
			fr->fr_names + fr->fr_dif.fd_name, LIFNAMSIZ);
		old->fr_dif.fd_ifname[LIFNAMSIZ - 1] = '\0';
	}
	if (fr->fr_group >= 0) {
		strncpy(old->fr_group, fr->fr_names + fr->fr_group,
			FR_GROUPLEN);
		old->fr_group[FR_GROUPLEN - 1] = '\0';
	}
	if (fr->fr_grhead >= 0) {
		strncpy(old->fr_grhead, fr->fr_names + fr->fr_grhead,
			FR_GROUPLEN);
		old->fr_grhead[FR_GROUPLEN - 1] = '\0';
	}
}


static void
fr_info_current_to_4_1_24(void *current, fr_info_4_1_24_t *old)
{
	fr_info_t *fin = (fr_info_t *)current;

	old->fin_ifp = fin->fin_ifp;
	ipf_v5iptov4(&fin->fin_fi, &old->fin_fi);
	bcopy(&fin->fin_dat, &old->fin_dat, sizeof(fin->fin_dat));
	old->fin_out = fin->fin_out;
	old->fin_rev = fin->fin_rev;
	old->fin_hlen = fin->fin_hlen;
	old->ofin_tcpf = fin->fin_tcpf;
	old->fin_icode = fin->fin_icode;
	old->fin_rule = fin->fin_rule;
	bcopy(fin->fin_group, old->fin_group, sizeof(fin->fin_group));
	old->fin_fr = fin->fin_fr;
	old->fin_dp = fin->fin_dp;
	old->fin_dlen = fin->fin_dlen;
	old->fin_plen = fin->fin_plen;
	old->fin_ipoff = fin->fin_ipoff;
	old->fin_id = fin->fin_id;
	old->fin_off = fin->fin_off;
	old->fin_depth = fin->fin_depth;
	old->fin_error = fin->fin_error;
	old->fin_cksum = fin->fin_cksum;
	old->fin_state = NULL;
	old->fin_nat = NULL;
	old->fin_nattag = fin->fin_nattag;
	old->fin_exthdr = NULL;
	old->ofin_ip = fin->fin_ip;
	old->fin_mp = fin->fin_mp;
	old->fin_m = fin->fin_m;
#ifdef  MENTAT
	old->fin_qfm = fin->fin_qfm;
	old->fin_qpi = fin->fin_qpi;
	old->fin_ifname[0] = '\0';
#endif
#ifdef  __sgi
	old->fin_hbuf = fin->fin_hbuf;
#endif
}


static void
fr_info_current_to_4_1_23(void *current, fr_info_4_1_23_t *old)
{
	fr_info_t *fin = (fr_info_t *)current;

	old->fin_ifp = fin->fin_ifp;
	ipf_v5iptov4(&fin->fin_fi, &old->fin_fi);
	bcopy(&fin->fin_dat, &old->fin_dat, sizeof(fin->fin_dat));
	old->fin_out = fin->fin_out;
	old->fin_rev = fin->fin_rev;
	old->fin_hlen = fin->fin_hlen;
	old->ofin_tcpf = fin->fin_tcpf;
	old->fin_icode = fin->fin_icode;
	old->fin_rule = fin->fin_rule;
	bcopy(fin->fin_group, old->fin_group, sizeof(fin->fin_group));
	old->fin_fr = fin->fin_fr;
	old->fin_dp = fin->fin_dp;
	old->fin_dlen = fin->fin_dlen;
	old->fin_plen = fin->fin_plen;
	old->fin_ipoff = fin->fin_ipoff;
	old->fin_id = fin->fin_id;
	old->fin_off = fin->fin_off;
	old->fin_depth = fin->fin_depth;
	old->fin_error = fin->fin_error;
	old->fin_state = NULL;
	old->fin_nat = NULL;
	old->fin_nattag = fin->fin_nattag;
	old->ofin_ip = fin->fin_ip;
	old->fin_mp = fin->fin_mp;
	old->fin_m = fin->fin_m;
#ifdef  MENTAT
	old->fin_qfm = fin->fin_qfm;
	old->fin_qpi = fin->fin_qpi;
	old->fin_ifname[0] = '\0';
#endif
#ifdef  __sgi
	old->fin_hbuf = fin->fin_hbuf;
#endif
}


static void
fr_info_current_to_4_1_11(void *current, fr_info_4_1_11_t *old)
{
	fr_info_t *fin = (fr_info_t *)current;

