[PATCH 11/12] tests: check decoding of NFNL_SUBSYS_NFTABLES message types
JingPiao Chen
chenjingpiao at gmail.com
Mon Sep 18 12:10:16 UTC 2017
* configure.ac (AC_CHECK_HEADERS): Add linux/netfilter/nf_tables.h.
* tests/nf_nftables.c: New file.
* tests/gen_tests.in (nf_nftables): New entry.
* tests/pure_executables.list: Add nf_nftables.
* tests/.gitignore: Likewise.
---
configure.ac | 1 +
tests/.gitignore | 1 +
tests/gen_tests.in | 1 +
tests/nf_nftables.c | 83 +++++++++++++++++++++++++++++++++++++++++++++
tests/pure_executables.list | 1 +
5 files changed, 87 insertions(+)
create mode 100644 tests/nf_nftables.c
diff --git a/configure.ac b/configure.ac
index 9fc4a03..01197c4 100644
--- a/configure.ac
+++ b/configure.ac
@@ -395,6 +395,7 @@ AC_CHECK_HEADERS(m4_normalize([
linux/msg.h
linux/neighbour.h
linux/netfilter/ipset/ip_set.h
+ linux/netfilter/nf_tables.h
linux/netfilter/nfnetlink.h
linux/netfilter/nfnetlink_acct.h
linux/netfilter/nfnetlink_conntrack.h
diff --git a/tests/.gitignore b/tests/.gitignore
index 0433d3c..d60e61c 100644
--- a/tests/.gitignore
+++ b/tests/.gitignore
@@ -223,6 +223,7 @@ nf_ctnetlink
nf_ctnetlink_exp
nf_cttimeout
nf_ipset
+nf_nftables
nf_osf
nf_queue
nf_ulog
diff --git a/tests/gen_tests.in b/tests/gen_tests.in
index 7d6579c..2457a7c 100644
--- a/tests/gen_tests.in
+++ b/tests/gen_tests.in
@@ -203,6 +203,7 @@ nf_ctnetlink +netlink_sock_diag.test
nf_ctnetlink_exp +netlink_sock_diag.test
nf_cttimeout +netlink_sock_diag.test
nf_ipset +netlink_sock_diag.test
+nf_nftables +netlink_sock_diag.test
nf_osf +netlink_sock_diag.test
nf_queue +netlink_sock_diag.test
nf_ulog +netlink_sock_diag.test
diff --git a/tests/nf_nftables.c b/tests/nf_nftables.c
new file mode 100644
index 0000000..95c3849
--- /dev/null
+++ b/tests/nf_nftables.c
@@ -0,0 +1,83 @@
+/*
+ * Copyright (c) 2017 JingPiao Chen <chenjingpiao at gmail.com>
+ * Copyright (c) 2017 The strace developers.
+ * All rights reserved.
+ *
+ * Redistribution and use in source and binary forms, with or without
+ * modification, are permitted provided that the following conditions
+ * are met:
+ * 1. Redistributions of source code must retain the above copyright
+ * notice, this list of conditions and the following disclaimer.
+ * 2. Redistributions in binary form must reproduce the above copyright
+ * notice, this list of conditions and the following disclaimer in the
+ * documentation and/or other materials provided with the distribution.
+ * 3. The name of the author may not be used to endorse or promote products
+ * derived from this software without specific prior written permission.
+ *
+ * THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR
+ * IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES
+ * OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED.
+ * IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT,
+ * INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
+ * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
+ * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
+ * THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
+ * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
+ * THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
+ */
+
+#include "tests.h"
+
+#ifdef HAVE_LINUX_NETFILTER_NF_TABLES_H
+
+# include <stdio.h>
+# include <sys/socket.h>
+# include "netlink.h"
+# include <linux/netfilter/nfnetlink.h>
+# include <linux/netfilter/nf_tables.h>
+
+static void
+test_nlmsg_type(const int fd)
+{
+ long rc;
+ struct nlmsghdr nlh = {
+ .nlmsg_len = sizeof(nlh),
+ .nlmsg_flags = NLM_F_REQUEST,
+ };
+
+ nlh.nlmsg_type = NFNL_SUBSYS_NFTABLES << 8 | NFT_MSG_NEWTABLE;
+ rc = sendto(fd, &nlh, nlh.nlmsg_len, MSG_DONTWAIT, NULL, 0);
+ printf("sendto(%d, {len=%u"
+ ", type=NFNL_SUBSYS_NFTABLES<<8|NFT_MSG_NEWTABLE"
+ ", flags=NLM_F_REQUEST, seq=0, pid=0}"
+ ", %u, MSG_DONTWAIT, NULL, 0) = %s\n",
+ fd, nlh.nlmsg_len, nlh.nlmsg_len, sprintrc(rc));
+
+ nlh.nlmsg_type = NFNL_SUBSYS_NFTABLES << 8 | 0xff;
+ rc = sendto(fd, &nlh, nlh.nlmsg_len, MSG_DONTWAIT, NULL, 0);
+ printf("sendto(%d, {len=%u"
+ ", type=NFNL_SUBSYS_NFTABLES<<8|0xff /* NFT_MSG_??? */"
+ ", flags=NLM_F_REQUEST, seq=0, pid=0}"
+ ", %u, MSG_DONTWAIT, NULL, 0) = %s\n",
+ fd, nlh.nlmsg_len, nlh.nlmsg_len, sprintrc(rc));
+}
+
+int
+main(void)
+{
+ skip_if_unavailable("/proc/self/fd/");
+
+ int fd = create_nl_socket(NETLINK_NETFILTER);
+
+ test_nlmsg_type(fd);
+
+ puts("+++ exited with 0 +++");
+
+ return 0;
+}
+
+#else
+
+SKIP_MAIN_UNDEFINED("HAVE_LINUX_NETFILTER_NF_TABLES_H")
+
+#endif
diff --git a/tests/pure_executables.list b/tests/pure_executables.list
index 9ee7d1b..9679233 100755
--- a/tests/pure_executables.list
+++ b/tests/pure_executables.list
@@ -185,6 +185,7 @@ nf_ctnetlink
nf_ctnetlink_exp
nf_cttimeout
nf_ipset
+nf_nftables
nf_osf
nf_queue
nf_ulog
--
2.7.4
More information about the Strace-devel
mailing list