diff options
author | Pablo Neira Ayuso <pablo@netfilter.org> | 2017-01-04 14:28:02 +0100 |
---|---|---|
committer | Pablo Neira Ayuso <pablo@netfilter.org> | 2017-01-10 22:31:12 +0100 |
commit | e7f1876088cae4d64de3fc9e2c5419fce599d112 (patch) | |
tree | a4a7c9c8a90a9f6b896b12902dc564ae15888c86 /tests | |
parent | 56080e171456ce1450ab71e2deafffc9b8d30034 (diff) |
tests: shell: cover cache flush on flush ruleset
This tests covers 530a82a72d15 ("evaluate: Update cache on flush
ruleset"). Make sure loading twice including an upfront ruleset flush
leaves us with an empty cache.
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
Diffstat (limited to 'tests')
-rwxr-xr-x | tests/shell/testcases/sets/0015rulesetflush_0 | 26 |
1 files changed, 26 insertions, 0 deletions
diff --git a/tests/shell/testcases/sets/0015rulesetflush_0 b/tests/shell/testcases/sets/0015rulesetflush_0 new file mode 100755 index 00000000..27242b36 --- /dev/null +++ b/tests/shell/testcases/sets/0015rulesetflush_0 @@ -0,0 +1,26 @@ +#!/bin/bash + +tmpfile=$(mktemp) +if [ ! -w $tmpfile ] ; then + echo "Failed to create tmp file" >&2 + exit 0 +fi + +trap "rm -rf $tmpfile" EXIT # cleanup if aborted + +echo "flush ruleset +add table t +add chain t c + +table inet filter { + set blacklist_v4 { type ipv4_addr; flags interval; } +} + +add element inet filter blacklist_v4 { +192.168.0.1/24, +}" >$tmpfile + +$NFT -f $tmpfile + +# make sure flush ruleset works right +$NFT -f $tmpfile |