	old->fin_ifp = fin->fin_ifp;
	ipf_v5iptov4(&fin->fin_fi, &old->fin_fi);
	bcopy(&fin->fin_dat, &old->fin_dat, sizeof(fin->fin_dat));
	old->fin_out = fin->fin_out;
	old->fin_rev = fin->fin_rev;
	old->fin_hlen = fin->fin_hlen;
	old->ofin_tcpf = fin->fin_tcpf;
	old->fin_icode = fin->fin_icode;
	old->fin_rule = fin->fin_rule;
	bcopy(fin->fin_group, old->fin_group, sizeof(fin->fin_group));
	old->fin_fr = fin->fin_fr;
	old->fin_dp = fin->fin_dp;
	old->fin_dlen = fin->fin_dlen;
	old->fin_plen = fin->fin_plen;
	old->fin_ipoff = fin->fin_ipoff;
	old->fin_id = fin->fin_id;
	old->fin_off = fin->fin_off;
	old->fin_depth = fin->fin_depth;
	old->fin_error = fin->fin_error;
	old->fin_state = NULL;
	old->fin_nat = NULL;
	old->fin_nattag = fin->fin_nattag;
	old->ofin_ip = fin->fin_ip;
	old->fin_mp = fin->fin_mp;
	old->fin_m = fin->fin_m;
#ifdef  MENTAT
	old->fin_qfm = fin->fin_qfm;
	old->fin_qpi = fin->fin_qpi;
	old->fin_ifname[0] = '\0';
#endif
#ifdef  __sgi
	old->fin_hbuf = fin->fin_hbuf;
#endif
}


static void
frauth_current_to_4_1_29(void *current, frauth_4_1_29_t *old)
{
	frauth_t *fra = (frauth_t *)current;

	old->fra_age = fra->fra_age;
	old->fra_len = fra->fra_len;
	old->fra_index = fra->fra_index;
	old->fra_pass = fra->fra_pass;
	fr_info_current_to_4_1_24(&fra->fra_info, &old->fra_info);
	old->fra_buf = fra->fra_buf;
	old->fra_flx = fra->fra_flx;
#ifdef	MENTAT
	old->fra_q = fra->fra_q;
	old->fra_m = fra->fra_m;
#endif
}


static void
frauth_current_to_4_1_24(void *current, frauth_4_1_24_t *old)
{
	frauth_t *fra = (frauth_t *)current;

	old->fra_age = fra->fra_age;
	old->fra_len = fra->fra_len;
	old->fra_index = fra->fra_index;
	old->fra_pass = fra->fra_pass;
	fr_info_current_to_4_1_24(&fra->fra_info, &old->fra_info);
	old->fra_buf = fra->fra_buf;
#ifdef	MENTAT
	old->fra_q = fra->fra_q;
	old->fra_m = fra->fra_m;
#endif
}


static void
frauth_current_to_4_1_23(void *current, frauth_4_1_23_t *old)
{
	frauth_t *fra = (frauth_t *)current;

	old->fra_age = fra->fra_age;
	old->fra_len = fra->fra_len;
	old->fra_index = fra->fra_index;
	old->fra_pass = fra->fra_pass;
	fr_info_current_to_4_1_23(&fra->fra_info, &old->fra_info);
	old->fra_buf = fra->fra_buf;
#ifdef	MENTAT
	old->fra_q = fra->fra_q;
	old->fra_m = fra->fra_m;
#endif
}


static void
frauth_current_to_4_1_11(void *current, frauth_4_1_11_t *old)
{
	frauth_t *fra = (frauth_t *)current;

	old->fra_age = fra->fra_age;
	old->fra_len = fra->fra_len;
	old->fra_index = fra->fra_index;
	old->fra_pass = fra->fra_pass;
	fr_info_current_to_4_1_11(&fra->fra_info, &old->fra_info);
	old->fra_buf = fra->fra_buf;
#ifdef	MENTAT
	old->fra_q = fra->fra_q;
	old->fra_m = fra->fra_m;
#endif
}


static void
ipnat_current_to_4_1_14(void *current, ipnat_4_1_14_t *old)
{
	ipnat_t *np = (ipnat_t *)current;

