0001
0002
0003
0004
0005
0006 set -eu
0007 readonly NS1="ns1-$(mktemp -u XXXXXX)"
0008
0009 wait_for_ip()
0010 {
0011 local _i
0012 printf "Wait for IP %s to become available " "$1"
0013 for _i in $(seq ${MAX_PING_TRIES}); do
0014 printf "."
0015 if ns1_exec ping -c 1 -W 1 "$1" >/dev/null 2>&1; then
0016 echo " OK"
0017 return
0018 fi
0019 sleep 1
0020 done
0021 echo 1>&2 "ERROR: Timeout waiting for test IP to become available."
0022 exit 1
0023 }
0024
0025 get_prog_id()
0026 {
0027 awk '/ id / {sub(/.* id /, "", $0); print($1)}'
0028 }
0029
0030 ns1_exec()
0031 {
0032 ip netns exec ${NS1} "$@"
0033 }
0034
0035 setup()
0036 {
0037 ip netns add ${NS1}
0038 ns1_exec ip link set lo up
0039
0040 ns1_exec sysctl -w net.ipv4.tcp_syncookies=2
0041 ns1_exec sysctl -w net.ipv4.tcp_window_scaling=0
0042 ns1_exec sysctl -w net.ipv4.tcp_timestamps=0
0043 ns1_exec sysctl -w net.ipv4.tcp_sack=0
0044
0045 wait_for_ip 127.0.0.1
0046 wait_for_ip ::1
0047 }
0048
0049 cleanup()
0050 {
0051 ip netns del ns1 2>/dev/null || :
0052 }
0053
0054 main()
0055 {
0056 trap cleanup EXIT 2 3 6 15
0057 setup
0058
0059 printf "Testing clsact..."
0060 ns1_exec tc qdisc add dev "${TEST_IF}" clsact
0061 ns1_exec tc filter add dev "${TEST_IF}" ingress \
0062 bpf obj "${BPF_PROG_OBJ}" sec "${CLSACT_SECTION}" da
0063
0064 BPF_PROG_ID=$(ns1_exec tc filter show dev "${TEST_IF}" ingress | \
0065 get_prog_id)
0066 ns1_exec "${PROG}" "${BPF_PROG_ID}"
0067 ns1_exec tc qdisc del dev "${TEST_IF}" clsact
0068
0069 printf "Testing XDP..."
0070 ns1_exec ip link set "${TEST_IF}" xdp \
0071 object "${BPF_PROG_OBJ}" section "${XDP_SECTION}"
0072 BPF_PROG_ID=$(ns1_exec ip link show "${TEST_IF}" | get_prog_id)
0073 ns1_exec "${PROG}" "${BPF_PROG_ID}"
0074 }
0075
0076 DIR=$(dirname $0)
0077 TEST_IF=lo
0078 MAX_PING_TRIES=5
0079 BPF_PROG_OBJ="${DIR}/test_tcp_check_syncookie_kern.o"
0080 CLSACT_SECTION="tc"
0081 XDP_SECTION="xdp"
0082 BPF_PROG_ID=0
0083 PROG="${DIR}/test_tcp_check_syncookie_user"
0084
0085 main
