selftests: add xfrm policy test script - linux - Linux Kernel (branches are rebased on master from time to time)

diff options

author	Florian Westphal <fw@strlen.de>	2018-11-07 23:00:31 +0100
committer	Steffen Klassert <steffen.klassert@secunet.com>	2018-11-09 11:57:08 +0100
commit	b69d540da7db84e836cea77fbd56a518aafa1f2f (patch)
tree	fcaa3d4559843f6c7e7773038faa48abc6a4bf81 /fs/nls
parent	29e12207174a58ac8cab4914d0a7ce5e6c872646 (diff)
download	linux-b69d540da7db84e836cea77fbd56a518aafa1f2f.tar.bz2

selftests: add xfrm policy test script

add a script that adds a ipsec tunnel between two network namespaces plus following policies: .0/24 -> ipsec tunnel .240/28 -> bypass .253/32 -> ipsec tunnel Then check that .254 bypasses tunnel (match /28 exception), and .2 (match /24) and .253 (match direct policy) pass through the tunnel. Abuses iptables to check if ping did resolve an ipsec policy or not. Also adds a bunch of 'block' rules that are not supposed to match. Signed-off-by: Florian Westphal <fw@strlen.de> Acked-by: David S. Miller <davem@davemloft.net> Signed-off-by: Steffen Klassert <steffen.klassert@secunet.com>

Diffstat (limited to 'fs/nls')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: