10#include <netinet/in.h>
11#include <netinet/ip.h>
12#include <linux/netfilter/nf_tables.h>
13#include <libmnl/libmnl.h>
14#include <libnftnl/rule.h>
15#include <libnftnl/expr.h>
17static int test_ok = 1;
19static void print_err(
const char *msg)
22 printf(
"\033[31mERROR:\e[0m %s\n", msg);
25static void cmp_nftnl_expr(
struct nftnl_expr *rule_a,
26 struct nftnl_expr *rule_b)
28 if (nftnl_expr_get_u64(rule_a, NFTNL_EXPR_CTR_BYTES) !=
29 nftnl_expr_get_u64(rule_b, NFTNL_EXPR_CTR_BYTES))
30 print_err(
"Expr NFTNL_EXPR_CTR_BYTES mismatches");
31 if (nftnl_expr_get_u64(rule_a, NFTNL_EXPR_CTR_PACKETS) !=
32 nftnl_expr_get_u64(rule_b, NFTNL_EXPR_CTR_PACKETS))
33 print_err(
"Expr NFTNL_EXPR_CTR_PACKETS mismatches");
36int main(
int argc,
char *argv[])
38 struct nftnl_rule *a, *b;
39 struct nftnl_expr *ex;
43 struct nftnl_expr *rule_a, *rule_b;
45 a = nftnl_rule_alloc();
46 b = nftnl_rule_alloc();
47 if (a == NULL || b == NULL)
50 ex = nftnl_expr_alloc(
"counter");
54 nftnl_expr_set_u64(ex, NFTNL_EXPR_CTR_BYTES, 0x123456789abcdef0);
55 nftnl_expr_set_u64(ex, NFTNL_EXPR_CTR_PACKETS, 0xf0123456789abcde);
56 nftnl_rule_add_expr(a, ex);
58 nlh = nftnl_nlmsg_build_hdr(buf, NFT_MSG_NEWRULE, AF_INET, 0, 1234);
59 nftnl_rule_nlmsg_build_payload(nlh, a);
61 if (nftnl_rule_nlmsg_parse(nlh, b) < 0)
62 print_err(
"parsing problems");
64 iter_a = nftnl_expr_iter_create(a);
65 iter_b = nftnl_expr_iter_create(b);
66 if (iter_a == NULL || iter_b == NULL)
68 rule_a = nftnl_expr_iter_next(iter_a);
69 rule_b = nftnl_expr_iter_next(iter_b);
70 if (rule_a == NULL || rule_b == NULL)
73 cmp_nftnl_expr(rule_a, rule_b);
75 if (nftnl_expr_iter_next(iter_a) != NULL ||
76 nftnl_expr_iter_next(iter_b) != NULL)
77 print_err(
"More 1 expr.");
79 nftnl_expr_iter_destroy(iter_a);
80 nftnl_expr_iter_destroy(iter_b);
86 printf(
"%s: \033[32mOK\e[0m\n", argv[0]);