[PATCH 11/12] tests: check decoding of NFNL_SUBSYS_NFTABLES message types

JingPiao Chen chenjingpiao at gmail.com
Mon Sep 18 12:10:16 UTC 2017


* configure.ac (AC_CHECK_HEADERS): Add linux/netfilter/nf_tables.h.
* tests/nf_nftables.c: New file.
* tests/gen_tests.in (nf_nftables): New entry.
* tests/pure_executables.list: Add nf_nftables.
* tests/.gitignore: Likewise.
---
 configure.ac                |  1 +
 tests/.gitignore            |  1 +
 tests/gen_tests.in          |  1 +
 tests/nf_nftables.c         | 83 +++++++++++++++++++++++++++++++++++++++++++++
 tests/pure_executables.list |  1 +
 5 files changed, 87 insertions(+)
 create mode 100644 tests/nf_nftables.c

diff --git a/configure.ac b/configure.ac
index 9fc4a03..01197c4 100644
--- a/configure.ac
+++ b/configure.ac
@@ -395,6 +395,7 @@ AC_CHECK_HEADERS(m4_normalize([
 	linux/msg.h
 	linux/neighbour.h
 	linux/netfilter/ipset/ip_set.h
+	linux/netfilter/nf_tables.h
 	linux/netfilter/nfnetlink.h
 	linux/netfilter/nfnetlink_acct.h
 	linux/netfilter/nfnetlink_conntrack.h
diff --git a/tests/.gitignore b/tests/.gitignore
index 0433d3c..d60e61c 100644
--- a/tests/.gitignore
+++ b/tests/.gitignore
@@ -223,6 +223,7 @@ nf_ctnetlink
 nf_ctnetlink_exp
 nf_cttimeout
 nf_ipset
+nf_nftables
 nf_osf
 nf_queue
 nf_ulog
diff --git a/tests/gen_tests.in b/tests/gen_tests.in
index 7d6579c..2457a7c 100644
--- a/tests/gen_tests.in
+++ b/tests/gen_tests.in
@@ -203,6 +203,7 @@ nf_ctnetlink			+netlink_sock_diag.test
 nf_ctnetlink_exp		+netlink_sock_diag.test
 nf_cttimeout			+netlink_sock_diag.test
 nf_ipset			+netlink_sock_diag.test
+nf_nftables			+netlink_sock_diag.test
 nf_osf				+netlink_sock_diag.test
 nf_queue			+netlink_sock_diag.test
 nf_ulog				+netlink_sock_diag.test
diff --git a/tests/nf_nftables.c b/tests/nf_nftables.c
new file mode 100644
index 0000000..95c3849
--- /dev/null
+++ b/tests/nf_nftables.c
@@ -0,0 +1,83 @@
+/*
+ * Copyright (c) 2017 JingPiao Chen <chenjingpiao at gmail.com>
+ * Copyright (c) 2017 The strace developers.
+ * All rights reserved.
+ *
+ * Redistribution and use in source and binary forms, with or without
+ * modification, are permitted provided that the following conditions
+ * are met:
+ * 1. Redistributions of source code must retain the above copyright
+ *    notice, this list of conditions and the following disclaimer.
+ * 2. Redistributions in binary form must reproduce the above copyright
+ *    notice, this list of conditions and the following disclaimer in the
+ *    documentation and/or other materials provided with the distribution.
+ * 3. The name of the author may not be used to endorse or promote products
+ *    derived from this software without specific prior written permission.
+ *
+ * THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR
+ * IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES
+ * OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED.
+ * IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT,
+ * INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
+ * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
+ * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
+ * THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
+ * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
+ * THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
+ */
+
+#include "tests.h"
+
+#ifdef HAVE_LINUX_NETFILTER_NF_TABLES_H
+
+# include <stdio.h>
+# include <sys/socket.h>
+# include "netlink.h"
+# include <linux/netfilter/nfnetlink.h>
+# include <linux/netfilter/nf_tables.h>
+
+static void
+test_nlmsg_type(const int fd)
+{
+	long rc;
+	struct nlmsghdr nlh = {
+		.nlmsg_len = sizeof(nlh),
+		.nlmsg_flags = NLM_F_REQUEST,
+	};
+
+	nlh.nlmsg_type = NFNL_SUBSYS_NFTABLES << 8 | NFT_MSG_NEWTABLE;
+	rc = sendto(fd, &nlh, nlh.nlmsg_len, MSG_DONTWAIT, NULL, 0);
+	printf("sendto(%d, {len=%u"
+	       ", type=NFNL_SUBSYS_NFTABLES<<8|NFT_MSG_NEWTABLE"
+	       ", flags=NLM_F_REQUEST, seq=0, pid=0}"
+	       ", %u, MSG_DONTWAIT, NULL, 0) = %s\n",
+	       fd, nlh.nlmsg_len, nlh.nlmsg_len, sprintrc(rc));
+
+	nlh.nlmsg_type = NFNL_SUBSYS_NFTABLES << 8 | 0xff;
+	rc = sendto(fd, &nlh, nlh.nlmsg_len, MSG_DONTWAIT, NULL, 0);
+	printf("sendto(%d, {len=%u"
+	       ", type=NFNL_SUBSYS_NFTABLES<<8|0xff /* NFT_MSG_??? */"
+	       ", flags=NLM_F_REQUEST, seq=0, pid=0}"
+	       ", %u, MSG_DONTWAIT, NULL, 0) = %s\n",
+	       fd, nlh.nlmsg_len, nlh.nlmsg_len, sprintrc(rc));
+}
+
+int
+main(void)
+{
+	skip_if_unavailable("/proc/self/fd/");
+
+	int fd = create_nl_socket(NETLINK_NETFILTER);
+
+	test_nlmsg_type(fd);
+
+	puts("+++ exited with 0 +++");
+
+	return 0;
+}
+
+#else
+
+SKIP_MAIN_UNDEFINED("HAVE_LINUX_NETFILTER_NF_TABLES_H")
+
+#endif
diff --git a/tests/pure_executables.list b/tests/pure_executables.list
index 9ee7d1b..9679233 100755
--- a/tests/pure_executables.list
+++ b/tests/pure_executables.list
@@ -185,6 +185,7 @@ nf_ctnetlink
 nf_ctnetlink_exp
 nf_cttimeout
 nf_ipset
+nf_nftables
 nf_osf
 nf_queue
 nf_ulog
-- 
2.7.4





More information about the Strace-devel mailing list