Florian Westphal a8a388c2aa selftests: netfilter: add packetdrill based conntrack tests ... Add a new test script that uses packetdrill tool to exercise conntrack state machine. Needs ip/ip6tables and conntrack tool (to check if we have an entry in the expected state). Test cases added here cover following scenarios: 1. already-acked (retransmitted) packets are not tagged as INVALID 2. RST packet coming when conntrack is already closing (FIN/CLOSE_WAIT) transitions conntrack to CLOSE even if the RST is not an exact match 3. RST packets with out-of-window sequence numbers are marked as INVALID 4. SYN+Challenge ACK: check that challenge ack is allowed to pass 5. Old SYN/ACK: check conntrack handles the case where SYN is answered with SYN/ACK for an old, previous connection attempt 6. Check SYN reception while in ESTABLISHED state generates a challenge ack, RST response clears 'outdated' state + next SYN retransmit gets us into 'SYN_RECV' conntrack state. Tests get run twice, once with ipv4 and once with ipv6. Signed-off-by: Florian Westphal <fw@strlen.de> Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>		2024-05-10 11:13:45 +02:00
..
crypto/chacha20-s390
cxl	cxl: Consolidate dport access_coordinate ->hb_coord and ->sw_coord into ->coord	2024-04-08 08:25:21 -07:00
fault-injection
ktest	ktest: force $buildonly = 1 for 'make_warnings_file' test type	2024-03-15 12:36:19 -04:00
kunit	linux_kselftest-kunit-fixes-6.9-rc2	2024-03-29 15:35:12 -07:00
memblock	mm, treewide: rename MAX_ORDER to MAX_PAGE_ORDER	2024-01-08 15:27:15 -08:00
nvdimm	tools/testing/nvdimm: Disable "missing prototypes / declarations" warnings	2024-01-22 10:41:59 -08:00
radix-tree	maple_tree: fix warning comparing pointer to 0	2023-12-20 14:48:12 -08:00
scatterlist
selftests	selftests: netfilter: add packetdrill based conntrack tests	2024-05-10 11:13:45 +02:00
vsock	vsock/test: print type for SOCK_SEQPACKET	2024-01-25 16:39:21 -08:00