	old->in_next = np->in_next;
	old->in_rnext = np->in_rnext;
	old->in_prnext = np->in_prnext;
	old->in_mnext = np->in_mnext;
	old->in_pmnext = np->in_pmnext;
	old->in_tqehead[0] = np->in_tqehead[0];
	old->in_tqehead[1] = np->in_tqehead[1];
	old->in_ifps[0] = np->in_ifps[0];
	old->in_ifps[1] = np->in_ifps[1];
	old->in_apr = np->in_apr;
	old->in_comment = np->in_comment;
	old->in_space = np->in_space;
	old->in_hits = np->in_hits;
	old->in_use = np->in_use;
	old->in_hv = np->in_hv[0];
	old->in_flineno = np->in_flineno;
	if (old->in_redir == NAT_REDIRECT)
		old->in_pnext = np->in_dpnext;
	else
		old->in_pnext = np->in_spnext;
	old->in_v = np->in_v[0];
	old->in_flags = np->in_flags;
	old->in_mssclamp = np->in_mssclamp;
	old->in_age[0] = np->in_age[0];
	old->in_age[1] = np->in_age[1];
	old->in_redir = np->in_redir;
	old->in_p = np->in_pr[0];
	if (np->in_redir == NAT_REDIRECT) {
		old->in_next6 = np->in_ndst.na_nextaddr;
		old->in_in[0] = np->in_ndst.na_addr[0];
		old->in_in[1] = np->in_ndst.na_addr[1];
		old->in_out[0] = np->in_odst.na_addr[0];
		old->in_out[1] = np->in_odst.na_addr[1];
		old->in_src[0] = np->in_osrc.na_addr[0];
		old->in_src[1] = np->in_osrc.na_addr[1];
	} else {
		old->in_next6 = np->in_nsrc.na_nextaddr;
		old->in_out[0] = np->in_nsrc.na_addr[0];
		old->in_out[1] = np->in_nsrc.na_addr[1];
		old->in_in[0] = np->in_osrc.na_addr[0];
		old->in_in[1] = np->in_osrc.na_addr[1];
		old->in_src[0] = np->in_odst.na_addr[0];
		old->in_src[1] = np->in_odst.na_addr[1];
	}
	ipfv5tuctov4(&np->in_tuc, &old->in_tuc);
	if (np->in_redir == NAT_REDIRECT) {
		old->in_port[0] = np->in_dpmin;
		old->in_port[1] = np->in_dpmax;
	} else {
		old->in_port[0] = np->in_spmin;
		old->in_port[1] = np->in_spmax;
	}
	old->in_ppip = np->in_ppip;
	old->in_ippip = np->in_ippip;
	bcopy(&np->in_tag, &old->in_tag, sizeof(np->in_tag));

	if (np->in_ifnames[0] >= 0) {
		strncpy(old->in_ifnames[0], np->in_names + np->in_ifnames[0],
			LIFNAMSIZ);
		old->in_ifnames[0][LIFNAMSIZ - 1] = '\0';
	}
	if (np->in_ifnames[1] >= 0) {
		strncpy(old->in_ifnames[1], np->in_names + np->in_ifnames[1],
			LIFNAMSIZ);
		old->in_ifnames[1][LIFNAMSIZ - 1] = '\0';
	}
	if (np->in_plabel >= 0) {
		strncpy(old->in_plabel, np->in_names + np->in_plabel,
			APR_LABELLEN);
		old->in_plabel[APR_LABELLEN - 1] = '\0';
	}
}


static void
ipnat_current_to_4_1_0(void *current, ipnat_4_1_0_t *old)
{
	ipnat_t *np = (ipnat_t *)current;

	old->in_next = np->in_next;
	old->in_rnext = np->in_rnext;
	old->in_prnext = np->in_prnext;
	old->in_mnext = np->in_mnext;
	old->in_pmnext = np->in_pmnext;
	old->in_tqehead[0] = np->in_tqehead[0];
	old->in_tqehead[1] = np->in_tqehead[1];
	old->in_ifps[0] = np->in_ifps[0];
	old->in_ifps[1] = np->in_ifps[1];
	old->in_apr = np->in_apr;
	old->in_comment = np->in_comment;
	old->in_space = np->in_space;
	old->in_hits = np->in_hits;
	old->in_use = np->in_use;
	old->in_hv = np->in_hv[0];
	old->in_flineno = np->in_flineno;
	if (old->in_redir == NAT_REDIRECT)
		old->in_pnext = np->in_dpnext;
	else
		old->in_pnext = np->in_spnext;
	old->in_v = np->in_v[0];
	old->in_flags = np->in_flags;
	old->in_mssclamp = np->in_mssclamp;
	old->in_age[0] = np->in_age[0];
	old->in_age[1] = np->in_age[1];
	old->in_redir = np->in_redir;
	old->in_p = np->in_pr[0];
	if (np->in_redir == NAT_REDIRECT) {
		old->in_next6 = np->in_ndst.na_nextaddr;
		old->in_in[0] = np->in_ndst.na_addr[0];
		old->in_in[1] = np->in_ndst.na_addr[1];
		old->in_out[0] = np->in_odst.na_addr[0];
		old->in_out[1] = np->in_odst.na_addr[1];
		old->in_src[0] = np->in_osrc.na_addr[0];
		old->in_src[1] = np->in_osrc.na_addr[1];
	} else {
		old->in_next6 = np->in_nsrc.na_nextaddr;
		old->in_out[0] = np->in_nsrc.na_addr[0];
		old->in_out[1] = np->in_nsrc.na_addr[1];
		old->in_in[0] = np->in_osrc.na_addr[0];
		old->in_in[1] = np->in_osrc.na_addr[1];
		old->in_src[0] = np->in_odst.na_addr[0];
		old->in_src[1] = np->in_odst.na_addr[1];
	}
	ipfv5tuctov4(&np->in_tuc, &old->in_tuc);
	if (np->in_redir == NAT_REDIRECT) {
		old->in_port[0] = np->in_dpmin;
		old->in_port[1] = np->in_dpmax;
	} else {
		old->in_port[0] = np->in_spmin;
		old->in_port[1] = np->in_spmax;
	}
	old->in_ppip = np->in_ppip;
	old->in_ippip = np->in_ippip;
	bcopy(&np->in_tag, &old->in_tag, sizeof(np->in_tag));

