3 # Copyright (C) 2020 Red Hat Inc.
5 # Redistribution and use in source and binary forms, with or without
6 # modification, are permitted provided that the following conditions are
9 # * Redistributions of source code must retain the above copyright
10 # notice, this list of conditions and the following disclaimer.
12 # * Redistributions in binary form must reproduce the above copyright
13 # notice, this list of conditions and the following disclaimer in the
14 # documentation and/or other materials provided with the distribution.
16 # * Neither the name of Red Hat nor the names of its contributors may be
17 # used to endorse or promote products derived from this software without
18 # specific prior written permission.
20 # THIS SOFTWARE IS PROVIDED BY RED HAT AND CONTRIBUTORS ''AS IS'' AND
21 # ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO,
22 # THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A
23 # PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL RED HAT OR
24 # CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
25 # SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
26 # LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF
27 # USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND
28 # ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY,
29 # OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT
30 # OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
33 # Test the ip filter with anyvsock parameter.
35 # This test is only possible on Linux >= 5.6 because that is the first
36 # version supporting loopback AF_VSOCK (so you can run client and
37 # server on the same host without needing to use a virtual machine).
39 # It also requires libnbd with nbdinfo, URI and vsock support.
46 requires nbdsh
--version
47 requires nbdsh
-c 'print(h.connect_vsock)'
49 requires_linux_kernel_version
5.6
50 requires_vsock_support
52 # Not supported on Windows.
54 echo "$0: nbdkit-ip-filter anyvsock: not implemented on Windows"
58 # Because vsock ports are 32 bits, we can basically pick one at random
59 # and be sure that it's not used. However we must pick one >= 1024
60 # because the ports below this are privileged.
61 #port=$(( 1024 + $RANDOM + ($RANDOM << 16) ))
63 # We would do that, but libxml2 is broken, see:
64 # https://mail.gnome.org/archives/xml/2020-October/msg00001.html
65 # https://mail.gnome.org/archives/xml/2020-October/msg00002.html
66 port
=$
(( 1024 + $RANDOM + ($RANDOM << 11) ))
68 nbdkit --vsock --port $port -v -D ip.rules=1 \
69 --filter=ip null allow=anyvsock deny=all \
70 --run 'nbdinfo "$uri"'
72 # This is expected to fail.
73 if nbdkit --vsock --port $port -v -D ip.rules=1 \
74 --filter=ip null deny=anyvsock \
75 --run 'nbdinfo "$uri"'; then
76 echo "$0: expected test to fail"
80 # This tests vsock-cid and is also expected to fail.
81 if nbdkit --vsock --port $port -v -D ip.rules=1 \
82 --filter=ip null deny=vsock-cid:1 \
83 --run 'nbdinfo "$uri"'; then
84 echo "$0: expected test to fail"