tests: py: add netdev folder and reject.t icmp cases

author Jose M. Guisado Gomez <guigom@riseup.net>

Thu, 22 Oct 2020 19:43:55 +0000 (21:43 +0200)

committer Pablo Neira Ayuso <pablo@netfilter.org>

Mon, 2 Nov 2020 10:49:52 +0000 (11:49 +0100)
author Jose M. Guisado Gomez <guigom@riseup.net>
Thu, 22 Oct 2020 19:43:55 +0000 (21:43 +0200)
committer Pablo Neira Ayuso <pablo@netfilter.org>
Mon, 2 Nov 2020 10:49:52 +0000 (11:49 +0100)
diff --git a/tests/py/netdev/reject.t b/tests/py/netdev/reject.t

new file mode 100644 (file)

index 0000000..a4434b6
--- /dev/null
+++ b/tests/py/netdev/reject.t
@@ -0,0 +1,20 @@
+:ingress;type filter hook ingress device lo priority 0
+
+*netdev;test-netdev;ingress
+
+reject with icmp type host-unreachable;ok;reject
+reject with icmp type net-unreachable;ok;reject
+reject with icmp type prot-unreachable;ok;reject
+reject with icmp type port-unreachable;ok;reject
+reject with icmp type net-prohibited;ok;reject
+reject with icmp type host-prohibited;ok;reject
+reject with icmp type admin-prohibited;ok;reject
+
+reject with icmpv6 type no-route;ok;reject
+reject with icmpv6 type admin-prohibited;ok;reject
+reject with icmpv6 type addr-unreachable;ok;reject
+reject with icmpv6 type port-unreachable;ok;reject
+reject with icmpv6 type policy-fail;ok;reject
+reject with icmpv6 type reject-route;ok;reject
+
+reject;ok
diff --git a/tests/py/netdev/reject.t.payload b/tests/py/netdev/reject.t.payload

new file mode 100644 (file)

index 0000000..71a66f9
--- /dev/null
+++ b/tests/py/netdev/reject.t.payload
@@ -0,0 +1,60 @@
+# reject with icmp type host-unreachable
+netdev 
+  [ reject type 0 code 1 ]
+
+# reject
+netdev 
+  [ reject type 2 code 1 ]
+
+# reject
+netdev 
+  [ reject type 2 code 1 ]
+
+# reject with icmp type admin-prohibited
+netdev 
+  [ reject type 0 code 13 ]
+
+# reject with icmp type net-unreachable
+netdev 
+  [ reject type 0 code 0 ]
+
+# reject with icmp type prot-unreachable
+netdev 
+  [ reject type 0 code 2 ]
+
+# reject with icmp type port-unreachable
+netdev 
+  [ reject type 0 code 3 ]
+
+# reject with icmp type net-prohibited
+netdev 
+  [ reject type 0 code 9 ]
+
+# reject with icmp type host-prohibited
+netdev 
+  [ reject type 0 code 10 ]
+
+# reject with icmpv6 type no-route
+netdev 
+  [ reject type 0 code 0 ]
+
+# reject with icmpv6 type admin-prohibited
+netdev 
+  [ reject type 0 code 1 ]
+
+# reject with icmpv6 type addr-unreachable
+netdev 
+  [ reject type 0 code 3 ]
+
+# reject with icmpv6 type port-unreachable
+netdev 
+  [ reject type 0 code 4 ]
+
+# reject with icmpv6 type policy-fail
+netdev 
+  [ reject type 0 code 5 ]
+
+# reject with icmpv6 type reject-route
+netdev 
+  [ reject type 0 code 6 ]
+
diff --git a/tests/py/nft-test.py b/tests/py/nft-test.py

index e7b5e01efcb96084d654e496f58cd0364a8d6e21..7ca5a22a16fbf2a1ec80ed4cb9a080d1bc572444 100755 (executable)
--- a/tests/py/nft-test.py
+++ b/tests/py/nft-test.py
@@ -28,7 +28,7 @@ os.environ['TZ'] = 'UTC-2'
  
  from nftables import Nftables
  
-TESTS_DIRECTORY = ["any", "arp", "bridge", "inet", "ip", "ip6"]
+TESTS_DIRECTORY = ["any", "arp", "bridge", "inet", "ip", "ip6", "netdev"]
  LOGFILE = "/tmp/nftables-test.log"
  log_file = None
  table_list = []
author	Jose M. Guisado Gomez <guigom@riseup.net>
	Thu, 22 Oct 2020 19:43:55 +0000 (21:43 +0200)
committer	Pablo Neira Ayuso <pablo@netfilter.org>
	Mon, 2 Nov 2020 10:49:52 +0000 (11:49 +0100)
tests/py/netdev/reject.t	[new file with mode: 0644]	patch \| blob
tests/py/netdev/reject.t.payload	[new file with mode: 0644]	patch \| blob
tests/py/nft-test.py		patch \| blob \| blame \| history