	if (np->in_ifnames[0] >= 0) {
		strncpy(old->in_ifnames[0], np->in_names + np->in_ifnames[0],
			LIFNAMSIZ);
		old->in_ifnames[0][LIFNAMSIZ - 1] = '\0';
	}
	if (np->in_ifnames[1] >= 0) {
		strncpy(old->in_ifnames[1], np->in_names + np->in_ifnames[1],
			LIFNAMSIZ);
		old->in_ifnames[1][LIFNAMSIZ - 1] = '\0';
	}
	if (np->in_plabel >= 0) {
		strncpy(old->in_plabel, np->in_names + np->in_plabel,
			APR_LABELLEN);
		old->in_plabel[APR_LABELLEN - 1] = '\0';
	}
}


static void
ipstate_current_to_4_1_16(void *current, ipstate_4_1_16_t *old)
{
	ipstate_t *is = (ipstate_t *)current;

	old->is_lock = is->is_lock;
	old->is_next = is->is_next;
	old->is_pnext = is->is_pnext;
	old->is_hnext = is->is_hnext;
	old->is_phnext = is->is_phnext;
	old->is_me = is->is_me;
	old->is_ifp[0] = is->is_ifp[0];
	old->is_ifp[1] = is->is_ifp[1];
	old->is_sync = is->is_sync;
	old->is_rule = is->is_rule;
	old->is_tqehead[0] = is->is_tqehead[0];
	old->is_tqehead[1] = is->is_tqehead[1];
	old->is_isc = is->is_isc;
	old->is_pkts[0] = is->is_pkts[0];
	old->is_pkts[1] = is->is_pkts[1];
	old->is_pkts[2] = is->is_pkts[2];
	old->is_pkts[3] = is->is_pkts[3];
	old->is_bytes[0] = is->is_bytes[0];
	old->is_bytes[1] = is->is_bytes[1];
	old->is_bytes[2] = is->is_bytes[2];
	old->is_bytes[3] = is->is_bytes[3];
	old->is_icmppkts[0] = is->is_icmppkts[0];
	old->is_icmppkts[1] = is->is_icmppkts[1];
	old->is_icmppkts[2] = is->is_icmppkts[2];
	old->is_icmppkts[3] = is->is_icmppkts[3];
	old->is_sti = is->is_sti;
	old->is_frage[0] = is->is_frage[0];
	old->is_frage[1] = is->is_frage[1];
	old->is_ref = is->is_ref;
	old->is_isninc[0] = is->is_isninc[0];
	old->is_isninc[1] = is->is_isninc[1];
	old->is_sumd[0] = is->is_sumd[0];
	old->is_sumd[1] = is->is_sumd[1];
	old->is_src = is->is_src;
	old->is_dst = is->is_dst;
	old->is_pass = is->is_pass;
	old->is_p = is->is_p;
	old->is_v = is->is_v;
	old->is_hv = is->is_hv;
	old->is_tag = is->is_tag;
	old->is_opt[0] = is->is_opt[0];
	old->is_opt[1] = is->is_opt[1];
	old->is_optmsk[0] = is->is_optmsk[0];
	old->is_optmsk[1] = is->is_optmsk[1];
	old->is_sec = is->is_sec;
	old->is_secmsk = is->is_secmsk;
	old->is_auth = is->is_auth;
	old->is_authmsk = is->is_authmsk;
	ipf_v5tcpinfoto4(&is->is_tcp, &old->is_tcp);
	old->is_flags = is->is_flags;
	old->is_flx[0][0] = is->is_flx[0][0];
	old->is_flx[0][1] = is->is_flx[0][1];
	old->is_flx[1][0] = is->is_flx[1][0];
	old->is_flx[1][1] = is->is_flx[1][1];
	old->is_rulen = is->is_rulen;
	old->is_s0[0] = is->is_s0[0];
	old->is_s0[1] = is->is_s0[1];
	old->is_smsk[0] = is->is_smsk[0];
	old->is_smsk[1] = is->is_smsk[1];
	bcopy(is->is_group, old->is_group, sizeof(is->is_group));
	bcopy(is->is_sbuf, old->is_sbuf, sizeof(is->is_sbuf));
	bcopy(is->is_ifname, old->is_ifname, sizeof(is->is_ifname));
}


