1 /* 2 * Copyright (c) 2017 JingPiao Chen <chenjingpiao@gmail.com> 3 * Copyright (c) 2017 The strace developers. 4 * All rights reserved. 5 * 6 * Redistribution and use in source and binary forms, with or without 7 * modification, are permitted provided that the following conditions 8 * are met: 9 * 1. Redistributions of source code must retain the above copyright 10 * notice, this list of conditions and the following disclaimer. 11 * 2. Redistributions in binary form must reproduce the above copyright 12 * notice, this list of conditions and the following disclaimer in the 13 * documentation and/or other materials provided with the distribution. 14 * 3. The name of the author may not be used to endorse or promote products 15 * derived from this software without specific prior written permission. 16 * 17 * THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR 18 * IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES 19 * OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. 20 * IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT, 21 * INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT 22 * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, 23 * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY 24 * THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT 25 * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF 26 * THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. 27 */ 28 29 #include "tests.h" 30 31 #ifdef HAVE_LINUX_NETFILTER_NF_TABLES_H 32 33 # include <stdio.h> 34 # include <sys/socket.h> 35 # include "netlink.h" 36 # include <linux/netfilter/nfnetlink.h> 37 # include <linux/netfilter/nf_tables.h> 38 39 static void 40 test_nlmsg_type(const int fd) 41 { 42 long rc; 43 struct nlmsghdr nlh = { 44 .nlmsg_len = sizeof(nlh), 45 .nlmsg_flags = NLM_F_REQUEST, 46 }; 47 48 nlh.nlmsg_type = NFNL_SUBSYS_NFTABLES << 8 | NFT_MSG_NEWTABLE; 49 rc = sendto(fd, &nlh, nlh.nlmsg_len, MSG_DONTWAIT, NULL, 0); 50 printf("sendto(%d, {len=%u" 51 ", type=NFNL_SUBSYS_NFTABLES<<8|NFT_MSG_NEWTABLE" 52 ", flags=NLM_F_REQUEST, seq=0, pid=0}" 53 ", %u, MSG_DONTWAIT, NULL, 0) = %s\n", 54 fd, nlh.nlmsg_len, nlh.nlmsg_len, sprintrc(rc)); 55 56 nlh.nlmsg_type = NFNL_SUBSYS_NFTABLES << 8 | 0xff; 57 rc = sendto(fd, &nlh, nlh.nlmsg_len, MSG_DONTWAIT, NULL, 0); 58 printf("sendto(%d, {len=%u" 59 ", type=NFNL_SUBSYS_NFTABLES<<8|0xff /* NFT_MSG_??? */" 60 ", flags=NLM_F_REQUEST, seq=0, pid=0}" 61 ", %u, MSG_DONTWAIT, NULL, 0) = %s\n", 62 fd, nlh.nlmsg_len, nlh.nlmsg_len, sprintrc(rc)); 63 } 64 65 static void 66 test_nlmsg_flags(const int fd) 67 { 68 long rc; 69 struct nlmsghdr nlh = { 70 .nlmsg_len = sizeof(nlh), 71 }; 72 73 nlh.nlmsg_type = NFNL_SUBSYS_NFTABLES << 8 | NFT_MSG_NEWTABLE; 74 nlh.nlmsg_flags = NLM_F_REQUEST | NLM_F_REPLACE; 75 rc = sendto(fd, &nlh, nlh.nlmsg_len, MSG_DONTWAIT, NULL, 0); 76 printf("sendto(%d, {len=%u" 77 ", type=NFNL_SUBSYS_NFTABLES<<8|NFT_MSG_NEWTABLE" 78 ", flags=NLM_F_REQUEST|NLM_F_REPLACE, seq=0, pid=0}" 79 ", %u, MSG_DONTWAIT, NULL, 0) = %s\n", 80 fd, nlh.nlmsg_len, nlh.nlmsg_len, sprintrc(rc)); 81 82 nlh.nlmsg_type = NFNL_SUBSYS_NFTABLES << 8 | NFT_MSG_GETTABLE; 83 nlh.nlmsg_flags = NLM_F_REQUEST | NLM_F_DUMP; 84 rc = sendto(fd, &nlh, nlh.nlmsg_len, MSG_DONTWAIT, NULL, 0); 85 printf("sendto(%d, {len=%u" 86 ", type=NFNL_SUBSYS_NFTABLES<<8|NFT_MSG_GETTABLE" 87 ", flags=NLM_F_REQUEST|NLM_F_DUMP, seq=0, pid=0}" 88 ", %u, MSG_DONTWAIT, NULL, 0) = %s\n", 89 fd, nlh.nlmsg_len, nlh.nlmsg_len, sprintrc(rc)); 90 91 nlh.nlmsg_type = NFNL_SUBSYS_NFTABLES << 8 | NFT_MSG_DELTABLE; 92 nlh.nlmsg_flags = NLM_F_REQUEST | NLM_F_NONREC; 93 rc = sendto(fd, &nlh, nlh.nlmsg_len, MSG_DONTWAIT, NULL, 0); 94 printf("sendto(%d, {len=%u" 95 ", type=NFNL_SUBSYS_NFTABLES<<8|NFT_MSG_DELTABLE" 96 ", flags=NLM_F_REQUEST|NLM_F_NONREC, seq=0, pid=0}" 97 ", %u, MSG_DONTWAIT, NULL, 0) = %s\n", 98 fd, nlh.nlmsg_len, nlh.nlmsg_len, sprintrc(rc)); 99 } 100 101 int 102 main(void) 103 { 104 skip_if_unavailable("/proc/self/fd/"); 105 106 int fd = create_nl_socket(NETLINK_NETFILTER); 107 108 test_nlmsg_type(fd); 109 test_nlmsg_flags(fd); 110 111 puts("+++ exited with 0 +++"); 112 113 return 0; 114 } 115 116 #else 117 118 SKIP_MAIN_UNDEFINED("HAVE_LINUX_NETFILTER_NF_TABLES_H") 119 120 #endif 121