#!/bin/bash

# test rule adding with invalid position/handle/index value

RULESET="flush ruleset
table ip t {
	chain c {
		accept
		accept
	}
}"

$NFT -f - <<< "$RULESET"

for cmd in add insert; do
	for keyword in position handle index; do
		$NFT $cmd rule t c $keyword 5 drop 2>/dev/null || continue

		echo "E: invalid $keyword value allowed in $cmd command" >&2
		exit 0
	done
done
exit 1