static void
ipstate_current_to_4_1_0(void *current, ipstate_4_1_0_t *old)
{
	ipstate_t *is = (ipstate_t *)current;

	old->is_lock = is->is_lock;
	old->is_next = is->is_next;
	old->is_pnext = is->is_pnext;
	old->is_hnext = is->is_hnext;
	old->is_phnext = is->is_phnext;
	old->is_me = is->is_me;
	old->is_ifp[0] = is->is_ifp[0];
	old->is_ifp[1] = is->is_ifp[1];
	old->is_sync = is->is_sync;
	bzero(&old->is_nat, sizeof(old->is_nat));
	old->is_rule = is->is_rule;
	old->is_tqehead[0] = is->is_tqehead[0];
	old->is_tqehead[1] = is->is_tqehead[1];
	old->is_isc = is->is_isc;
	old->is_pkts[0] = is->is_pkts[0];
	old->is_pkts[1] = is->is_pkts[1];
	old->is_pkts[2] = is->is_pkts[2];
	old->is_pkts[3] = is->is_pkts[3];
	old->is_bytes[0] = is->is_bytes[0];
	old->is_bytes[1] = is->is_bytes[1];
	old->is_bytes[2] = is->is_bytes[2];
	old->is_bytes[3] = is->is_bytes[3];
	old->is_icmppkts[0] = is->is_icmppkts[0];
	old->is_icmppkts[1] = is->is_icmppkts[1];
	old->is_icmppkts[2] = is->is_icmppkts[2];
	old->is_icmppkts[3] = is->is_icmppkts[3];
	old->is_sti = is->is_sti;
	old->is_frage[0] = is->is_frage[0];
	old->is_frage[1] = is->is_frage[1];
	old->is_ref = is->is_ref;
	old->is_isninc[0] = is->is_isninc[0];
	old->is_isninc[1] = is->is_isninc[1];
	old->is_sumd[0] = is->is_sumd[0];
	old->is_sumd[1] = is->is_sumd[1];
	old->is_src = is->is_src;
	old->is_dst = is->is_dst;
	old->is_pass = is->is_pass;
	old->is_p = is->is_p;
	old->is_v = is->is_v;
	old->is_hv = is->is_hv;
	old->is_tag = is->is_tag;
	old->is_opt[0] = is->is_opt[0];
	old->is_opt[1] = is->is_opt[1];
	old->is_optmsk[0] = is->is_optmsk[0];
	old->is_optmsk[1] = is->is_optmsk[1];
	old->is_sec = is->is_sec;
	old->is_secmsk = is->is_secmsk;
	old->is_auth = is->is_auth;
	old->is_authmsk = is->is_authmsk;
	ipf_v5tcpinfoto4(&is->is_tcp, &old->is_tcp);
	old->is_flags = is->is_flags;
	old->is_flx[0][0] = is->is_flx[0][0];
	old->is_flx[0][1] = is->is_flx[0][1];
	old->is_flx[1][0] = is->is_flx[1][0];
	old->is_flx[1][1] = is->is_flx[1][1];
	old->is_rulen = is->is_rulen;
	old->is_s0[0] = is->is_s0[0];
	old->is_s0[1] = is->is_s0[1];
	old->is_smsk[0] = is->is_smsk[0];
	old->is_smsk[1] = is->is_smsk[1];
	bcopy(is->is_group, old->is_group, sizeof(is->is_group));
	bcopy(is->is_sbuf, old->is_sbuf, sizeof(is->is_sbuf));
	bcopy(is->is_ifname, old->is_ifname, sizeof(is->is_ifname));
}


