1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
|
use std::net::{Ipv4Addr, Ipv6Addr};
use crate::{
data_type::DataType,
nlmsg::get_operation_from_nlmsghdr_type,
set::SetBuilder,
sys::{
NFTA_DATA_VALUE, NFTA_LIST_ELEM, NFTA_SET_ELEM_KEY, NFTA_SET_ELEM_LIST_ELEMENTS,
NFTA_SET_ELEM_LIST_SET, NFTA_SET_ELEM_LIST_TABLE, NFTA_SET_KEY_LEN, NFTA_SET_KEY_TYPE,
NFTA_SET_NAME, NFTA_SET_TABLE, NFTA_SET_USERDATA, NFT_MSG_DELSET, NFT_MSG_NEWSET,
NFT_MSG_NEWSETELEM,
},
MsgType,
};
use super::{
get_test_nlmsg, get_test_nlmsg_with_msg_type, get_test_set, get_test_table, NetlinkExpr,
SET_NAME, SET_USERDATA, TABLE_NAME,
};
#[test]
fn new_empty_set() {
let mut set = get_test_set::<Ipv4Addr>();
let mut buf = Vec::new();
let (nlmsghdr, _nfgenmsg, raw_expr) = get_test_nlmsg(&mut buf, &mut set);
assert_eq!(
get_operation_from_nlmsghdr_type(nlmsghdr.nlmsg_type),
NFT_MSG_NEWSET as u8
);
assert_eq!(nlmsghdr.nlmsg_len, 80);
assert_eq!(
raw_expr,
NetlinkExpr::List(vec![
NetlinkExpr::Final(NFTA_SET_TABLE, TABLE_NAME.as_bytes().to_vec()),
NetlinkExpr::Final(NFTA_SET_NAME, SET_NAME.as_bytes().to_vec()),
NetlinkExpr::Final(NFTA_SET_KEY_TYPE, Ipv4Addr::TYPE.to_be_bytes().to_vec()),
NetlinkExpr::Final(NFTA_SET_KEY_LEN, Ipv4Addr::LEN.to_be_bytes().to_vec()),
NetlinkExpr::Final(NFTA_SET_USERDATA, SET_USERDATA.as_bytes().to_vec()),
])
.to_raw()
);
}
#[test]
fn delete_empty_set() {
let mut set = get_test_set::<Ipv6Addr>();
let mut buf = Vec::new();
let (nlmsghdr, _nfgenmsg, raw_expr) =
get_test_nlmsg_with_msg_type(&mut buf, &mut set, MsgType::Del);
assert_eq!(
get_operation_from_nlmsghdr_type(nlmsghdr.nlmsg_type),
NFT_MSG_DELSET as u8
);
assert_eq!(nlmsghdr.nlmsg_len, 80);
assert_eq!(
raw_expr,
NetlinkExpr::List(vec![
NetlinkExpr::Final(NFTA_SET_TABLE, TABLE_NAME.as_bytes().to_vec()),
NetlinkExpr::Final(NFTA_SET_NAME, SET_NAME.as_bytes().to_vec()),
NetlinkExpr::Final(NFTA_SET_KEY_TYPE, Ipv6Addr::TYPE.to_be_bytes().to_vec()),
NetlinkExpr::Final(NFTA_SET_KEY_LEN, Ipv6Addr::LEN.to_be_bytes().to_vec()),
NetlinkExpr::Final(NFTA_SET_USERDATA, SET_USERDATA.as_bytes().to_vec()),
])
.to_raw()
);
}
#[test]
fn new_set_with_data() {
let ip1 = Ipv4Addr::new(127, 0, 0, 1);
let ip2 = Ipv4Addr::new(1, 1, 1, 1);
let mut set_builder = SetBuilder::<Ipv4Addr>::new(SET_NAME.to_string(), &get_test_table())
.expect("Couldn't create a set");
set_builder.add(&ip1);
set_builder.add(&ip2);
let (_set, mut elem_list) = set_builder.finish();
let mut buf = Vec::new();
let (nlmsghdr, _nfgenmsg, raw_expr) = get_test_nlmsg(&mut buf, &mut elem_list);
assert_eq!(
get_operation_from_nlmsghdr_type(nlmsghdr.nlmsg_type),
NFT_MSG_NEWSETELEM as u8
);
assert_eq!(nlmsghdr.nlmsg_len, 84);
assert_eq!(
raw_expr,
NetlinkExpr::List(vec![
NetlinkExpr::Final(NFTA_SET_ELEM_LIST_TABLE, TABLE_NAME.as_bytes().to_vec()),
NetlinkExpr::Final(NFTA_SET_ELEM_LIST_SET, SET_NAME.as_bytes().to_vec()),
NetlinkExpr::Nested(
NFTA_SET_ELEM_LIST_ELEMENTS,
vec![
NetlinkExpr::Nested(
NFTA_LIST_ELEM,
vec![NetlinkExpr::Nested(
NFTA_DATA_VALUE,
vec![NetlinkExpr::Final(NFTA_SET_ELEM_KEY, ip1.data().to_vec())]
)]
),
NetlinkExpr::Nested(
NFTA_LIST_ELEM,
vec![NetlinkExpr::Nested(
NFTA_DATA_VALUE,
vec![NetlinkExpr::Final(NFTA_SET_ELEM_KEY, ip2.data().to_vec())]
)]
),
]
),
])
.to_raw()
);
}
|
