git: 24360d83753a - main - pf tests: Basic 'set prio' test

Go to: [ bottom of page ] [ top of archives ] [ this month ]
From: Kristof Provost <kp_at_FreeBSD.org>
Date: Mon, 14 Feb 2022 23:04:22 UTC
The branch main has been updated by kp:

URL: https://cgit.FreeBSD.org/src/commit/?id=24360d83753a085335e66b488a159161a96d5692

commit 24360d83753a085335e66b488a159161a96d5692
Author:     Kristof Provost <kp@FreeBSD.org>
AuthorDate: 2022-02-14 17:44:15 +0000
Commit:     Kristof Provost <kp@FreeBSD.org>
CommitDate: 2022-02-14 21:51:10 +0000

    pf tests: Basic 'set prio' test
    
    The ability to set VLAN PCP from pf was introduced in 3e248e0fb4, but
    never had a test added.
    
    Create a basic setup to set the PCP to an arbitrary value and use
    tcpdump to check it's actually set.
    
    MFC after:      1 week
---
 tests/sys/netpfil/pf/Makefile |  1 +
 tests/sys/netpfil/pf/prio.sh  | 73 +++++++++++++++++++++++++++++++++++++++++++
 2 files changed, 74 insertions(+)

diff --git a/tests/sys/netpfil/pf/Makefile b/tests/sys/netpfil/pf/Makefile
index a5d3e30ca22e..e3079c7c139d 100644
--- a/tests/sys/netpfil/pf/Makefile
+++ b/tests/sys/netpfil/pf/Makefile
@@ -20,6 +20,7 @@ ATF_TESTS_SH+=	altq \
 		nat \
 		pass_block \
 		pfsync	\
+		prio \
 		proxy \
 		rdr \
 		ridentifier \
diff --git a/tests/sys/netpfil/pf/prio.sh b/tests/sys/netpfil/pf/prio.sh
new file mode 100644
index 000000000000..bfd09a278784
--- /dev/null
+++ b/tests/sys/netpfil/pf/prio.sh
@@ -0,0 +1,73 @@
+# $FreeBSD$
+#
+# SPDX-License-Identifier: BSD-2-Clause-FreeBSD
+#
+# Copyright (c) 2022 Kristof Provost <kp@FreeBSD.org>
+#
+# Redistribution and use in source and binary forms, with or without
+# modification, are permitted provided that the following conditions
+# are met:
+# 1. Redistributions of source code must retain the above copyright
+#    notice, this list of conditions and the following disclaimer.
+# 2. Redistributions in binary form must reproduce the above copyright
+#    notice, this list of conditions and the following disclaimer in the
+#    documentation and/or other materials provided with the distribution.
+#
+# THIS SOFTWARE IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS ``AS IS'' AND
+# ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
+# IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
+# ARE DISCLAIMED.  IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
+# FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
+# DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
+# OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
+# HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
+# LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
+# OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
+# SUCH DAMAGE.
+
+. $(atf_get_srcdir)/utils.subr
+
+atf_test_case "set_prio" "cleanup"
+set_prio_head()
+{
+	atf_set descr 'Test setting VLAN PCP'
+	atf_set require.user root
+}
+
+set_prio_body()
+{
+	pft_init
+
+	epair=$(vnet_mkepair)
+	ifconfig ${epair}a.42 create
+	ifconfig ${epair}a up
+	ifconfig ${epair}a.42 192.0.2.1/24 up
+	ifconfig ${epair}a.42 vlandev ${epair}a vlan 42
+	echo ${epair}a.42 >> created_interfaces.lst
+
+	vnet_mkjail alcatraz ${epair}b
+	jexec alcatraz ifconfig ${epair}b.42 create
+	jexec alcatraz ifconfig ${epair}b up
+	jexec alcatraz ifconfig ${epair}b.42 192.0.2.2/24 up
+	jexec alcatraz ifconfig ${epair}b.42 vlandev ${epair}b vlan 42
+
+	jexec alcatraz sysctl net.link.vlan.mtag_pcp=1
+
+	jexec alcatraz pfctl -e
+	pft_set_rules alcatraz \
+		"pass out set prio 4"
+
+	jexec alcatraz ping 192.0.2.1 &
+
+	atf_check -e ignore -o match:'.*vlan 42, p 4.*' tcpdump -n -i ${epair}a -e -c 4
+}
+
+set_prio_cleanup()
+{
+	pft_cleanup
+}
+
+atf_init_test_cases()
+{
+	atf_add_test_case "set_prio"
+}