• Home
  • Line#
  • Scopes#
  • Navigate#
  • Raw
  • Download
1 /*
2  * Copyright (c) 2017 JingPiao Chen <chenjingpiao@gmail.com>
3  * Copyright (c) 2017 The strace developers.
4  * All rights reserved.
5  *
6  * Redistribution and use in source and binary forms, with or without
7  * modification, are permitted provided that the following conditions
8  * are met:
9  * 1. Redistributions of source code must retain the above copyright
10  *    notice, this list of conditions and the following disclaimer.
11  * 2. Redistributions in binary form must reproduce the above copyright
12  *    notice, this list of conditions and the following disclaimer in the
13  *    documentation and/or other materials provided with the distribution.
14  * 3. The name of the author may not be used to endorse or promote products
15  *    derived from this software without specific prior written permission.
16  *
17  * THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR
18  * IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES
19  * OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED.
20  * IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT,
21  * INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
22  * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
23  * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
24  * THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
25  * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
26  * THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
27  */
28 
29 #include "tests.h"
30 
31 #ifdef HAVE_LINUX_NETFILTER_NF_TABLES_H
32 
33 # include <stdio.h>
34 # include <sys/socket.h>
35 # include "netlink.h"
36 # include <linux/netfilter/nfnetlink.h>
37 # include <linux/netfilter/nf_tables.h>
38 
39 static void
test_nlmsg_type(const int fd)40 test_nlmsg_type(const int fd)
41 {
42 	long rc;
43 	struct nlmsghdr nlh = {
44 		.nlmsg_len = sizeof(nlh),
45 		.nlmsg_flags = NLM_F_REQUEST,
46 	};
47 
48 	nlh.nlmsg_type = NFNL_SUBSYS_NFTABLES << 8 | NFT_MSG_NEWTABLE;
49 	rc = sendto(fd, &nlh, nlh.nlmsg_len, MSG_DONTWAIT, NULL, 0);
50 	printf("sendto(%d, {len=%u"
51 	       ", type=NFNL_SUBSYS_NFTABLES<<8|NFT_MSG_NEWTABLE"
52 	       ", flags=NLM_F_REQUEST, seq=0, pid=0}"
53 	       ", %u, MSG_DONTWAIT, NULL, 0) = %s\n",
54 	       fd, nlh.nlmsg_len, nlh.nlmsg_len, sprintrc(rc));
55 
56 	nlh.nlmsg_type = NFNL_SUBSYS_NFTABLES << 8 | 0xff;
57 	rc = sendto(fd, &nlh, nlh.nlmsg_len, MSG_DONTWAIT, NULL, 0);
58 	printf("sendto(%d, {len=%u"
59 	       ", type=NFNL_SUBSYS_NFTABLES<<8|0xff /* NFT_MSG_??? */"
60 	       ", flags=NLM_F_REQUEST, seq=0, pid=0}"
61 	       ", %u, MSG_DONTWAIT, NULL, 0) = %s\n",
62 	       fd, nlh.nlmsg_len, nlh.nlmsg_len, sprintrc(rc));
63 }
64 
65 static void
test_nlmsg_flags(const int fd)66 test_nlmsg_flags(const int fd)
67 {
68 	long rc;
69 	struct nlmsghdr nlh = {
70 		.nlmsg_len = sizeof(nlh),
71 	};
72 
73 	nlh.nlmsg_type = NFNL_SUBSYS_NFTABLES << 8 | NFT_MSG_NEWTABLE;
74 	nlh.nlmsg_flags = NLM_F_REQUEST | NLM_F_REPLACE;
75 	rc = sendto(fd, &nlh, nlh.nlmsg_len, MSG_DONTWAIT, NULL, 0);
76 	printf("sendto(%d, {len=%u"
77 	       ", type=NFNL_SUBSYS_NFTABLES<<8|NFT_MSG_NEWTABLE"
78 	       ", flags=NLM_F_REQUEST|NLM_F_REPLACE, seq=0, pid=0}"
79 	       ", %u, MSG_DONTWAIT, NULL, 0) = %s\n",
80 	       fd, nlh.nlmsg_len, nlh.nlmsg_len, sprintrc(rc));
81 
82 	nlh.nlmsg_type = NFNL_SUBSYS_NFTABLES << 8 | NFT_MSG_GETTABLE;
83 	nlh.nlmsg_flags = NLM_F_REQUEST | NLM_F_DUMP;
84 	rc = sendto(fd, &nlh, nlh.nlmsg_len, MSG_DONTWAIT, NULL, 0);
85 	printf("sendto(%d, {len=%u"
86 	       ", type=NFNL_SUBSYS_NFTABLES<<8|NFT_MSG_GETTABLE"
87 	       ", flags=NLM_F_REQUEST|NLM_F_DUMP, seq=0, pid=0}"
88 	       ", %u, MSG_DONTWAIT, NULL, 0) = %s\n",
89 	       fd, nlh.nlmsg_len, nlh.nlmsg_len, sprintrc(rc));
90 
91 	nlh.nlmsg_type = NFNL_SUBSYS_NFTABLES << 8 | NFT_MSG_DELTABLE;
92 	nlh.nlmsg_flags = NLM_F_REQUEST | NLM_F_NONREC;
93 	rc = sendto(fd, &nlh, nlh.nlmsg_len, MSG_DONTWAIT, NULL, 0);
94 	printf("sendto(%d, {len=%u"
95 	       ", type=NFNL_SUBSYS_NFTABLES<<8|NFT_MSG_DELTABLE"
96 	       ", flags=NLM_F_REQUEST|NLM_F_NONREC, seq=0, pid=0}"
97 	       ", %u, MSG_DONTWAIT, NULL, 0) = %s\n",
98 	       fd, nlh.nlmsg_len, nlh.nlmsg_len, sprintrc(rc));
99 }
100 
101 int
main(void)102 main(void)
103 {
104 	skip_if_unavailable("/proc/self/fd/");
105 
106 	int fd = create_nl_socket(NETLINK_NETFILTER);
107 
108 	test_nlmsg_type(fd);
109 	test_nlmsg_flags(fd);
110 
111 	puts("+++ exited with 0 +++");
112 
113 	return 0;
114 }
115 
116 #else
117 
118 SKIP_MAIN_UNDEFINED("HAVE_LINUX_NETFILTER_NF_TABLES_H")
119 
120 #endif
121