nftest

package

v0.0.0-...-ec9672c Latest Latest Go to latest Published: Jul 24, 2023 License: Apache-2.0 Imports: 8 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/SewanDevs/nftables

Links

Open Source Insights

Documentation ¶

Overview ¶

Package nftest contains utility functions for nftables testing.

Index ¶

func CleanupSystemConn(t *testing.T, newNS netns.NsHandle)
func Diff(got []netlink.Message, want [][]byte) string
func MatchRulesetBytes(t *testing.T, fillRuleset func(c *nftables.Conn), want [][]byte)
func OpenSystemConn(t *testing.T, enableSysTests bool) (*nftables.Conn, netns.NsHandle)
type Recorder
- func NewRecorder() *Recorder
- func (r *Recorder) Conn() (*nftables.Conn, error)
- func (r *Recorder) Requests() []netlink.Message

Constants ¶

This section is empty.

Variables ¶

This section is empty.

Functions ¶

func CleanupSystemConn ¶

func CleanupSystemConn(t *testing.T, newNS netns.NsHandle)

func Diff ¶

func Diff(got []netlink.Message, want [][]byte) string

Diff returns the first difference between the specified netlink messages and the expected netlink message payloads.

func MatchRulesetBytes ¶

func MatchRulesetBytes(t *testing.T, fillRuleset func(c *nftables.Conn), want [][]byte)

MatchRulesetBytes is a test helper that ensures the fillRuleset modifications correspond to the provided want netlink message payloads

func OpenSystemConn ¶

func OpenSystemConn(t *testing.T, enableSysTests bool) (*nftables.Conn, netns.NsHandle)

OpenSystemConn returns a netlink connection that tests against the running kernel in a separate network namespace. nftest.CleanupSystemConn() must be called from a defer to cleanup created network namespace.

Types ¶

type Recorder ¶

type Recorder struct {
	// contains filtered or unexported fields
}

Recorder provides an nftables connection that does not send to the Linux kernel but instead records netlink messages into the recorder. The recorded requests can later be obtained using Requests and compared using Diff.

func NewRecorder ¶

func NewRecorder() *Recorder

NewRecorder returns a ready-to-use Recorder.

func (*Recorder) Conn ¶

func (r *Recorder) Conn() (*nftables.Conn, error)

Conn opens an nftables connection that records netlink messages into the Recorder.

func (*Recorder) Requests ¶

func (r *Recorder) Requests() []netlink.Message

Requests returns the recorded netlink messages (typically nftables requests).

Source Files ¶

View all Source files

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL