diff options
author | Florian Westphal <fw@strlen.de> | 2018-06-26 23:16:22 +0200 |
---|---|---|
committer | Florian Westphal <fw@strlen.de> | 2018-06-27 23:44:04 +0200 |
commit | ed9cfe1b4852647be7faa9d5262d315707a0a0c6 (patch) | |
tree | 72ae40072bf557063b68dafbc8c8f6cc888ff365 /iptables/tests/shell/testcases/chain | |
parent | 9933dc543628b1531ac30b30b9894a16c86a0b7a (diff) |
tests: add initial save/restore test cases
Add script to restore ipt-save files and compare it with save output.
This should be extended to cover as many rulesets as possible, so this
is only a start.
The test script is changed to pass XT_MULTI instead of
iptables/ip6tables.
This allows ip(6)tables/ebt/arp only test scripts and avoids running all scripts
multiple times for ip/ip6tables.
Current expected output:
I: [OK] ./iptables/tests/shell/testcases/chain/0001duplicate_1
I: [OK] ./iptables/tests/shell/testcases/chain/000newchain_0
I: [OK] ./iptables/tests/shell/testcases/chain/0005rename_1
I: [OK] ./iptables/tests/shell/testcases/ipt-save/0001load-dumps_0
I: legacy results: [OK] 10 [FAILED] 0 [TOTAL] 10
I: [OK] ./iptables/tests/shell/testcases/chain/0001duplicate_1
I: [OK] ./iptables/tests/shell/testcases/chain/0004newchain_0
I: [OK] ./iptables/tests/shell/testcases/chain/0005rename_1
I: [OK] ./iptables/tests/shell/testcases/ipt-save/0001load-dumps_0
I: nft results: [OK] 10 [FAILED] 0 [TOTAL] 10
I: combined results: [OK] 20 [FAILED] 0 [TOTAL] 20
Signed-off-by: Florian Westphal <fw@strlen.de>
Diffstat (limited to 'iptables/tests/shell/testcases/chain')
4 files changed, 21 insertions, 11 deletions
diff --git a/iptables/tests/shell/testcases/chain/0001duplicate_1 b/iptables/tests/shell/testcases/chain/0001duplicate_1 index e88f82ad..80ebb119 100755 --- a/iptables/tests/shell/testcases/chain/0001duplicate_1 +++ b/iptables/tests/shell/testcases/chain/0001duplicate_1 @@ -2,8 +2,11 @@ set -x -$IPTABLES -t filter -N c1 -$IPTABLES -t filter -N c1 || exit 1 +$XT_MULTI iptables -t filter -N c1 || exit 0 +$XT_MULTI iptables -t filter -N c1 || exit 1 + +$XT_MULTI ip6tables -t filter -N c1 || exit 0 +$XT_MULTI ip6tables -t filter -N c1 || exit 1 echo "E: Duplicate chains" >&2 exit 0 diff --git a/iptables/tests/shell/testcases/chain/0004newchain_0 b/iptables/tests/shell/testcases/chain/0004newchain_0 new file mode 100755 index 00000000..b1a76637 --- /dev/null +++ b/iptables/tests/shell/testcases/chain/0004newchain_0 @@ -0,0 +1,9 @@ +#!/bin/bash + +set -e + +$XTABLES_MULTI iptables -N c1 +$XTABLES_MULTI ip6tables -N c1 + +$XTABLES_MULTI iptables -N c2 +$XTABLES_MULTI ip6tables -N c2 diff --git a/iptables/tests/shell/testcases/chain/0004rename_0 b/iptables/tests/shell/testcases/chain/0004rename_0 deleted file mode 100755 index a85369a5..00000000 --- a/iptables/tests/shell/testcases/chain/0004rename_0 +++ /dev/null @@ -1,6 +0,0 @@ -#!/bin/bash - -set -e - -$IPTABLES -N c1 -$IPTABLES -E c1 c2 diff --git a/iptables/tests/shell/testcases/chain/0005rename_1 b/iptables/tests/shell/testcases/chain/0005rename_1 index f2f6e55a..3ccdc033 100755 --- a/iptables/tests/shell/testcases/chain/0005rename_1 +++ b/iptables/tests/shell/testcases/chain/0005rename_1 @@ -1,8 +1,12 @@ #!/bin/bash -$IPTABLES -N c1 || exit 0 -$IPTABLES -N c2 || exit 0 -$IPTABLES -E c1 c2 || exit 1 +$XTABLES_MULTI iptables -N c1 || exit 0 +$XTABLES_MULTI iptables -N c2 || exit 0 +$XTABLES_MULTI iptables -E c1 c2 || exit 1 + +$XTABLES_MULTI ip6tables -N c1 || exit 0 +$XTABLES_MULTI ip6tables -N c2 || exit 0 +$XTABLES_MULTI ip6tables -E c1 c2 || exit 1 echo "E: Renamed with existing chain" >&2 exit 0 |