15 #include <netinet/in.h>
16 #include <netinet/ip.h>
17 #include <linux/netfilter/nf_tables.h>
18 #include <libmnl/libmnl.h>
19 #include <libnftnl/rule.h>
20 #include <libnftnl/expr.h>
22 static int test_ok = 1;
24 static void print_err(
const char *msg)
27 printf(
"\033[31mERROR:\e[0m %s\n", msg);
30 static void cmp_nft_rule_expr(
struct nft_rule_expr *rule_a,
31 struct nft_rule_expr *rule_b)
33 uint32_t maska, maskb;
36 if (nft_rule_expr_get_u32(rule_a, NFT_EXPR_BITWISE_DREG) !=
37 nft_rule_expr_get_u32(rule_b, NFT_EXPR_BITWISE_DREG))
38 print_err(
"Expr BITWISE_DREG mismatches");
39 if (nft_rule_expr_get_u32(rule_a, NFT_EXPR_BITWISE_SREG) !=
40 nft_rule_expr_get_u32(rule_b, NFT_EXPR_BITWISE_SREG))
41 print_err(
"Expr BITWISE_SREG mismatches");
42 if (nft_rule_expr_get_u16(rule_a, NFT_EXPR_BITWISE_LEN) !=
43 nft_rule_expr_get_u16(rule_b, NFT_EXPR_BITWISE_LEN))
44 print_err(
"Expr BITWISE_DREG mismatches");
45 nft_rule_expr_get(rule_a, NFT_EXPR_BITWISE_MASK, &maska);
46 nft_rule_expr_get(rule_b, NFT_EXPR_BITWISE_MASK, &maskb);
48 print_err(
"Size of BITWISE_MASK mismatches");
49 nft_rule_expr_get(rule_a, NFT_EXPR_BITWISE_XOR, &xora);
50 nft_rule_expr_get(rule_b, NFT_EXPR_BITWISE_XOR, &xorb);
52 print_err(
"Size of BITWISE_XOR mismatches");
55 int main(
int argc,
char *argv[])
58 struct nft_rule_expr *ex = NULL;
62 struct nft_rule_expr *rule_a, *rule_b = NULL;
63 uint32_t mask = 0x01010101;
64 uint32_t xor = 0x12345678;
68 if (a == NULL || b == NULL)
70 ex = nft_rule_expr_alloc(
"bitwise");
74 nft_rule_expr_set_u32(ex, NFT_EXPR_BITWISE_SREG, 0x12345678);
75 nft_rule_expr_set_u32(ex, NFT_EXPR_BITWISE_DREG, 0x12345678);
76 nft_rule_expr_set_u32(ex, NFT_EXPR_BITWISE_LEN, 0x12345678);
77 nft_rule_expr_set(ex, NFT_EXPR_BITWISE_MASK, &mask,
sizeof(mask));
78 nft_rule_expr_set(ex, NFT_EXPR_BITWISE_XOR, &xor,
sizeof(xor));
80 nft_rule_add_expr(a, ex);
82 nlh = nft_rule_nlmsg_build_hdr(buf, NFT_MSG_NEWRULE, AF_INET, 0, 1234);
83 nft_rule_nlmsg_build_payload(nlh, a);
85 if (nft_rule_nlmsg_parse(nlh, b) < 0)
86 print_err(
"parsing problems");
88 iter_a = nft_rule_expr_iter_create(a);
89 iter_b = nft_rule_expr_iter_create(b);
90 if (iter_a == NULL || iter_b == NULL)
93 rule_a = nft_rule_expr_iter_next(iter_a);
94 rule_b = nft_rule_expr_iter_next(iter_b);
95 if (rule_a == NULL || rule_b == NULL)
98 if (nft_rule_expr_iter_next(iter_a) != NULL ||
99 nft_rule_expr_iter_next(iter_b) != NULL)
100 print_err(
"More 1 expr.");
102 nft_rule_expr_iter_destroy(iter_a);
103 nft_rule_expr_iter_destroy(iter_b);
105 cmp_nft_rule_expr(rule_a,rule_b);
113 printf(
"%s: \033[32mOK\e[0m\n", argv[0]);