Kezdőlap Felfedezés Súgó
Bejelentkezés
samsung-sm8650
/
android_kernel_samsung_sm8650_ksu
2
0
Másolás 0
Fájlok Problémák 0 Beolvasztási kérések 0 Wiki
Fa: 5c86c450e2
Branch-ok Tag-ek
android_kernel_...
/
tools
/
testing
/
selftests
/
net
/
ip_defrag.sh

ip_defrag.sh 2.0 KB
Előzmények Nyers

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364 
  1. #!/bin/sh
    2. 

  2. # SPDX-License-Identifier: GPL-2.0
    3. 

  3. #
    4. 

  4. # Run a couple of IP defragmentation tests.
    5. 

  5. 

  6. set +x
    7. 

  7. set -e
    8. 

  8. 

  9. modprobe -q nf_defrag_ipv6
    10. 

  10. 

  11. readonly NETNS="ns-$(mktemp -u XXXXXX)"
    12. 

  12. 

  13. setup() {
    14. 

  14. 	ip netns add "${NETNS}"
    15. 

  15. 	ip -netns "${NETNS}" link set lo up
    16. 

  16. 

  17. 	ip netns exec "${NETNS}" sysctl -w net.ipv4.ipfrag_high_thresh=9000000 >/dev/null 2>&1
    18. 

  18. 	ip netns exec "${NETNS}" sysctl -w net.ipv4.ipfrag_low_thresh=7000000 >/dev/null 2>&1
    19. 

  19. 	ip netns exec "${NETNS}" sysctl -w net.ipv4.ipfrag_time=1 >/dev/null 2>&1
    20. 

  20. 

  21. 	ip netns exec "${NETNS}" sysctl -w net.ipv6.ip6frag_high_thresh=9000000 >/dev/null 2>&1
    22. 

  22. 	ip netns exec "${NETNS}" sysctl -w net.ipv6.ip6frag_low_thresh=7000000 >/dev/null 2>&1
    23. 

  23. 	ip netns exec "${NETNS}" sysctl -w net.ipv6.ip6frag_time=1 >/dev/null 2>&1
    24. 

  24. 

  25. 	ip netns exec "${NETNS}" sysctl -w net.netfilter.nf_conntrack_frag6_high_thresh=9000000 >/dev/null 2>&1
    26. 

  26. 	ip netns exec "${NETNS}" sysctl -w net.netfilter.nf_conntrack_frag6_low_thresh=7000000  >/dev/null 2>&1
    27. 

  27. 	ip netns exec "${NETNS}" sysctl -w net.netfilter.nf_conntrack_frag6_timeout=1 >/dev/null 2>&1
    28. 

  28. 

  29. 	# DST cache can get full with a lot of frags, with GC not keeping up with the test.
    30. 

  30. 	ip netns exec "${NETNS}" sysctl -w net.ipv6.route.max_size=65536 >/dev/null 2>&1
    31. 

  31. }
    32. 

  32. 

  33. cleanup() {
    34. 

  34. 	ip netns del "${NETNS}"
    35. 

  35. }
    36. 

  36. 

  37. trap cleanup EXIT
    38. 

  38. setup
    39. 

  39. 

  40. echo "ipv4 defrag"
    41. 

  41. ip netns exec "${NETNS}" ./ip_defrag -4
    42. 

  42. 

  43. echo "ipv4 defrag with overlaps"
    44. 

  44. ip netns exec "${NETNS}" ./ip_defrag -4o
    45. 

  45. 

  46. echo "ipv6 defrag"
    47. 

  47. ip netns exec "${NETNS}" ./ip_defrag -6
    48. 

  48. 

  49. echo "ipv6 defrag with overlaps"
    50. 

  50. ip netns exec "${NETNS}" ./ip_defrag -6o
    51. 

  51. 

  52. # insert an nf_conntrack rule so that the codepath in nf_conntrack_reasm.c taken
    53. 

  53. ip netns exec "${NETNS}" ip6tables -A INPUT  -m conntrack --ctstate INVALID -j ACCEPT
    54. 

  54. 

  55. echo "ipv6 nf_conntrack defrag"
    56. 

  56. ip netns exec "${NETNS}" ./ip_defrag -6
    57. 

  57. 

  58. echo "ipv6 nf_conntrack defrag with overlaps"
    59. 

  59. # netfilter will drop some invalid packets, so we run the test in
    60. 

  60. # permissive mode: i.e. pass the test if the packet is correctly assembled
    61. 

  61. # even if we sent an overlap
    62. 

  62. ip netns exec "${NETNS}" ./ip_defrag -6op
    63. 

  63. 

  64. echo "all tests done"
    65.