static void
ips_stat_current_to_4_1_21(void *current, ips_stat_4_1_21_t *old)
{
	ips_stat_t *st = (ips_stat_t *)current;

	old->iss_hits = st->iss_hits;
	old->iss_miss = st->iss_check_miss;
	old->iss_max = st->iss_max;
	old->iss_maxref = st->iss_max_ref;
	old->iss_tcp = st->iss_proto[IPPROTO_TCP];
	old->iss_udp = st->iss_proto[IPPROTO_UDP];
	old->iss_icmp = st->iss_proto[IPPROTO_ICMP];
	old->iss_nomem = st->iss_nomem;
	old->iss_expire = st->iss_expire;
	old->iss_fin = st->iss_fin;
	old->iss_active = st->iss_active;
	old->iss_logged = st->iss_log_ok;
	old->iss_logfail = st->iss_log_fail;
	old->iss_inuse = st->iss_inuse;
	old->iss_wild = st->iss_wild;
	old->iss_ticks = st->iss_ticks;
	old->iss_bucketfull = st->iss_bucket_full;
	old->iss_statesize = st->iss_state_size;
	old->iss_statemax = st->iss_state_max;
	old->iss_table = st->iss_table;
	old->iss_list = st->iss_list;
	old->iss_bucketlen = (void *)st->iss_bucketlen;
	old->iss_tcptab = st->iss_tcptab;
}


static void
ips_stat_current_to_4_1_0(void *current, ips_stat_4_1_0_t *old)
{
	ips_stat_t *st = (ips_stat_t *)current;

	old->iss_hits = st->iss_hits;
	old->iss_miss = st->iss_check_miss;
	old->iss_max = st->iss_max;
	old->iss_maxref = st->iss_max_ref;
	old->iss_tcp = st->iss_proto[IPPROTO_TCP];
	old->iss_udp = st->iss_proto[IPPROTO_UDP];
	old->iss_icmp = st->iss_proto[IPPROTO_ICMP];
	old->iss_nomem = st->iss_nomem;
	old->iss_expire = st->iss_expire;
	old->iss_fin = st->iss_fin;
	old->iss_active = st->iss_active;
	old->iss_logged = st->iss_log_ok;
	old->iss_logfail = st->iss_log_fail;
	old->iss_inuse = st->iss_inuse;
	old->iss_wild = st->iss_wild;
	old->iss_ticks = st->iss_ticks;
	old->iss_bucketfull = st->iss_bucket_full;
	old->iss_statesize = st->iss_state_size;
	old->iss_statemax = st->iss_state_max;
	old->iss_table = st->iss_table;
	old->iss_list = st->iss_list;
	old->iss_bucketlen = (void *)st->iss_bucketlen;
}


static void
nat_save_current_to_4_1_16(void *current, nat_save_4_1_16_t *old)
{
	nat_save_t *nats = (nat_save_t *)current;

	old->ipn_next = nats->ipn_next;
	bcopy(&nats->ipn_nat, &old->ipn_nat, sizeof(old->ipn_nat));
	bcopy(&nats->ipn_ipnat, &old->ipn_ipnat, sizeof(old->ipn_ipnat));
	frentry_current_to_4_1_16(&nats->ipn_fr, &old->ipn_fr);
	old->ipn_dsize = nats->ipn_dsize;
	bcopy(nats->ipn_data, old->ipn_data, sizeof(nats->ipn_data));
}


static void
nat_save_current_to_4_1_14(void *current, nat_save_4_1_14_t *old)
{
	nat_save_t *nats = (nat_save_t *)current;

	old->ipn_next = nats->ipn_next;
	bcopy(&nats->ipn_nat, &old->ipn_nat, sizeof(old->ipn_nat));
	bcopy(&nats->ipn_ipnat, &old->ipn_ipnat, sizeof(old->ipn_ipnat));
	frentry_current_to_4_1_0(&nats->ipn_fr, &old->ipn_fr);
	old->ipn_dsize = nats->ipn_dsize;
	bcopy(nats->ipn_data, old->ipn_data, sizeof(nats->ipn_data));
}


static void
nat_save_current_to_4_1_3(void *current, nat_save_4_1_3_t *old)
{
	nat_save_t *nats = (nat_save_t *)current;

	old->ipn_next = nats->ipn_next;
	bcopy(&nats->ipn_nat, &old->ipn_nat, sizeof(old->ipn_nat));
	bcopy(&nats->ipn_ipnat, &old->ipn_ipnat, sizeof(old->ipn_ipnat));
	frentry_current_to_4_1_0(&nats->ipn_fr, &old->ipn_fr);
	old->ipn_dsize = nats->ipn_dsize;
	bcopy(nats->ipn_data, old->ipn_data, sizeof(nats->ipn_data));
}


