15 #include <netinet/in.h>
16 #include <netinet/ip.h>
17 #include <linux/netfilter/nf_tables.h>
18 #include <linux/netfilter/xt_iprange.h>
19 #include <linux/netfilter/xt_LOG.h>
20 #include <libmnl/libmnl.h>
21 #include <libnftnl/rule.h>
22 #include <libnftnl/expr.h>
24 static int test_ok = 1;
26 static void print_err(
const char *msg)
29 printf(
"\033[31mERROR:\e[0m %s\n", msg);
32 static void print_err2(
const char *msg, uint32_t a, uint32_t b)
35 printf(
"\033[31mERROR:\e[0m %s size a: %d b: %d \n",msg, a, b);
38 static void cmp_nft_rule_expr(
struct nft_rule_expr *rule_a,
39 struct nft_rule_expr *rule_b)
43 if (strcmp(nft_rule_expr_get_str(rule_a, NFT_EXPR_TG_NAME),
44 nft_rule_expr_get_str(rule_b, NFT_EXPR_TG_NAME)) != 0)
45 print_err(
"Expr NFT_EXPR_TG_NAME mismatches");
46 if (nft_rule_expr_get_u32(rule_a, NFT_EXPR_TG_REV) !=
47 nft_rule_expr_get_u32(rule_b, NFT_EXPR_TG_REV))
48 print_err(
"Expr NFT_EXPR_TG_REV mismatches");
49 nft_rule_expr_get(rule_a, NFT_EXPR_TG_INFO, &lena);
50 nft_rule_expr_get(rule_b, NFT_EXPR_TG_INFO, &lenb);
52 print_err2(
"Expr NFT_EXPR_TG_INFO size mismatches", lena, lenb);
55 int main(
int argc,
char *argv[])
58 struct nft_rule_expr *ex;
60 struct xt_log_info *info;
63 struct nft_rule_expr *rule_a, *rule_b;
67 if (a == NULL || b == NULL)
70 ex = nft_rule_expr_alloc(
"target");
73 nft_rule_expr_set(ex, NFT_EXPR_TG_NAME,
"test", strlen(
"test"));
74 nft_rule_expr_set_u32(ex, NFT_EXPR_TG_REV, 0x12345678);
76 info = calloc(1,
sizeof(
struct xt_log_info));
79 sprintf(info->prefix,
"test: ");
80 info->prefix[
sizeof(info->prefix)-1] =
'\0';
81 info->logflags = 0x0f;
83 nft_rule_expr_set(ex, NFT_EXPR_TG_INFO, info,
sizeof(*info));
85 nft_rule_add_expr(a, ex);
87 nlh = nft_rule_nlmsg_build_hdr(buf, NFT_MSG_NEWRULE, AF_INET, 0, 1234);
88 nft_rule_nlmsg_build_payload(nlh, a);
90 if (nft_rule_nlmsg_parse(nlh, b) < 0)
91 print_err(
"parsing problems");
93 iter_a = nft_rule_expr_iter_create(a);
94 iter_b = nft_rule_expr_iter_create(b);
95 if (iter_a == NULL || iter_b == NULL)
98 rule_a = nft_rule_expr_iter_next(iter_a);
99 rule_b = nft_rule_expr_iter_next(iter_b);
100 if (rule_a == NULL || rule_b == NULL)
103 cmp_nft_rule_expr(rule_a, rule_b);
105 if (nft_rule_expr_iter_next(iter_a) != NULL ||
106 nft_rule_expr_iter_next(iter_b) != NULL)
107 print_err(
"More 1 expr.");
109 nft_rule_expr_iter_destroy(iter_a);
110 nft_rule_expr_iter_destroy(iter_b);
116 printf(
"%s: \033[32mOK\e[0m\n", argv[0]);