14 #include <netinet/in.h>
15 #include <netinet/ip.h>
17 #include <linux/netfilter/nf_tables.h>
18 #include <libmnl/libmnl.h>
19 #include <libnftnl/rule.h>
20 #include <libnftnl/expr.h>
22 static int test_ok = 1;
23 static void print_err(
const char *msg)
26 printf(
"\033[31mERROR:\e[0m %s\n", msg);
29 static void cmp_nft_rule_expr(
struct nft_rule_expr *rule_a,
30 struct nft_rule_expr *rule_b)
32 if (nft_rule_expr_get_u32(rule_a, NFT_EXPR_CT_KEY) !=
33 nft_rule_expr_get_u32(rule_b, NFT_EXPR_CT_KEY))
34 print_err(
"Expr CT_KEY mismatches");
35 if (nft_rule_expr_get_u32(rule_a, NFT_EXPR_CT_DIR) !=
36 nft_rule_expr_get_u32(rule_b, NFT_EXPR_CT_DIR))
37 print_err(
"Expr CT_DIR mismatches");
38 if (nft_rule_expr_get_u32(rule_a, NFT_EXPR_CT_DREG) !=
39 nft_rule_expr_get_u32(rule_b, NFT_EXPR_CT_DREG))
40 print_err(
"Expr CT_DREG mismatches");
42 int main(
int argc,
char *argv[])
45 struct nft_rule_expr *ex;
49 struct nft_rule_expr *rule_a, *rule_b;
53 if (a == NULL || b == NULL)
55 ex = nft_rule_expr_alloc(
"ct");
59 nft_rule_expr_set_u32(ex, NFT_EXPR_CT_KEY, 0x1234568);
60 nft_rule_expr_set_u32(ex, NFT_EXPR_CT_DIR, 0x12);
61 nft_rule_expr_set_u32(ex, NFT_EXPR_CT_DREG, 0x12345678);
63 nft_rule_add_expr(a, ex);
65 nlh = nft_rule_nlmsg_build_hdr(buf, NFT_MSG_NEWRULE, AF_INET, 0, 1234);
66 nft_rule_nlmsg_build_payload(nlh, a);
68 if (nft_rule_nlmsg_parse(nlh, b) < 0)
69 print_err(
"parsing problems");
71 iter_a = nft_rule_expr_iter_create(a);
72 iter_b = nft_rule_expr_iter_create(b);
73 if (iter_a == NULL || iter_b == NULL)
76 rule_a = nft_rule_expr_iter_next(iter_a);
77 rule_b = nft_rule_expr_iter_next(iter_b);
78 if (rule_a == NULL || rule_b == NULL)
81 cmp_nft_rule_expr(rule_a, rule_b);
83 if (nft_rule_expr_iter_next(iter_a) != NULL ||
84 nft_rule_expr_iter_next(iter_b) != NULL)
85 print_err(
"More 1 expr.");
87 nft_rule_expr_iter_destroy(iter_a);
88 nft_rule_expr_iter_destroy(iter_b);
95 printf(
"%s: \033[32mOK\e[0m\n", argv[0]);