static void
nat_current_to_4_1_25(void *current, nat_4_1_25_t *old)
{
	nat_t *nat = (nat_t *)current;

	old->nat_lock = nat->nat_lock;
	old->nat_next = (void *)nat->nat_next;
	old->nat_pnext = (void *)nat->nat_pnext;
	old->nat_hnext[0] = (void *)nat->nat_hnext[0];
	old->nat_hnext[1] = (void *)nat->nat_hnext[1];
	old->nat_phnext[0] = (void *)nat->nat_phnext[0];
	old->nat_phnext[1] = (void *)nat->nat_phnext[1];
	old->nat_hm = nat->nat_hm;
	old->nat_data = nat->nat_data;
	old->nat_me = (void *)nat->nat_me;
	old->nat_state = nat->nat_state;
	old->nat_aps = nat->nat_aps;
	old->nat_fr = nat->nat_fr;
	old->nat_ptr = (void *)nat->nat_ptr;
	old->nat_ifps[0] = nat->nat_ifps[0];
	old->nat_ifps[1] = nat->nat_ifps[1];
	old->nat_sync = nat->nat_sync;
	old->nat_tqe = nat->nat_tqe;
	old->nat_flags = nat->nat_flags;
	old->nat_sumd[0] = nat->nat_sumd[0];
	old->nat_sumd[1] = nat->nat_sumd[1];
	old->nat_ipsumd = nat->nat_ipsumd;
	old->nat_mssclamp = nat->nat_mssclamp;
	old->nat_pkts[0] = nat->nat_pkts[0];
	old->nat_pkts[1] = nat->nat_pkts[1];
	old->nat_bytes[0] = nat->nat_bytes[0];
	old->nat_bytes[1] = nat->nat_bytes[1];
	old->nat_ref = nat->nat_ref;
	old->nat_dir = nat->nat_dir;
	old->nat_p = nat->nat_pr[0];
	old->nat_use = nat->nat_use;
	old->nat_hv[0] = nat->nat_hv[0];
	old->nat_hv[1] = nat->nat_hv[1];
	old->nat_rev = nat->nat_rev;
	old->nat_redir = nat->nat_redir;
	bcopy(nat->nat_ifnames[0], old->nat_ifnames[0], LIFNAMSIZ);
	bcopy(nat->nat_ifnames[1], old->nat_ifnames[1], LIFNAMSIZ);

	if (nat->nat_redir == NAT_REDIRECT) {
		old->nat_inip6 = nat->nat_ndst6;
		old->nat_outip6 = nat->nat_odst6;
		old->nat_oip6 = nat->nat_osrc6;
		old->nat_un.nat_unt.ts_sport = nat->nat_ndport;
		old->nat_un.nat_unt.ts_dport = nat->nat_odport;
	} else {
		old->nat_inip6 = nat->nat_osrc6;
		old->nat_outip6 = nat->nat_nsrc6;
		old->nat_oip6 = nat->nat_odst6;
		old->nat_un.nat_unt.ts_sport = nat->nat_osport;
		old->nat_un.nat_unt.ts_dport = nat->nat_nsport;
	}
}


static void
nat_current_to_4_1_14(void *current, nat_4_1_14_t *old)
{
	nat_t *nat = (nat_t *)current;

	old->nat_lock = nat->nat_lock;
	old->nat_next = nat->nat_next;
	old->nat_pnext = NULL;
	old->nat_hnext[0] = NULL;
	old->nat_hnext[1] = NULL;
	old->nat_phnext[0] = NULL;
	old->nat_phnext[1] = NULL;
	old->nat_hm = nat->nat_hm;
	old->nat_data = nat->nat_data;
	old->nat_me = (void *)nat->nat_me;
	old->nat_state = nat->nat_state;
	old->nat_aps = nat->nat_aps;
	old->nat_fr = nat->nat_fr;
	old->nat_ptr = nat->nat_ptr;
	old->nat_ifps[0] = nat->nat_ifps[0];
	old->nat_ifps[1] = nat->nat_ifps[1];
	old->nat_sync = nat->nat_sync;
	old->nat_tqe = nat->nat_tqe;
	old->nat_flags = nat->nat_flags;
	old->nat_sumd[0] = nat->nat_sumd[0];
	old->nat_sumd[1] = nat->nat_sumd[1];
	old->nat_ipsumd = nat->nat_ipsumd;
	old->nat_mssclamp = nat->nat_mssclamp;
	old->nat_pkts[0] = nat->nat_pkts[0];
	old->nat_pkts[1] = nat->nat_pkts[1];
	old->nat_bytes[0] = nat->nat_bytes[0];
	old->nat_bytes[1] = nat->nat_bytes[1];
	old->nat_ref = nat->nat_ref;
	old->nat_dir = nat->nat_dir;
	old->nat_p = nat->nat_pr[0];
	old->nat_use = nat->nat_use;
	old->nat_hv[0] = nat->nat_hv[0];
	old->nat_hv[1] = nat->nat_hv[1];
	old->nat_rev = nat->nat_rev;
	bcopy(nat->nat_ifnames[0], old->nat_ifnames[0], LIFNAMSIZ);
	bcopy(nat->nat_ifnames[1], old->nat_ifnames[1], LIFNAMSIZ);

