| Dave Barach | ac0326f | 2020-07-14 18:30:05 -0400 | [diff] [blame] | 1 | #!/usr/bin/env python3 |
| 2 | |
| 3 | import unittest |
| 4 | |
| 5 | from framework import VppTestCase, VppTestRunner, running_gcov_tests |
| 6 | from vpp_ip_route import VppIpTable, VppIpRoute, VppRoutePath |
| 7 | |
| 8 | |
| 9 | class TestAdl(VppTestCase): |
| 10 | """ Allow/Deny Plugin Unit Test Cases """ |
| 11 | |
| 12 | @classmethod |
| 13 | def setUpClass(cls): |
| 14 | super(TestAdl, cls).setUpClass() |
| 15 | |
| 16 | @classmethod |
| 17 | def tearDownClass(cls): |
| 18 | super(TestAdl, cls).tearDownClass() |
| 19 | |
| 20 | def setUp(self): |
| 21 | super(TestAdl, self).setUp() |
| 22 | |
| 23 | def tearDown(self): |
| 24 | super(TestAdl, self).tearDown() |
| 25 | |
| 26 | def test_adl1_unittest(self): |
| 27 | """ Plugin API Test """ |
| 28 | cmds = ["loop create\n", |
| 29 | "set int ip address loop0 192.168.1.1/24\n", |
| 30 | "set int ip6 table loop0 0\n", |
| 31 | "set int ip address loop0 2001:db01::1/64\n", |
| 32 | "set int state loop0 up\n", |
| 33 | "packet-generator new {\n" |
| 34 | " name ip4\n" |
| 35 | " limit 100\n" |
| 36 | " rate 0\n" |
| 37 | " size 128-128\n" |
| 38 | " interface loop0\n" |
| 39 | " node adl-input\n" |
| 40 | " data { IP4: 1.2.40 -> 3cfd.fed0.b6c8\n" |
| 41 | " UDP: 192.168.1.2-192.168.1.10 -> 192.168.2.1\n" |
| 42 | " UDP: 1234 -> 2345\n" |
| 43 | " incrementing 114\n" |
| 44 | " }\n" |
| 45 | " }\n", |
| 46 | "packet-generator new {\n" |
| 47 | " name ip6-allow\n" |
| 48 | " limit 50\n" |
| 49 | " rate 0\n" |
| 50 | " size 128-128\n" |
| 51 | " interface loop0\n" |
| 52 | " node adl-input\n" |
| 53 | " data { IP6: 1.2.40 -> 3cfd.fed0.b6c8\n" |
| 54 | " UDP: 2001:db01::2 -> 2001:db01::1\n" |
| 55 | " UDP: 1234 -> 2345\n" |
| 56 | " incrementing 80\n" |
| 57 | " }\n" |
| 58 | " }\n", |
| 59 | "packet-generator new {\n" |
| 60 | " name ip6-drop\n" |
| 61 | " limit 50\n" |
| 62 | " rate 0\n" |
| 63 | " size 128-128\n" |
| 64 | " interface loop0\n" |
| 65 | " node adl-input\n" |
| 66 | " data { IP6: 1.2.40 -> 3cfd.fed0.b6c8\n" |
| 67 | " UDP: 2001:db01::3 -> 2001:db01::1\n" |
| 68 | " UDP: 1234 -> 2345\n" |
| 69 | " incrementing 80\n" |
| 70 | " }\n" |
| 71 | " }\n", |
| 72 | "ip table 1\n", |
| 73 | "ip route add 192.168.2.1/32 via drop\n", |
| 74 | "ip route add table 1 192.168.1.2/32 via local\n", |
| 75 | "ip6 table 1\n", |
| 76 | "ip route add 2001:db01::1/128 via drop\n", |
| 77 | "ip route add table 1 2001:db01::2/128 via local\n", |
| 78 | "bin adl_interface_enable_disable loop0\n", |
| 79 | "bin adl_allowlist_enable_disable loop0 fib-id 1 ip4 ip6\n", |
| 80 | "pa en\n"] |
| 81 | |
| 82 | for cmd in cmds: |
| 83 | r = self.vapi.cli_return_response(cmd) |
| 84 | if r.retval != 0: |
| 85 | if hasattr(r, 'reply'): |
| 86 | self.logger.info(cmd + " FAIL reply " + r.reply) |
| 87 | else: |
| 88 | self.logger.info(cmd + " FAIL retval " + str(r.retval)) |
| 89 | |
| 90 | total_pkts = self.statistics.get_err_counter( |
| 91 | "/err/adl-input/Allow/Deny packets processed") |
| 92 | |
| 93 | self.assertEqual(total_pkts, 200) |
| 94 | |
| 95 | ip4_allow = self.statistics.get_err_counter( |
| 96 | "/err/ip4-adl-allowlist/ip4 allowlist allowed") |
| 97 | self.assertEqual(ip4_allow, 12) |
| 98 | ip6_allow = self.statistics.get_err_counter( |
| 99 | "/err/ip6-adl-allowlist/ip6 allowlist allowed") |
| 100 | self.assertEqual(ip6_allow, 50) |
| 101 | |
| 102 | if __name__ == '__main__': |
| 103 | unittest.main(testRunner=VppTestRunner) |