tests: shell: skip if kernel does not allow to restore set element expiration

author Pablo Neira Ayuso <pablo@netfilter.org>

Tue, 21 Nov 2023 20:23:37 +0000 (21:23 +0100)

committer Pablo Neira Ayuso <pablo@netfilter.org>

Wed, 22 Nov 2023 11:15:51 +0000 (12:15 +0100)
author Pablo Neira Ayuso <pablo@netfilter.org>
Tue, 21 Nov 2023 20:23:37 +0000 (21:23 +0100)
committer Pablo Neira Ayuso <pablo@netfilter.org>
Wed, 22 Nov 2023 11:15:51 +0000 (12:15 +0100)
diff --git a/tests/shell/features/setelem_expiration.sh b/tests/shell/features/setelem_expiration.sh

new file mode 100755 (executable)

index 0000000..c539ceb
--- /dev/null
+++ b/tests/shell/features/setelem_expiration.sh
@@ -0,0 +1,18 @@
+#!/bin/bash
+
+# v5.3-rc1~140^2~153^2~8
+# 79ebb5bb4e38 ("netfilter: nf_tables: enable set expiration time for set elements")
+
+RULESET="table ip x {
+       set y {
+               type ipv4_addr
+               flags dynamic
+               timeout 1h
+       }
+}"
+
+$NFT -f - <<< $RULESET
+
+$NFT add element ip x y { 1.1.1.1 timeout 1h expires 15m59s }
+
+$NFT list ruleset | grep "expires 15m"
diff --git a/tests/shell/testcases/sets/0036add_set_element_expiration_0 b/tests/shell/testcases/sets/0036add_set_element_expiration_0

index 0fd016e9f8570d9747fca0b4d392089eea72d193..d961ffd4cdcdb02a278efa4350fa89f05bac7cf6 100755 (executable)
--- a/tests/shell/testcases/sets/0036add_set_element_expiration_0
+++ b/tests/shell/testcases/sets/0036add_set_element_expiration_0
@@ -1,5 +1,7 @@
  #!/bin/bash
  
+# NFT_TEST_REQUIRES(NFT_TEST_HAVE_setelem_expiration)
+
  set -e
  
  drop_seconds() {
author	Pablo Neira Ayuso <pablo@netfilter.org>
	Tue, 21 Nov 2023 20:23:37 +0000 (21:23 +0100)
committer	Pablo Neira Ayuso <pablo@netfilter.org>
	Wed, 22 Nov 2023 11:15:51 +0000 (12:15 +0100)
tests/shell/features/setelem_expiration.sh	[new file with mode: 0755]	patch \| blob
tests/shell/testcases/sets/0036add_set_element_expiration_0		patch \| blob \| blame \| history