	if (nat->nat_redir == NAT_REDIRECT) {
		old->nat_inip6 = nat->nat_ndst6;
		old->nat_outip6 = nat->nat_odst6;
		old->nat_oip6 = nat->nat_osrc6;
		old->nat_un.nat_unt.ts_sport = nat->nat_ndport;
		old->nat_un.nat_unt.ts_dport = nat->nat_odport;
	} else {
		old->nat_inip6 = nat->nat_osrc6;
		old->nat_outip6 = nat->nat_nsrc6;
		old->nat_oip6 = nat->nat_odst6;
		old->nat_un.nat_unt.ts_sport = nat->nat_osport;
		old->nat_un.nat_unt.ts_dport = nat->nat_nsport;
	}
}


static void
nat_current_to_4_1_3(void *current, nat_4_1_3_t *old)
{
	nat_t *nat = (nat_t *)current;

	old->nat_lock = nat->nat_lock;
	old->nat_next = nat->nat_next;
	old->nat_pnext = NULL;
	old->nat_hnext[0] = NULL;
	old->nat_hnext[1] = NULL;
	old->nat_phnext[0] = NULL;
	old->nat_phnext[1] = NULL;
	old->nat_hm = nat->nat_hm;
	old->nat_data = nat->nat_data;
	old->nat_me = (void *)nat->nat_me;
	old->nat_state = nat->nat_state;
	old->nat_aps = nat->nat_aps;
	old->nat_fr = nat->nat_fr;
	old->nat_ptr = nat->nat_ptr;
	old->nat_ifps[0] = nat->nat_ifps[0];
	old->nat_ifps[1] = nat->nat_ifps[1];
	old->nat_sync = nat->nat_sync;
	old->nat_tqe = nat->nat_tqe;
	old->nat_flags = nat->nat_flags;
	old->nat_sumd[0] = nat->nat_sumd[0];
	old->nat_sumd[1] = nat->nat_sumd[1];
	old->nat_ipsumd = nat->nat_ipsumd;
	old->nat_mssclamp = nat->nat_mssclamp;
	old->nat_pkts[0] = nat->nat_pkts[0];
	old->nat_pkts[1] = nat->nat_pkts[1];
	old->nat_bytes[0] = nat->nat_bytes[0];
	old->nat_bytes[1] = nat->nat_bytes[1];
	old->nat_ref = nat->nat_ref;
	old->nat_dir = nat->nat_dir;
	old->nat_p = nat->nat_pr[0];
	old->nat_use = nat->nat_use;
	old->nat_hv[0] = nat->nat_hv[0];
	old->nat_hv[1] = nat->nat_hv[1];
	old->nat_rev = nat->nat_rev;
	bcopy(nat->nat_ifnames[0], old->nat_ifnames[0], LIFNAMSIZ);
	bcopy(nat->nat_ifnames[1], old->nat_ifnames[1], LIFNAMSIZ);

	if (nat->nat_redir == NAT_REDIRECT) {
		old->nat_inip6 = nat->nat_ndst6;
		old->nat_outip6 = nat->nat_odst6;
		old->nat_oip6 = nat->nat_osrc6;
		old->nat_un.nat_unt.ts_sport = nat->nat_ndport;
		old->nat_un.nat_unt.ts_dport = nat->nat_odport;
	} else {
		old->nat_inip6 = nat->nat_osrc6;
		old->nat_outip6 = nat->nat_nsrc6;
		old->nat_oip6 = nat->nat_odst6;
		old->nat_un.nat_unt.ts_sport = nat->nat_osport;
		old->nat_un.nat_unt.ts_dport = nat->nat_nsport;
	}
}

#endif /* IPFILTER_COMPAT */